safehacking4mas.blogspot.ru/2013_09_08_archive.html
302 Moved Temporarily 203 B URL HTTP/1.1 safehacking4mas.blogspot.ru/2013_09_08_archive.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 92a7ecb5bb7f5d88656c66329b421ef4
63f7c814ca226adf0e5994fc1e61eab99d387cb3
85fecf1b7c993d94555bdecaf6a3145a92a084310474dd866023f9438b2ac349
GET /2013_09_08_archive.html HTTP/1.1
Host: safehacking4mas.blogspot.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://safehacking4mas.blogspot.com/2013_09_08_archive.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 04 Dec 2022 23:30:54 GMT
Expires: Sun, 04 Dec 2022 23:30:54 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 203
Server: GSE
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5242
Expires: Mon, 05 Dec 2022 00:58:16 GMT
Date: Sun, 04 Dec 2022 23:30:54 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5325
Cache-Control: max-age=131348
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:54 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 12:00:02 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11730
Expires: Mon, 05 Dec 2022 02:46:24 GMT
Date: Sun, 04 Dec 2022 23:30:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 23:20:09 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 645
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7RK9ysymjdfqAFldracKzFUAsxJpbseboDMxLiSivY+TAE7Mj2u5Df6JBq9XVdonTllZTK8CkDA=
x-amz-request-id: SRMWSE9V021C5MQ5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 22:47:44 GMT
age: 2590
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 23:30:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
safehacking4mas.blogspot.com/2013_09_08_archive.html
200 OK 20 kB URL HTTP/1.1 safehacking4mas.blogspot.com/2013_09_08_archive.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (942)
Hash 3d89edfcf395cc66932576ca07194800
38c32609dd6173330e0656a3bf4708b26c43a89c
a951a7f60f9efb771a0e98dccde4a1637c42718ef8f8ecb6ab4341eed4287195
GET /2013_09_08_archive.html HTTP/1.1
Host: safehacking4mas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sun, 04 Dec 2022 23:30:54 GMT
Date: Sun, 04 Dec 2022 23:30:54 GMT
Cache-Control: private, max-age=0
Last-Modified: Fri, 11 Nov 2022 08:02:53 GMT
ETag: W/"b05c4b28883fc40f61ead17e088520283e9456413229e5b3e432ac6976ba291f"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 19627
Server: GSE
ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
200 OK 30 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash ebaa24930d6b905fe00c9457484b78a9
f97496ee81148e264b3735464b8bfced1a8b2fad
b9bd9830d7eceae230cfaa5105e8a3ec432392f270cee156637dac8d0684d614
GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30082
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 12:49:09 GMT
Expires: Fri, 01 Dec 2023 12:49:09 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 297705
s7.addthis.com/js/300/addthis_widget.js
308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Sun, 04 Dec 2022 23:30:54 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
ajax.googleapis.com/ajax/libs/jquery/1.4.1/jquery.min.js
200 OK 24 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.4.1/jquery.min.js
IP
File type ASCII text, with very long lines (833)
Hash 0abe559b44ad75a1142a42afaad9568c
164f6f47f7cfc82155691d4e31d908a0e93a799f
d33e5a1bb8bd201d8daf58a81da88d07d63c484a1cdaff1bd2d46dc90ab73a80
GET /ajax/libs/jquery/1.4.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 24177
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 21:09:32 GMT
Expires: Wed, 29 Nov 2023 21:09:32 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 440482
safehacking4mas.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/1.1 safehacking4mas.blogspot.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: safehacking4mas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/2013_09_08_archive.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sun, 04 Dec 2022 23:30:54 GMT
Expires: Sun, 11 Dec 2022 23:30:54 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 04 Dec 2022 21:56:58 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
jg.revolvermaps.com/2/1.js?i=6869a1tm788&s=220&m=4&v=true&r=false&b=000000&n=false&c=ff0000
200 OK 1.2 kB URL HTTP/1.1 jg.revolvermaps.com/2/1.js?i=6869a1tm788&s=220&m=4&v=true&r=false&b=000000&n=false&c=ff0000
IP
ASN #34549 meerfarbig GmbH & Co. KG
File type ASCII text, with very long lines (2430), with no line terminators
Hash 8794400587811289a8e9c90f4d56acaf
5a292beb72dc10afc289d0ebb33bdc2fd75624ed
d790123462ecd6c4ab0abc5ccf6c6463ef535731718eea2b0be9d32c4addb33b
GET /2/1.js?i=6869a1tm788&s=220&m=4&v=true&r=false&b=000000&n=false&c=ff0000 HTTP/1.1
Host: jg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:54 GMT
Server: Apache
Last-Modified: Mon, 08 Feb 2016 12:33:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=290304000
Content-Length: 1238
Keep-Alive: timeout=4, max=100
Connection: Keep-Alive
Content-Type: application/javascript
hermanblog.googlecode.com/files/link_pelangi.js
404 Not Found 1.6 kB URL HTTP/1.1 hermanblog.googlecode.com/files/link_pelangi.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 4472585e8350ee28b3a7b647c704db06
da07647ba881bbdc784fbd9a4691a3bfd0a7af31
3318b95be33106af8f15f6e0def6ae4465e0d0c19f672289154d631f4f93c81f
GET /files/link_pelangi.js HTTP/1.1
Host: hermanblog.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1582
Date: Sun, 04 Dec 2022 23:30:54 GMT
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 65f78026bd16cfba254886219e4e2bff
559176fd6b23488891485f1e698dd34bbaebed9a
69b113b4dcf6e56e853a2ef1e050b777c6ba34bc9c0a1ca1efe373df2b751b9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 65f78026bd16cfba254886219e4e2bff
559176fd6b23488891485f1e698dd34bbaebed9a
69b113b4dcf6e56e853a2ef1e050b777c6ba34bc9c0a1ca1efe373df2b751b9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:47:53 GMT
expires: Wed, 29 Nov 2023 21:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 29 Nov 2022 20:52:41 GMT
content-type: text/css
age: 438182
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cd8c709d33861f92a8d0d016a198cd41
2b71fa86c94f5d50a8ce65d02b4c5b8d010eb2f2
a48025cdad584ab4cce456815b00f144c47df1f9a744dc962b4bdb33070a2827
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s7.addthis.com/js/300/addthis_widget.js
200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP
File type ASCII text, with very long lines (54602)
Size 116 kB (116406 bytes)
Hash 722e21e12eaa431752dfae3577fe0619
cdf8ee4381284ad6b6081663ae6ee322998e1b35
998242560562ed6542b378745338b65d06b0001ee9c4c9bb843166524bd4c407
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116406
date: Sun, 04 Dec 2022 23:30:55 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js
301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Sun, 04 Dec 2022 23:30:55 GMT
Connection: keep-alive
Content-Length: 0
apis.google.com/js/platform.js
200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sun, 04 Dec 2022 23:30:55 GMT
expires: Sun, 04 Dec 2022 23:30:55 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 496046
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img2.blogblog.com/img/icon18_edit_allbkg.gif
200 OK 162 B URL HTTP/1.1 img2.blogblog.com/img/icon18_edit_allbkg.gif
IP
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: img2.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 13:44:53 GMT
Expires: Tue, 06 Dec 2022 13:44:53 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 06:52:50 GMT
Content-Type: image/gif
Age: 467162
hermanblog.googlecode.com/files/link_pelangi.js
404 Not Found 1.6 kB URL HTTP/1.1 hermanblog.googlecode.com/files/link_pelangi.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 4472585e8350ee28b3a7b647c704db06
da07647ba881bbdc784fbd9a4691a3bfd0a7af31
3318b95be33106af8f15f6e0def6ae4465e0d0c19f672289154d631f4f93c81f
GET /files/link_pelangi.js HTTP/1.1
Host: hermanblog.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1582
Date: Sun, 04 Dec 2022 23:30:55 GMT
lh6.ggpht.com/_Kwwy9VyLMKw/S3qDYQZCiRI/AAAAAAAACxA/aXY0neVNzh0/but_readmore.png
200 OK 1.5 kB URL HTTP/1.1 lh6.ggpht.com/_Kwwy9VyLMKw/S3qDYQZCiRI/AAAAAAAACxA/aXY0neVNzh0/but_readmore.png
IP
File type PNG image data, 91 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d31b2d6d8a8200300204928f616e329
d3141c7c49972c9ad2cb8fce306a5aa17b3d5290
86d688b9378a52832c377e0fa7423ca9c911c4cdc4a62d7ee82fad6b9592913e
GET /_Kwwy9VyLMKw/S3qDYQZCiRI/AAAAAAAACxA/aXY0neVNzh0/but_readmore.png HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="but_readmore.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1493
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Fri, 02 Dec 2022 10:38:06 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v124a"
Content-Type: image/png
Age: 0
s3.ongsono.com/images/raise_page_rank.jpg
200 OK 1.1 kB URL HTTP/1.1 s3.ongsono.com/images/raise_page_rank.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 80x15, components 3\012- data
Hash 477f186c67fb1270715ea32e5ed90db2
8d4b27557b6bb42fc5bc4a5d791ea6023085721d
e0533cc822b133801e8d9f854bec4dc4edbe207ad35ef3aa2a233d1a8ae6bd1a
GET /images/raise_page_rank.jpg HTTP/1.1
Host: s3.ongsono.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Type: image/jpeg
Content-Length: 1093
Connection: keep-alive
Last-Modified: Mon, 27 Jul 2020 07:33:03 GMT
ETag: "5f1e832f-445"
Expires: Tue, 20 Dec 2022 00:03:51 GMT
Cache-Control: public, max-age=2592000
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 47112
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BQR1IMsmXPVpnIRa83ily%2BBHqnV1%2FwtiAMA0X5GqlkS%2BjqVdG7jQspo4maIybAdOEfKkrs2L5NKPDn7Vpron5rGQ5XcUbODq2xfAsNQ%2B7%2F1HUux6i1kaL8eoMG%2BudiT32g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77485526fa11b506-OSL
alt-svc: h2=":443"; ma=60
themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
301 Moved Permanently 0 B URL HTTP/1.1 themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 04 Dec 2022 23:30:55 GMT
Location: https://themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 23:08:58 GMT
cache-control: public,max-age=3600
age: 1317
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=6105040037749415494&zx=e2e6b0bc-2b0d-4b5b-a31b-bf03e551e605
200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=6105040037749415494&zx=e2e6b0bc-2b0d-4b5b-a31b-bf03e551e605
IP
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=6105040037749415494&zx=e2e6b0bc-2b0d-4b5b-a31b-bf03e551e605 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:55 GMT
last-modified: Sun, 04 Dec 2022 23:30:55 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-ByUV8Asg02Y/Tf8sGp0rx3I/AAAAAAAAAQs/ilKmRKIJVog/s150/next2.png
200 OK 11 kB URL HTTP/1.1 3.bp.blogspot.com/-ByUV8Asg02Y/Tf8sGp0rx3I/AAAAAAAAAQs/ilKmRKIJVog/s150/next2.png
IP
File type PNG image data, 150 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash cbcc03f64f90cb84a8b8a2b7159a5ad7
72b7b1ae8e358634a058a47e0e9f7c551f507c31
52096fd4d87e56e99198e21ae9dc1e261184bd6568f1937d62701e1235aa3fa1
GET /-ByUV8Asg02Y/Tf8sGp0rx3I/AAAAAAAAAQs/ilKmRKIJVog/s150/next2.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="next2.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 10679
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10b"
Content-Type: image/png
Age: 0
www.widgeo.net/geocompteur/geocompteur.php?c=geoiphone&id=2194072&adult=0&cat=informatique&fonce=&claire=
200 OK 2.0 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocompteur.php?c=geoiphone&id=2194072&adult=0&cat=informatique&fonce=&claire=
IP
File type ASCII text, with very long lines (2149)
Hash f2c43d06e34c98372b49dcd80bdfa1e9
c642bd763895914f8bdea089f23dbaa9ed6c07a2
899bbd7848da31e3c17065c5b44733f3975d01094ff0bceeef3bc1b60199261d
GET /geocompteur/geocompteur.php?c=geoiphone&id=2194072&adult=0&cat=informatique&fonce=&claire= HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Type: application/javascript
Content-Length: 2027
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Sat, 10-Dec-2022 23:30:54 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Sun, 11 Dec 2022 23:30:54 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hEOk3bDE7jyIbxsUqw51%2BTLbsJk3Ot3Evk3be%2FHpkByYLaQgQRr6iEFYVowuko2iD5i90NLm1rrGK1gfrc3GgPJ66r6R%2B2DBtcpXdSRHfqZYALShfrjByx9kWiaCY2y5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 774855266995b506-OSL
alt-svc: h2=":443"; ma=60
www.widgeo.net/message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise
200 OK 2.1 kB URL HTTP/1.1 www.widgeo.net/message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise
IP
File type ASCII text, with very long lines (2149)
Hash df8fcf24d07d5f6ce70941347d76b6a9
287090f666cb9dee196eeec1885d24f49efc2ff8
de2814eb9fd6f406597343c56b2647257fdcfb20ffbf481696b49ad52ed74c9a
GET /message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
set-cookie: monpays=no; expires=Sat, 04-Mar-2023 23:30:54 GMT; Max-Age=7776000; path=/
cache-control: public, max-age=180
expires: Sun, 04 Dec 2022 23:33:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wvzcar85LyLBJatU6%2FBnD5MA3BKmILWTCibU24Q%2FHP24rp0Q4V%2FR4lY9FbKugI3DgJ7TyXnXEk7QEHKG65OxbCg7XhJqooSBA%2BhJOIgWYybtu%2BxijtIMR1y9TK%2FIEu5F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 774855266e950b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.widgeo.net/img/logopm.png
200 OK 714 B URL HTTP/1.1 www.widgeo.net/img/logopm.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3832d6b8d8c47a5cefe6561297b514f6
f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08
GET /img/logopm.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Type: image/webp
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 31 Dec 2022 22:37:17 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 262417
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s6l7FH%2BVfdCCEWi3CXP1vZapr%2FrYiWgDOcWWtXoX%2FcLnCGFFx9O0UMG67BEvcpcdHKgBVK696S4dZly8Q44KlPrvhu%2BEpFNkFZ8effAHbDknVutWNVrw9z%2F3EINIcamU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 774855282f9e0b41-OSL
alt-svc: h2=":443"; ma=60
4.bp.blogspot.com/-ThJFqA0SqEU/Tf8sXRXpkuI/AAAAAAAAAQ0/js96J8TbTXs/s150/prev2.png
200 OK 10 kB URL HTTP/1.1 4.bp.blogspot.com/-ThJFqA0SqEU/Tf8sXRXpkuI/AAAAAAAAAQ0/js96J8TbTXs/s150/prev2.png
IP
File type PNG image data, 150 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash c57d325399d94093eea99974ec4736fa
19e3bbeb642c993ad41169da18b8e17073ab286e
f2640247579f79091c8b93592ee35505035e1bc455e870eb5ab9421f95814d3c
GET /-ThJFqA0SqEU/Tf8sXRXpkuI/AAAAAAAAAQ0/js96J8TbTXs/s150/prev2.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v10d"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="prev2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 10170
X-XSS-Protection: 0
www.blogger.com/img/share_buttons_20_3.png
200 OK 5.1 kB URL HTTP/2 www.blogger.com/img/share_buttons_20_3.png
IP
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:28:12 GMT
expires: Tue, 06 Dec 2022 17:28:12 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 14:52:29 GMT
content-type: image/png
age: 453763
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 29335a536fd47c44f11a984665f501f6
46dbfa43c5a94c6baec55a9e89cb1cb0cee7eb69
39d8bc234639a4fceeee88f10319692733e37388c06ae5567971f9dbb7c0aab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s3.ongsono.com/show_ip_address.php
200 OK 0 B URL HTTP/1.1 s3.ongsono.com/show_ip_address.php
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /show_ip_address.php HTTP/1.1
Host: s3.ongsono.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Expires: Mon, 05 Dec 2022 11:30:55 GMT
Cache-Control: public
Last-Modified: Sun, 04 Dec 2022 23:30:55 GMT
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pe0AcmsAiWjxCtJ%2Bjm0ovNxgNBOvtfQbpDQ5vQCOU6cinbqPR9TFwTGXY%2BpA0l2wDaDEINYj12oqeTBUkIHA9JNxQZHYEqz0%2BJjd2jwxeSJ0ptbt0Czw7Nt60%2FeKFEP%2F6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77485526ba220afe-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogblog.com/1kt/travel/bg_black_50.png
200 OK 83 B URL HTTP/1.1 www.blogblog.com/1kt/travel/bg_black_50.png
IP
File type PNG image data, 5 x 5, 8-bit/color RGBA, interlaced\012- data
Hash f7417b83fa976977f788364905aa5dd7
a6ede06565a88ef03ca33ad1b40a3c43e6c7f91f
8ad5d8cd8999e56275e12e5a5325b108bd15146fefe072af726fffecfe6ab862
GET /1kt/travel/bg_black_50.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 83
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 09:36:53 GMT
Expires: Wed, 07 Dec 2022 09:36:53 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 20:52:41 GMT
Content-Type: image/png
Age: 395642
blogblog.com/1kt/travel/bg_black_70.png
301 Moved Permanently 247 B URL HTTP/1.1 blogblog.com/1kt/travel/bg_black_70.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9ee12c3b3131aca9f7501ad3ab6e948c
d1854e0127339d8af2c58a9f4cf1dcbb748cab3e
cd0cf8c6eb88093f351e6dca3e7f13b09144c7dfbd566f1d9cfcd7d189a7d55c
GET /1kt/travel/bg_black_70.png HTTP/1.1
Host: blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: http://www.blogblog.com/1kt/travel/bg_black_70.png
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Mon, 05 Dec 2022 00:00:55 GMT
Cache-Control: public, max-age=1800
Server: sffe
Content-Length: 247
X-XSS-Protection: 0
fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2
200 OK 20 kB URL HTTP/1.1 fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 19920, version 1.0\012- data
Hash 754c4def845e64948e4e2db385078c00
49365281be547c02a001fb7909cdfad1ba518afe
5fb894030e4ade4d9f76ede985bc96d468bcb923fcd4b908a5d8e38178819dc4
GET /s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 19920
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 07:21:58 GMT
Expires: Sat, 02 Dec 2023 07:21:58 GMT
Cache-Control: public, max-age=31536000
Age: 230937
Last-Modified: Tue, 19 Apr 2022 19:00:30 GMT
Content-Type: font/woff2
ocsp.digicert.com/
200 OK 471 B IP
Hash 33002e87ed87cec83ec76bdfe55cb33a
a2dafcefab949833412ab20508096c9974b9e359
f73d30247eb325d9dc9531381224e8942b39b56c264ade1618855f1fad9eda2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4752
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:11:43 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP
File type ASCII text, with very long lines (1957)
Hash d7fd1c83ef30bc5c6bdcc706fb3a37a1
d53609bb633ae63ef66ae8299f3ea5c025e41be2
3ce11dac85bbd511c29a96c74087d46338174cce51930b496da070936adf5bba
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 26ab2bf6d5f0bfdcbc1a73a3f6de1a41
etag: "89c3de23073124cad1fc79f2e615422b"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 04 Dec 2022 23:40:00 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 1/0cg+8wvFxr3McG+zo3oQ==
x-fb-debug: FUB9GprTpVFKZbV/K1IzrLRTBrU/pKxnsBptyF7JGZnT0dlCOaDFrxxcZ/QDLBYmrEYtTwtnYUJpP1HRQiQKHA==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1679558926
date: Sun, 04 Dec 2022 23:30:55 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5322
Cache-Control: max-age=126278
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 10:35:33 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
3.bp.blogspot.com/-LIPJaW26snA/UjLXwnCNL8I/AAAAAAAABVE/erg-JlrMwLI/s640/1.png
200 OK 300 kB URL HTTP/1.1 3.bp.blogspot.com/-LIPJaW26snA/UjLXwnCNL8I/AAAAAAAABVE/erg-JlrMwLI/s640/1.png
IP
File type PNG image data, 640 x 431, 8-bit/color RGB, non-interlaced\012- data
Size 300 kB (299941 bytes)
Hash a896af1e1cc9bd23c90323f3f75fadc0
3cc909389fc500e3e07865ab6aa4b21a6c5512cc
89f3cef9e14d295efb47fec20b09e273864f423edfa75ae370ddb0416a82f928
GET /-LIPJaW26snA/UjLXwnCNL8I/AAAAAAAABVE/erg-JlrMwLI/s640/1.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 299941
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v552"
Content-Type: image/png
Age: 0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 64eb3a8f7cc11324c6f4c77e1c11f7ee
8ad889db020018b726362929a9477872a6808f0a
481082e2478f937b15faec7128ab1a60bf1157b417bfa63022472f434ae240fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
storage.myfreecopyright.com/mfc_protected.png
403 Forbidden 243 B URL HTTP/1.1 storage.myfreecopyright.com/mfc_protected.png
IP
File type XML 1.0 document text\012- XML document, ASCII text
Hash e5622b0e6ee143602873bbf44a5f443e
607d2af57cf2ae9076c0bb8d4f96381cff2a86ed
3a497cf15b8dcb2b1a13d6bd11fd3768ce37b10d34c148a245072952dcbfd35f
GET /mfc_protected.png HTTP/1.1
Host: storage.myfreecopyright.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 403 Forbidden
x-amz-request-id: 6W779E6A9QCRSE88
x-amz-id-2: VPJGGnEAmFhrbzb9GPsLkx5WDFDxYGbz9QCnaOCT5mL97CvwPSs1AbvJ90X2Vrbzs/uTR5NaaPg=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: AmazonS3
www.blogblog.com/1kt/travel/bg_black_70.png
200 OK 84 B URL HTTP/1.1 www.blogblog.com/1kt/travel/bg_black_70.png
IP
File type PNG image data, 5 x 5, 8-bit/color RGBA, interlaced\012- data
Hash 4fc6c14642616095c0b1c90baa826951
25cacf250fad4290661fe8849069769f4eb40aba
4f01951293a11116b89b6e19f70cb9b72b2e3a68b2005c75d1d9b8e7b85eb35a
GET /1kt/travel/bg_black_70.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 84
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 08:28:03 GMT
Expires: Tue, 06 Dec 2022 08:28:03 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 17:52:28 GMT
Content-Type: image/png
Age: 486172
pics7.inxhost.com/images/sticker.gif
200 OK 254 B URL HTTP/1.1 pics7.inxhost.com/images/sticker.gif
IP
ASN #8100 ASN-QUADRANET-GLOBAL
File type GIF image data, version 89a, 80 x 15\012- data
Hash fd663b51cdc02b70c33133efbe3b0901
de9c6a8a8605dab62a85e917a8c6dce785753727
c834eb6baafb55eb3befeb03423e38d8488bba1c37aa190e8b81e2acd249157f
GET /images/sticker.gif HTTP/1.1
Host: pics7.inxhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "614701747"
Last-Modified: Sun, 27 Nov 2022 01:36:42 GMT
Content-Length: 254
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: Microsoft-IIS/8.5
3.bp.blogspot.com/-c3Cz2P6fvms/UjKtSNcYZxI/AAAAAAAABTM/Hy7G9U883Ys/s640/8.png
200 OK 99 kB URL HTTP/1.1 3.bp.blogspot.com/-c3Cz2P6fvms/UjKtSNcYZxI/AAAAAAAABTM/Hy7G9U883Ys/s640/8.png
IP
File type PNG image data, 640 x 453, 8-bit/color RGB, non-interlaced\012- data
Hash 8230b48d796f6df031cd7bcc3c3625bb
ca7ba38bf24eb2742aa220460c4e50ec89871ea4
449f04736e0f4e17d001cc20eb6a0d7a77500b29484a3e726d6d273c0cd9494b
GET /-c3Cz2P6fvms/UjKtSNcYZxI/AAAAAAAABTM/Hy7G9U883Ys/s640/8.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v533"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="8.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 99143
X-XSS-Protection: 0
jg.revolvermaps.com/r.php?i=6869a1tm788&l=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013_09_08_archive.html&r=1670196652962
200 OK 43 B URL HTTP/1.1 jg.revolvermaps.com/r.php?i=6869a1tm788&l=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013_09_08_archive.html&r=1670196652962
IP
ASN #34549 meerfarbig GmbH & Co. KG
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /r.php?i=6869a1tm788&l=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013_09_08_archive.html&r=1670196652962 HTTP/1.1
Host: jg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: Apache
Content-Length: 43
Keep-Alive: timeout=4, max=99
Connection: Keep-Alive
Content-Type: image/gif
4.bp.blogspot.com/-1DKfnYf_pVI/Tf8seJfGGPI/AAAAAAAAAQ8/LZtT-Tv3Po4/s150/home.png
200 OK 12 kB URL HTTP/1.1 4.bp.blogspot.com/-1DKfnYf_pVI/Tf8seJfGGPI/AAAAAAAAAQ8/LZtT-Tv3Po4/s150/home.png
IP
File type PNG image data, 100 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash a671953ad07c2204aefddb273e8b336b
220c4c130974e43fe80c4e3b1a9fa08ca6ccf020
d247e4145bdaf6f2514fe96cd23291129bdcfbcebe611aa96607662a820bfcdc
GET /-1DKfnYf_pVI/Tf8seJfGGPI/AAAAAAAAAQ8/LZtT-Tv3Po4/s150/home.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="home.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11757
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10f"
Content-Type: image/png
Age: 0
ocsp.digicert.com/
200 OK 471 B IP
Hash 33002e87ed87cec83ec76bdfe55cb33a
a2dafcefab949833412ab20508096c9974b9e359
f73d30247eb325d9dc9531381224e8942b39b56c264ade1618855f1fad9eda2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4752
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:11:43 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
jg.revolvermaps.com/c.php?i=6869a1tm788
200 OK 43 B URL HTTP/1.1 jg.revolvermaps.com/c.php?i=6869a1tm788
IP
ASN #34549 meerfarbig GmbH & Co. KG
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /c.php?i=6869a1tm788 HTTP/1.1
Host: jg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: Apache
Cache-Control: max-age=900
Last-Modified: Sun, 04 Dec 2022 23:30:55 GMT
Content-Length: 43
Keep-Alive: timeout=4, max=98
Connection: Keep-Alive
Content-Type: image/gif
2.bp.blogspot.com/-b6owAIJEa2I/UjKsMFCt3LI/AAAAAAAABSI/wAJRJZG-Lxw/s640/1.png
200 OK 300 kB URL HTTP/1.1 2.bp.blogspot.com/-b6owAIJEa2I/UjKsMFCt3LI/AAAAAAAABSI/wAJRJZG-Lxw/s640/1.png
IP
File type PNG image data, 640 x 431, 8-bit/color RGB, non-interlaced\012- data
Size 300 kB (299941 bytes)
Hash a896af1e1cc9bd23c90323f3f75fadc0
3cc909389fc500e3e07865ab6aa4b21a6c5512cc
89f3cef9e14d295efb47fec20b09e273864f423edfa75ae370ddb0416a82f928
GET /-b6owAIJEa2I/UjKsMFCt3LI/AAAAAAAABSI/wAJRJZG-Lxw/s640/1.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v522"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 299941
X-XSS-Protection: 0
2.bp.blogspot.com/-10v0AUDhzkM/UjLYIQFKveI/AAAAAAAABVU/Q_seMzbNNVg/s640/3.png
200 OK 294 kB URL HTTP/1.1 2.bp.blogspot.com/-10v0AUDhzkM/UjLYIQFKveI/AAAAAAAABVU/Q_seMzbNNVg/s640/3.png
IP
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 294 kB (294192 bytes)
Hash 1848d96923c82284bea1ddc969e855e5
a497f1bea81a6d02ac7ff0f10ea5ec07e2643e20
480c7ad5fb208bba1854487f1d6352df323c44f89bfae2be42f78d64a24e0a2e
GET /-10v0AUDhzkM/UjLYIQFKveI/AAAAAAAABVU/Q_seMzbNNVg/s640/3.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="3.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 294192
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v556"
Content-Type: image/png
Age: 0
2.bp.blogspot.com/-nD4DYtrG5_Q/UjKsbyKgkwI/AAAAAAAABSQ/niXVlAdz3eQ/s640/3.png
200 OK 294 kB URL HTTP/1.1 2.bp.blogspot.com/-nD4DYtrG5_Q/UjKsbyKgkwI/AAAAAAAABSQ/niXVlAdz3eQ/s640/3.png
IP
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 294 kB (294192 bytes)
Hash 1848d96923c82284bea1ddc969e855e5
a497f1bea81a6d02ac7ff0f10ea5ec07e2643e20
480c7ad5fb208bba1854487f1d6352df323c44f89bfae2be42f78d64a24e0a2e
GET /-nD4DYtrG5_Q/UjKsbyKgkwI/AAAAAAAABSQ/niXVlAdz3eQ/s640/3.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v524"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 294192
X-XSS-Protection: 0
2.bp.blogspot.com/-ANNlrfF9gVc/UjLYVbakcrI/AAAAAAAABVc/LlmzV8lNhKg/s640/4.png
200 OK 319 kB URL HTTP/1.1 2.bp.blogspot.com/-ANNlrfF9gVc/UjLYVbakcrI/AAAAAAAABVc/LlmzV8lNhKg/s640/4.png
IP
File type PNG image data, 640 x 423, 8-bit/color RGB, non-interlaced\012- data
Size 319 kB (318818 bytes)
Hash fade41f2cb7a83c85282296628270fe2
9c305722edec60f94abfa5a78a3552cd55b1b847
670997abd5a1da5e54a141c53d5ba4695a7cf7b4caaeff0d3f56966214d5dd4b
GET /-ANNlrfF9gVc/UjLYVbakcrI/AAAAAAAABVc/LlmzV8lNhKg/s640/4.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="4.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 318818
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v558"
Content-Type: image/png
Age: 0
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 16:22:21 GMT
Expires: Sun, 18 Dec 2022 16:22:21 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 25714
1.bp.blogspot.com/-rQOBKTjViW0/UM05c9pagjI/AAAAAAAAAgc/DV2_N11GsN8/s798/logo_green.jpg
200 OK 7.8 kB URL HTTP/1.1 1.bp.blogspot.com/-rQOBKTjViW0/UM05c9pagjI/AAAAAAAAAgc/DV2_N11GsN8/s798/logo_green.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 262x80, components 3\012- data
Hash 595a241acf4b78a8080880b7d964e859
e0c433b3f6a850895662e9b36cf36e7453771a21
b916fd730636c65ec4fb565366a0f3c7f189f4e78f7e50b918dc7b968817a89f
GET /-rQOBKTjViW0/UM05c9pagjI/AAAAAAAAAgc/DV2_N11GsN8/s798/logo_green.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v207"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="logo_green.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 7771
X-XSS-Protection: 0
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fDJMwyt8FrWQxNq0Jz/cRA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3pwA5K13oYtvit9rFIKecjBIeEI=
1.bp.blogspot.com/-z-UTIQMExfo/UjLZGSGwtFI/AAAAAAAABWE/WgtyTGaRfIE/s640/9.png
200 OK 241 kB URL HTTP/1.1 1.bp.blogspot.com/-z-UTIQMExfo/UjLZGSGwtFI/AAAAAAAABWE/WgtyTGaRfIE/s640/9.png
IP
File type PNG image data, 640 x 308, 8-bit/color RGB, non-interlaced\012- data
Size 241 kB (241413 bytes)
Hash 6dcf34107c4199902e2a5b227f3a6403
e139484a02e83bccfcb9d500bba424a5f5d9d6d2
6da71261976d41882266bdb215ba72bca9036c4a6d0921d95998e1c234c1e591
GET /-z-UTIQMExfo/UjLZGSGwtFI/AAAAAAAABWE/WgtyTGaRfIE/s640/9.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v562"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 241413
X-XSS-Protection: 0
rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000
200 OK 2.7 kB URL HTTP/1.1 rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000
IP
ASN #34549 meerfarbig GmbH & Co. KG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4694), with no line terminators
Hash 4af76efae45df83550f2bc6f0e08da1e
b240e60e0d9c2bdad0e056e839fa170c3676359d
3f9c41b4fcfc62eee7ba1d7d93e4cb10e9957ea41161319d8bf6e9a4e7caf239
GET /5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000 HTTP/1.1
Host: rg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=290304000
Content-Length: 2653
Keep-Alive: timeout=4, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
4.bp.blogspot.com/-lcwzJa4ztgw/UjKtbCA8E-I/AAAAAAAABTU/_68bLwFdv4s/s640/9.png
200 OK 241 kB URL HTTP/1.1 4.bp.blogspot.com/-lcwzJa4ztgw/UjKtbCA8E-I/AAAAAAAABTU/_68bLwFdv4s/s640/9.png
IP
File type PNG image data, 640 x 308, 8-bit/color RGB, non-interlaced\012- data
Size 241 kB (241413 bytes)
Hash 6dcf34107c4199902e2a5b227f3a6403
e139484a02e83bccfcb9d500bba424a5f5d9d6d2
6da71261976d41882266bdb215ba72bca9036c4a6d0921d95998e1c234c1e591
GET /-lcwzJa4ztgw/UjKtbCA8E-I/AAAAAAAABTU/_68bLwFdv4s/s640/9.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v535"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 241413
X-XSS-Protection: 0
4.bp.blogspot.com/-B3ztVrubu3E/UjLY0zIimTI/AAAAAAAABV0/rNi2_UDjwpE/s640/8.png
200 OK 99 kB URL HTTP/1.1 4.bp.blogspot.com/-B3ztVrubu3E/UjLY0zIimTI/AAAAAAAABV0/rNi2_UDjwpE/s640/8.png
IP
File type PNG image data, 640 x 453, 8-bit/color RGB, non-interlaced\012- data
Hash 8230b48d796f6df031cd7bcc3c3625bb
ca7ba38bf24eb2742aa220460c4e50ec89871ea4
449f04736e0f4e17d001cc20eb6a0d7a77500b29484a3e726d6d273c0cd9494b
GET /-B3ztVrubu3E/UjLY0zIimTI/AAAAAAAABV0/rNi2_UDjwpE/s640/8.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="8.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 99143
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v55e"
Content-Type: image/png
Age: 0
ocsp.digicert.com/
200 OK 279 B IP
Hash 85bce29c704a336a0f53954e73bf6ed1
7f45776d0b93b3bbe5bec1ae6e6e3d16f5d8a947
6177b2dabc0ec5b2f9a7a891973d36303a5649bf25c29a691e8ff95024042580
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2789
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:44:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
200 OK 381 kB URL HTTP/2 themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Picasa], baseline, precision 8, 1800x1350, components 3\012- data
Size 381 kB (380966 bytes)
Hash 25f28c14231c292ea378827e6f5c24df
d421366c81560e3577e6f1378720ad7731237fda
6afcea5c82cdabdfeda856796c10189c4b8e9d1d2984f56db6e20622e049964a
GET /image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Mon, 05 Dec 2022 23:30:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 04 Dec 2022 23:30:55 GMT
server: fife
content-length: 380966
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 85bce29c704a336a0f53954e73bf6ed1
7f45776d0b93b3bbe5bec1ae6e6e3d16f5d8a947
6177b2dabc0ec5b2f9a7a891973d36303a5649bf25c29a691e8ff95024042580
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2789
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:44:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
3.bp.blogspot.com/-jcOQzHpTRqI/UjLYkTGXEqI/AAAAAAAABVk/yzugJ2Wd2CE/s640/5.png
200 OK 297 kB URL HTTP/1.1 3.bp.blogspot.com/-jcOQzHpTRqI/UjLYkTGXEqI/AAAAAAAABVk/yzugJ2Wd2CE/s640/5.png
IP
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 297 kB (297059 bytes)
Hash 9e0fa7dd55748049297493581c6cefe8
38332769a6d67d8246de55aee66b8ab1228d045f
92be499e78602b230352a26bc6e48972ce943e808c25f35afca7c074f672863b
GET /-jcOQzHpTRqI/UjLYkTGXEqI/AAAAAAAABVk/yzugJ2Wd2CE/s640/5.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="5.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 297059
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v55a"
Content-Type: image/png
Age: 0
www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
Content-Type: text/plain
Server: proxygen-bolt
Date: Sun, 04 Dec 2022 23:30:55 GMT
Connection: keep-alive
Content-Length: 0
ocsp.digicert.com/
200 OK 278 B IP
Hash ffe291236e6ee19feea4669966118d42
ca4bf3a762f0cf005213bcced081a4527114f9a3
71f661233c98d11d58fc9d26313392cf2823faa688712c7cbd2fb09de6f67383
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5711
Cache-Control: max-age=158705
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Etag: "638ce051-116"
Expires: Tue, 06 Dec 2022 19:36:00 GMT
Last-Modified: Sun, 04 Dec 2022 18:00:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Sun, 04 Dec 2022 23:30:55 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%20%7C%2008%20September%202013&ref=safehacking4mas.blogspot.com
200 OK 1.4 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%20%7C%2008%20September%202013&ref=safehacking4mas.blogspot.com
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (319)
Hash f40a59190b9e414527006b0ed1e145cb
069827bf4ab39c3068d9e29930acc3258d804e13
5d3e6d95fefa3f56f93e284932e7c247962e52debcc22110e8df29d27488ce4c
GET /geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%20%7C%2008%20September%202013&ref=safehacking4mas.blogspot.com HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="NOI ADM DEV COM NAV OUR STP"
set-cookie: idcompteurcc_2194072=done; expires=Mon, 05-Dec-2022 23:30:55 GMT; Max-Age=86400; path=/
online_idcompteurcc_2194072=done; expires=Sun, 04-Dec-2022 23:33:55 GMT; Max-Age=180; path=/
pays_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
online_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
vj_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
total_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
bonus_2194072=15947; expires=Mon, 05-Dec-2022 23:30:55 GMT; Max-Age=86400; path=/
bonus_j_2194072=1; expires=Sun, 04-Dec-2022 23:33:55 GMT; Max-Age=180; path=/
cache-control: public, max-age=180
expires: Sun, 04 Dec 2022 23:33:55 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zsMGXljnj%2Bhubs%2BbFFVcY0BzvZ2CnJkh8L9lqU8VetW%2Bp8qOKURKWPbfxn8lYBVH8itH7HwOHv1tR7PHRmFdy3y3XXZgyxhe1yOVLz%2BWqfVruTHAPZZPnH3YX%2FSgioxh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7748552a790f0b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
storage.myfreecopyright.com/mfc_protected.png
403 Forbidden 243 B URL HTTP/1.1 storage.myfreecopyright.com/mfc_protected.png
IP
File type XML 1.0 document text\012- XML document, ASCII text
Hash 3cfa027defcf3e72f1d60070cd3ae7d0
ead06cdb5719faf7f384408738886e652d94f556
7d9bf0671ec54e87cc278944039e7b7e2a59499b06156530641ecfb8e5d406a8
GET /mfc_protected.png HTTP/1.1
Host: storage.myfreecopyright.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 403 Forbidden
x-amz-request-id: 6W7AW6BT5J4FJQCP
x-amz-id-2: ty7zrXiZlQiVCI5VgNYJBViyhm0FkkGk5KziKcK2WPkX6fWFVzrzEMkri0RhIr95dbW/GjX0R/s=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: AmazonS3
1.bp.blogspot.com/-UEBLlopQ5RE/UjKtGzYwIJI/AAAAAAAABTA/gKtOJ-fa_d8/s640/7.png
200 OK 236 kB URL HTTP/1.1 1.bp.blogspot.com/-UEBLlopQ5RE/UjKtGzYwIJI/AAAAAAAABTA/gKtOJ-fa_d8/s640/7.png
IP
File type PNG image data, 640 x 311, 8-bit/color RGB, non-interlaced\012- data
Size 236 kB (236256 bytes)
Hash 42435b7ea3a37c12c8074e8fb98c6e55
13dbc05e873eb3e0750408f320d181feb3907e37
a7af4d632c81230a8432adefed91f39d8752628526669644c09e4d8d8761b0d9
GET /-UEBLlopQ5RE/UjKtGzYwIJI/AAAAAAAABTA/gKtOJ-fa_d8/s640/7.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v530"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 236256
X-XSS-Protection: 0
4.bp.blogspot.com/-xKhdp_tcYJ4/UjKsfveYs3I/AAAAAAAABSY/FzQJ7ZFEKbc/s640/2.png
200 OK 299 kB URL HTTP/1.1 4.bp.blogspot.com/-xKhdp_tcYJ4/UjKsfveYs3I/AAAAAAAABSY/FzQJ7ZFEKbc/s640/2.png
IP
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 299 kB (299394 bytes)
Hash 2012e6c40d3eacbd1dc43dacfd8e25a3
7538452d08091165262f708144b16ce7df77cb84
3f8c9c5780e98f9a95f384cc8647df2e2f4f2bf5ced921e6e31553d07b704f7d
GET /-xKhdp_tcYJ4/UjKsfveYs3I/AAAAAAAABSY/FzQJ7ZFEKbc/s640/2.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v526"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 299394
X-XSS-Protection: 0
ocsp.digicert.com/
200 OK 279 B IP
Hash 85bce29c704a336a0f53954e73bf6ed1
7f45776d0b93b3bbe5bec1ae6e6e3d16f5d8a947
6177b2dabc0ec5b2f9a7a891973d36303a5649bf25c29a691e8ff95024042580
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2789
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:44:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
1.bp.blogspot.com/-SOkXT0Lau78/UjKsouN3XVI/AAAAAAAABSg/aQOssgNNnb4/s640/4.png
200 OK 319 kB URL HTTP/1.1 1.bp.blogspot.com/-SOkXT0Lau78/UjKsouN3XVI/AAAAAAAABSg/aQOssgNNnb4/s640/4.png
IP
File type PNG image data, 640 x 428, 8-bit/color RGB, non-interlaced\012- data
Size 319 kB (318772 bytes)
Hash 146cb08e5363d8626627eb8560e82689
ba67b2bfabba11c4a7d7cd0be07ce6b31e1cf6fc
d01d1d79c36040b13a20c6f77d52f1bff1e01f2664c42f8bf3bf560535bff6fb
GET /-SOkXT0Lau78/UjKsouN3XVI/AAAAAAAABSg/aQOssgNNnb4/s640/4.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v528"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 318772
X-XSS-Protection: 0
4.bp.blogspot.com/-YMw0si3qJuM/UjLX6DY5sJI/AAAAAAAABVM/C8W8F4tQifs/s640/2.png
200 OK 299 kB URL HTTP/1.1 4.bp.blogspot.com/-YMw0si3qJuM/UjLX6DY5sJI/AAAAAAAABVM/C8W8F4tQifs/s640/2.png
IP
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 299 kB (299394 bytes)
Hash 2012e6c40d3eacbd1dc43dacfd8e25a3
7538452d08091165262f708144b16ce7df77cb84
3f8c9c5780e98f9a95f384cc8647df2e2f4f2bf5ced921e6e31553d07b704f7d
GET /-YMw0si3qJuM/UjLX6DY5sJI/AAAAAAAABVM/C8W8F4tQifs/s640/2.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v554"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 299394
X-XSS-Protection: 0
1.bp.blogspot.com/-Je6jT9LcXMs/UjLYrCn_sXI/AAAAAAAABVs/aGYk7mBqkO0/s640/6.png
200 OK 226 kB URL HTTP/1.1 1.bp.blogspot.com/-Je6jT9LcXMs/UjLYrCn_sXI/AAAAAAAABVs/aGYk7mBqkO0/s640/6.png
IP
File type PNG image data, 640 x 300, 8-bit/color RGB, non-interlaced\012- data
Size 226 kB (226211 bytes)
Hash 35890a42e96f21a17abc3cc07f1793b0
cb9143b961f8a8c21492cfe14fa6f277d63f24d5
eb2ec841b2a4b35538e31c1f16efb101e2ce2be1917d9375dcac423843bf222a
GET /-Je6jT9LcXMs/UjLYrCn_sXI/AAAAAAAABVs/aGYk7mBqkO0/s640/6.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="6.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 226211
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v55c"
Content-Type: image/png
Age: 0
www.widgeo.net/tcm_t_u.js
200 OK 0 B URL HTTP/2 www.widgeo.net/tcm_t_u.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tcm_t_u.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:55 GMT
content-type: application/javascript
content-length: 0
cf-bgj: minify
cf-polished: origSize=4360
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 03:46:03 GMT
last-modified: Sat, 01 Oct 2022 00:32:25 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 243891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qp%2BVwuZhebY0XkGpDqLITa3k781gUj6ROO8zUWwjAR5OX%2B3N5juUnRjTFkJ176pEUXUikFXvw2OlyoBbCFih9%2FgY1qy%2Bd8lpwfb98gQkulExMWfwzOGBiHt%2FqN1ouI9g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552ba854b503-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 64eb3a8f7cc11324c6f4c77e1c11f7ee
8ad889db020018b726362929a9477872a6808f0a
481082e2478f937b15faec7128ab1a60bf1157b417bfa63022472f434ae240fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cb439dd80ba82164b879c340b9778147
2bbd26b48daa0b8d2a190f7e8857c716dea279ca
3ab3afbcebe7c744b6446fbb471bda45722313cae36b3020e152e75425a3f760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 278 B IP
Hash ffe291236e6ee19feea4669966118d42
ca4bf3a762f0cf005213bcced081a4527114f9a3
71f661233c98d11d58fc9d26313392cf2823faa688712c7cbd2fb09de6f67383
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4231
Cache-Control: max-age=157224
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Etag: "638ce051-116"
Expires: Tue, 06 Dec 2022 19:11:20 GMT
Last-Modified: Sun, 04 Dec 2022 18:00:49 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
302 Found 482 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (519)
Hash 5b993bf90f9b57d89591ab8baaa645e3
79b43a6c5039d6f92c2bedc41f497ce009e54c5c
7bbf34aadfa3af11c72b0f2458d3ce879b62e3d465f81eb779b84773e4027978
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://www.blogger.com/followers.g?blogID=6105040037749415494&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-IPOZmgNZlNF-aiKrYUWfUw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 482
server: GSE
set-cookie: __Host-GAPS=1:Ax0MY6BWXj5kraWdR3mpBUYHeNkO1g:jm0D3vwpe0pDtwWg;Path=/;Expires=Tue, 03-Dec-2024 23:30:56 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rg.revolvermaps.com/d/m/256/4.jpg
200 OK 24 kB URL HTTP/1.1 rg.revolvermaps.com/d/m/256/4.jpg
IP
ASN #34549 meerfarbig GmbH & Co. KG
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 256x128, components 3\012- data
Hash f740a9fe450be470bf84a06d1752e9e8
4c2187f66e2c771ce169d8dd35152c81331c75bf
41a4d4a6fae1dd85bcc3c9ced2a3b98afb9e751a5a7b6ad0837ad3d13b9e435d
GET /d/m/256/4.jpg HTTP/1.1
Host: rg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:56 GMT
Server: Apache
Last-Modified: Sun, 20 Feb 2011 15:36:38 GMT
Accept-Ranges: bytes
Content-Length: 23695
Cache-Control: public, max-age=290304000
Keep-Alive: timeout=4, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 3.9 kB URL HTTP/1.1 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
File type ASCII text, with very long lines (12331)
Hash 54c87b7a9007d256c837e382cab4170d
6c8f44204021f68596af9ae5a742c3ad1b76a6ec
3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%20%7C%2008%20September%202013&ref=safehacking4mas.blogspot.com
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 18:31:41 GMT
ETag: W/"6387a18d-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EbAOeUsFTjl4cvw12PDpaJvUfZddS2tLJ6%2F5J%2BolpJHcreuFyPNaFefCVtjYXogcLOb36lE1Vd48RmxRxpeSDflcdigXf8gsAUfWBQpgrWmP1G3nnORi9bN%2BjJaPrUGN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7748552caa630b41-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Tue, 06 Dec 2022 23:30:56 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
1.bp.blogspot.com/-as3jkBDYtGQ/UjLY7Ndv0XI/AAAAAAAABV8/43Euw-PDiJw/s1600/7.png
200 OK 484 kB URL HTTP/1.1 1.bp.blogspot.com/-as3jkBDYtGQ/UjLY7Ndv0XI/AAAAAAAABV8/43Euw-PDiJw/s1600/7.png
IP
File type PNG image data, 1052 x 511, 8-bit/color RGB, non-interlaced\012- data
Size 484 kB (484281 bytes)
Hash f5b761ccf09ff04be624d61a74518647
677edf49661a80dd27361f35d4967a7efebc69f3
2f7db9696946b66ad955050988d86b788fb3616daf2fd94e22407c5cd66be03b
GET /-as3jkBDYtGQ/UjLY7Ndv0XI/AAAAAAAABV8/43Euw-PDiJw/s1600/7.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v560"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 484281
X-XSS-Protection: 0
www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}, {"max_age":3600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}],"group":"network-errors"}
nel: {"report_to":"network-errors","max_age":3600,"failure_fraction":0.01}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: JX9t+j4ZfE7Ac6srdXcBpkC8N7iN7YruIblC5aX4ibMqvANOQ2riXeQPDP4Oxg5tDqiSjX7nm0e5c8skQtSthA==
content-length: 0
date: Sun, 04 Dec 2022 23:30:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
rg.revolvermaps.com/t.php?i=6869a1tm788&r=tz8i
200 OK 25 B URL HTTP/1.1 rg.revolvermaps.com/t.php?i=6869a1tm788&r=tz8i
IP
ASN #34549 meerfarbig GmbH & Co. KG
Hash 7ae6f05e66f1c6825d8e00956fb7db58
cb0ad7e7e861c8376eb79836fc16f343b69c7bf9
94e173d9ceab73248b8f4e33d5acc332e68806abf4fb50f83ba0c0b1f2ecb8f2
GET /t.php?i=6869a1tm788&r=tz8i HTTP/1.1
Host: rg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:56 GMT
Server: Apache
Content-Length: 25
Keep-Alive: timeout=4, max=98
Connection: Keep-Alive
Content-Type: text/plain;charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-vCyPVLtBY7o/UjKsxNQa-XI/AAAAAAAABSo/4DLJsDm0Nuk/s640/5.png
200 OK 503 B URL HTTP/1.1 4.bp.blogspot.com/-vCyPVLtBY7o/UjKsxNQa-XI/AAAAAAAABSo/4DLJsDm0Nuk/s640/5.png
IP
Hash 4f983d2d0c97ff0944a7ef34ec4330ae
14c242b3a0189e9406bc612d8c2540d5e5984d5a
d4eead0b3f27149eaba02487857dede1c4387a26ed1278bb694e898efb07bfc7
GET /-vCyPVLtBY7o/UjKsxNQa-XI/AAAAAAAABSo/4DLJsDm0Nuk/s640/5.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v52a"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 297059
X-XSS-Protection: 0
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 4.4 kB URL HTTP/2 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
Hash 44e82e57966df690cf5bfd87da6f0772
f780d4d70ad138ecea76c13c8c39ca949fa83ac4
0836ec212dbd770869ecfb8b185beeb1819eb32e4c0b3bc2a6a685e8f70e97f2
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/hitparade.php?pagexiti=geoiphone
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ayDQjWtjmxXj00kOUYJ%2FsOYJaiaBnjOYUnPH%2BGXYx1k8peXMZwdxCBa%2Fv%2BhMj6ehpceW%2FfNsdAoMbMttCOxIFpsaYWHOemVbQP0%2FrIyvfBpJEDVUAO%2BHGioMQgenE5EM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7748552cf989b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 06 Dec 2022 23:30:56 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-_CcFEMyjyFk/UjKtJRlDWVI/AAAAAAAABTE/bOMumKEqu4g/s640/6.png
200 OK 226 kB URL HTTP/1.1 1.bp.blogspot.com/-_CcFEMyjyFk/UjKtJRlDWVI/AAAAAAAABTE/bOMumKEqu4g/s640/6.png
IP
File type PNG image data, 640 x 300, 8-bit/color RGB, non-interlaced\012- data
Size 226 kB (226211 bytes)
Hash 35890a42e96f21a17abc3cc07f1793b0
cb9143b961f8a8c21492cfe14fa6f277d63f24d5
eb2ec841b2a4b35538e31c1f16efb101e2ce2be1917d9375dcac423843bf222a
GET /-_CcFEMyjyFk/UjKtJRlDWVI/AAAAAAAABTE/bOMumKEqu4g/s640/6.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="6.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 226211
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:56 GMT
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v531"
Content-Type: image/png
Age: 0
www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
IP
File type ASCII text, with very long lines (20080)
Hash 7376e96900df70990ab089b6f572b15a
3401e66a09bef50468782873721ac2223511e6e8
130d0520b1660cc231f3b73e6143159fee1d47dee1d7a6a958f87998ac43a26b
GET /gtag/js?id=G-RP7FMTL79Y HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 23:30:56 GMT
expires: Sun, 04 Dec 2022 23:30:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.widgeo.net/geocompteur/img/tmp/earth_blue.png
200 OK 2.6 kB URL HTTP/2 www.widgeo.net/geocompteur/img/tmp/earth_blue.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 007ede82537f2eb7e991ea20c6bc7b78
e6468eec65f4630144c093e01f801fdfa9b192d1
fdba9a1248b8c6cf7a3d1261e0acbb873a4a4caf93bd4647bf6f15ea4e11f9ab
GET /geocompteur/img/tmp/earth_blue.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: image/webp
content-length: 2620
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3276
content-disposition: inline; filename="earth_blue.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sun, 01 Jan 2023 03:46:03 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 243891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q2ld%2Fq58B0gHrsjx5EZaksRterLtNo0OSmNhmuP8XO%2BzvaQX5p3tEIVTdRLQbXtuZsphw%2F7zQ2ui3aqHLvR%2FQOD%2BBagD0FUlUD%2FRRty02zhZQd85L%2BK2TPS2W8Qx4rZ3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552e3a86b503-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/img/tmp/geoiphone.png
200 OK 13 kB URL HTTP/2 www.widgeo.net/geocompteur/img/tmp/geoiphone.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0ce0946129ba4a52bd090187d92052fa
a7569b3380803eafdcbbaf7692615ee9c2b1c5ed
dca5f742066232f2227cd12113ff4af4b45e1d9e148afc677782f0c53a54baf9
GET /geocompteur/img/tmp/geoiphone.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: image/webp
content-length: 13288
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=17826
content-disposition: inline; filename="geoiphone.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sun, 01 Jan 2023 03:46:03 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 243891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=frd3No%2Btx98sMwJmv6OIm2cIo1r%2FH%2BQsTBzSB%2BC0bF1vGfv4LJcl6v%2FlemPY6OuQSZePmmRscNpb7V0AX5BfLYOQF%2FuvxpnBo%2FQ9ZFHSinq7qk%2F2%2FZgpc1mgSK4mifvW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552e4a8ab503-OSL
X-Firefox-Spdy: h2
logv33.xiti.com/hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/
302 Found 151 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/
IP
File type HTML document, ASCII text
Hash 50b1630f10be27c547fcf0d79a668def
1a694202acd7a9ea79f1e8c3bd29bfcb2a61544f
2d90afe734561ca4ad9eacee9ea6b77063e899a669045f2fc20462cbb5f50078
GET /hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/ HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 151
date: Sun, 04 Dec 2022 23:30:56 GMT
cache-control: no-store
location: /hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: idrxvr=5D48541A-EA22-4166-851E-A32938C96561; Path=/; Domain=xiti.com; Expires=Thu, 04 Jan 2024 23:30:56 GMT; HttpOnly
atidx=5D48541A-EA22-4166-851E-A32938C96561; Path=/; Domain=xiti.com; Expires=Thu, 04 Jan 2024 23:30:56 GMT; HttpOnly; Secure
atid=5D48541A-EA22-4166-851E-A32938C96561; Path=/; Domain=xiti.com; Expires=Thu, 04 Jan 2024 23:30:56 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: El99PzLxW5aNGnVZ4oYSPa7rNrxPZ5brb8fCKoIpbuAuESBF3WRKkA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
z.moatads.com/addthismoatframe568911941483/moatframe.js
200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=56089
date: Sun, 04 Dec 2022 23:30:56 GMT
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
200 OK 25 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
IP
File type ASCII text, with very long lines (820)
Hash cc24419c482370498f3c227ac73d666b
37fc103ace873f47102e0ca88eb4735bc6806750
152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 12:33:41 GMT
expires: Sun, 03 Dec 2023 12:33:41 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 125835
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
200 OK 47 kB URL HTTP/2 www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
IP
Hash 85fe63b60fda164612aa4abcca8b4d6e
c5c43e5be9494f3fb001dc1d30054756abad79be
6ede39151cc5c6cd2e5137fcbf5fac7ce65cbff0028eaf1a982cb8d14c35a4bd
GET /geocompteur/css/geo_css.php?c=geoiphone&size= HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: text/css;charset=UTF-8
cache-control: public, max-age=604800
expires: Sun, 11 Dec 2022 23:30:55 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XeNHDj%2BP8qeDiui2k1vIm5Duhnpqeuwr5r5V%2F8Q58DCMk3SbRCL%2BtUvxdC5BrbG7jgZ1lqyo7SnALdZ8raBYDKqK%2BD8PWg2cdukNp0U1plHLplPAApLq1IGy%2FNMNfjue"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552ca91ab503-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logv33.xiti.com/hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On
200 OK 373 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On
IP
File type GIF image data, version 89a, 39 x 25\012- data
Hash 29cb2a1e585dff1f4282449fdbbab2d7
075d147195f9dba1862a6f3990d219d7c4389225
86fd3be02ab9497ebb14a884fb226386cd0db257b234b005f0000326ae8c9081
GET /hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.widgeo.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 373
date: Sun, 04 Dec 2022 23:30:56 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T7syxk6AAYne-HSg3I80jsFatOprqCxIM-vEvkJNgDyxPEFL4kIrwg==
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js?hash=f8501572626cd2a92552e3896783d82c
200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=f8501572626cd2a92552e3896783d82c
IP
File type ASCII text, with very long lines (18734)
Hash 736309cf9ab9f7f1aaf5e6ba296bcb86
250ba4910b34b7e4aa2ca14e7fb6725e66b14f80
4395a91af295568813cfa983f5693cec4694cc969d1f39faaa0a7900788ed036
GET /en_US/all.js?hash=f8501572626cd2a92552e3896783d82c HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 1c2e5e4f06971f2fee63909410731716
etag: "fee8d60678706bf610a9f26b8e8123d8"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 04 Dec 2023 21:52:43 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: c2MJz5q59/Gq9ea6KWvLhg==
x-fb-debug: R2f198ee8k4Kro92wzBi2tFhohfKFiZ1oVCGOM/Rn9wj9EbUV5PjMOWtGKJs+Wd7nGBcp0wwIrgT7pN4pqZbog==
priority: u=3,i
content-length: 86735
x-fb-trip-id: 1679558926
date: Sun, 04 Dec 2022 23:30:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 3b37e9e4dc5c39c8fb6aba1ddd4ddc4e
2a3653d905b34824efded08cbb4c400f80d73526
c2855a99d6c1522d57a8224193527da72bf97c139541d1e010a51762fb1ab73e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6022
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Etag: "638c57ef-116"
Last-Modified: Sun, 04 Dec 2022 21:50:34 GMT
Server: ECS (amb/6BBA)
X-Cache: HIT
Content-Length: 278
4.bp.blogspot.com/-nGFfPEKLSC8/Tc5GbVhSqkI/AAAAAAAAAHQ/Lb6TGtBZNiY/s300/Favicon.png
200 OK 1.2 kB URL HTTP/1.1 4.bp.blogspot.com/-nGFfPEKLSC8/Tc5GbVhSqkI/AAAAAAAAAHQ/Lb6TGtBZNiY/s300/Favicon.png
IP
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 1da5eda143506695c18215a9dfa5d6a5
dfd9f622576ee2593273133334f4038b4b80cfba
f6d6609cc138db307b9872e39ce22be8cca4c3f5f21af65edfc549065792a5bd
GET /-nGFfPEKLSC8/Tc5GbVhSqkI/AAAAAAAAAHQ/Lb6TGtBZNiY/s300/Favicon.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Favicon.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1162
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:56 GMT
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v74"
Content-Type: image/png
Age: 0
tzegilo.com/stattag.js
200 OK 5.5 kB IP
File type ASCII text, with very long lines (12966), with no line terminators
Hash 9b1b06938646350d97cd273fc60af9be
3a060ed02516fcf4e0bfcfcf925943d837d25330
191a326b611edcca75058be969f1da1e17beab070f1d8f94f863b26a0f772899
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4357
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hOLH8aULlsb82BzRQGulP0qY%2B8v4UaaxONqGKoLcZiEMynsWYAhzI2HZ3yCLUex52OfhX1zxbGqBS5o3oo0R3J5MXuY0LTpWQFD1vTXlEF2%2BcVDZZWzJuCy3W8cW8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7748552f9eb1b4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d5f25c4c99bce7de9166e989e0e94df3
977a8feb8420b10fc4b27440203b08ecae7516f8
5e444685fc55211330424827c83a0b4a885ff07f4c97fa667eead72cdc3c3eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E444685FC55211330424827C83A0B4A885FF07F4C97FA667EEAD72CDC3C3EAF"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8122
Expires: Mon, 05 Dec 2022 01:46:18 GMT
Date: Sun, 04 Dec 2022 23:30:56 GMT
Connection: keep-alive
www.widgeo.net/geocompteur/geowidget_js.js
200 OK 501 B URL HTTP/2 www.widgeo.net/geocompteur/geowidget_js.js
IP
File type ASCII text, with very long lines (866)
Hash aabaf14e31c7bda100e5ac660ebc83cb
6584cd6c278873022fa992ff87a9f993ad417cc7
6213f3f0b353d3ca43b76eaa05f609492fd3e68a8187c9eed93604f97eb0789f
GET /geocompteur/geowidget_js.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2217
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 12:58:55 GMT
last-modified: Thu, 13 Feb 2020 12:35:42 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 469920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MHIdQagJ5UoxFrxneZfchbNv1NU4tQc5kymWWeWcePCIG%2F2%2BICAorLUkLFlRUnVkZVsnrsXnTGfKuQklGkqcS3Q6KOZV47j3YE3fvat7X%2FSEpUylBT2wexYeJ0hqAU8J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552e4a94b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=70ded7bfddc54d93ac841be3af7f4a6d
200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=70ded7bfddc54d93ac841be3af7f4a6d
IP
File type JSON data\012- , ASCII text
Hash 44f70953b762a3e9c3330d5d74e10e03
6250fb6a001e3352716454902917bfd3f5074dc2
f8975a593a6a32ac88a915ea8fac8c79ce2ec633097360aded29af58dfce4fe7
GET /gid.js?userId=70ded7bfddc54d93ac841be3af7f4a6d HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://safehacking4mas.blogspot.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=70ded7bfddc54d93ac841be3af7f4a6d; expires=Mon, 04 Dec 2023 23:30:56 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
inklinkor.com/tag.min.js
200 OK 26 kB IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 14d5c17175d26b1bd4b70c91f90a402e
9c55a837247ca16d22607d40ccab3bee0d7017be
4a1017d530a0d95c7585b5462312e49e80e5f8da5bf95279f9ce7006b175b856
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:55 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: ebcc4d0bfe60ea9b05991349b64d69d7
cache-control: max-age=86400
last-modified: Fri, 02 Dec 2022 10:18:23 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Mon, 05 Dec 2022 21:46:41 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 6254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWJ1VqzvMJU4ZuKdRn9wp30POeMOy3U%2FgvQwRbvvHcGuFQFegfTioRg43xGNsRqkicF1fMYYhaOn%2Fny02LNduttAgXjkBDW0rKBF56hvuxTGkPIRL7ekExUNk7ngDZpP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7748552bea85b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7c9e0bb25e8c28e8b10038806b0a7190
9fa6097aeb8eacde8ba7c9ab80a7a7d2405ae2bc
f4864000960be2f888ed7d2467f74130231fed6f56ad48ff15861f5769e95a58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c1f7594a4097e4dcc9fd7d4a02cafafe
b9dba74fb06bc248a40b26cb26600e750e376695
4dc877df2ca9330da46809359d71469672d18d87edcfee2c825fde13f470bfd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7c9e0bb25e8c28e8b10038806b0a7190
9fa6097aeb8eacde8ba7c9ab80a7a7d2405ae2bc
f4864000960be2f888ed7d2467f74130231fed6f56ad48ff15861f5769e95a58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s7.addthis.com/static/counter.d27508c102582d608697.js
200 OK 8.3 kB URL HTTP/2 s7.addthis.com/static/counter.d27508c102582d608697.js
IP
File type ASCII text, with very long lines (24530), with no line terminators
Hash 47fcfb824ad738c29e3195451d5c755e
8a955f27a30f4a8c9cde94567c041040e3c60d61
1508b4ae159e51231031ce58f3a5c31aca11a438f4ea3c12ea3581bbc97f4305
GET /static/counter.d27508c102582d608697.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5fd2"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 8265
date: Sun, 04 Dec 2022 23:30:56 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECIj94_qVp7n8zgEiC3ZjYXJkX3Bob3RvKigyZWQ4YWNhZTUzYTNiMjdkYjA5OGIzOGQ0NDMwMWJkMzMwNmRhMDczMAF3VyYdnU3kBRPTVv-2LAZI6_EzeA
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECIj94_qVp7n8zgEiC3ZjYXJkX3Bob3RvKigyZWQ4YWNhZTUzYTNiMjdkYjA5OGIzOGQ0NDMwMWJkMzMwNmRhMDczMAF3VyYdnU3kBRPTVv-2LAZI6_EzeA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECIj94_qVp7n8zgEiC3ZjYXJkX3Bob3RvKigyZWQ4YWNhZTUzYTNiMjdkYjA5OGIzOGQ0NDMwMWJkMzMwNmRhMDczMAF3VyYdnU3kBRPTVv-2LAZI6_EzeA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WClU7Ulqut-qLZea75JmnYtMirDIz3tAc9dydDGQew=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-bYGbZsdGTH2qS-yudu4EBA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=Myny15Db-bx2a0uIyH2iMf0nefqyN4q5Pt5_Wp217_-IU-o6Qhtpq2D9_FUTklGmDD2j5XfKcrrH4K-fM2yegcJXfr7ujdeXcqbid_y0ujBEZhWi-1VzseuOR2E3b9tRYgIwX1dvEsqOiGzziX2cw6PyvHhxFNXbHxg5bW0xtx0; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECLDN1sL5obWi_gEiC3ZjYXJkX3Bob3RvKig4MGI3NmYzMGVlYTQ3Yzc1ZjA5MDI1ZDJiNjE5MGJjZDg2Y2FhZGM3MAE7KsZGhMsKGBRO1N0j_9vHOL5J2w
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECLDN1sL5obWi_gEiC3ZjYXJkX3Bob3RvKig4MGI3NmYzMGVlYTQ3Yzc1ZjA5MDI1ZDJiNjE5MGJjZDg2Y2FhZGM3MAE7KsZGhMsKGBRO1N0j_9vHOL5J2w
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECLDN1sL5obWi_gEiC3ZjYXJkX3Bob3RvKig4MGI3NmYzMGVlYTQ3Yzc1ZjA5MDI1ZDJiNjE5MGJjZDg2Y2FhZGM3MAE7KsZGhMsKGBRO1N0j_9vHOL5J2w HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WClclEhiJ7GVCebwmyUL3-KUF54YAMXhCA3YlzgheA=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-Z6cfP-G9sGCnWHf6VW9TCQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=BVIRFnU2AtptpYXkDiVuteS9r5woN2haEi0QMk1P8Hbcz-5RI2dI85akkXiklPI2w_ymxpeePHsIOjIy_87FekiFwmNXQch2KRI6wbWCwZ6ae9gB1pBEHDVHZ-6M_asCjduum6sO3-zY4Lu9vPX74bj6beP0Sb0vuEv1WM4hGP8; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7c9e0bb25e8c28e8b10038806b0a7190
9fa6097aeb8eacde8ba7c9ab80a7a7d2405ae2bc
f4864000960be2f888ed7d2467f74130231fed6f56ad48ff15861f5769e95a58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c1f7594a4097e4dcc9fd7d4a02cafafe
b9dba74fb06bc248a40b26cb26600e750e376695
4dc877df2ca9330da46809359d71469672d18d87edcfee2c825fde13f470bfd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/s2/photos/public/AIbEiAIAAABECOrGgpP0leihygEiC3ZjYXJkX3Bob3RvKig3NTA5MjA0ZmFiYmMxMzIxMTBjMDcxOWZkMDc2MDcwMmY0NzlhY2E0MAELhtXBT4ohtMq8956dhX3C7rYtmQ
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECOrGgpP0leihygEiC3ZjYXJkX3Bob3RvKig3NTA5MjA0ZmFiYmMxMzIxMTBjMDcxOWZkMDc2MDcwMmY0NzlhY2E0MAELhtXBT4ohtMq8956dhX3C7rYtmQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECOrGgpP0leihygEiC3ZjYXJkX3Bob3RvKig3NTA5MjA0ZmFiYmMxMzIxMTBjMDcxOWZkMDc2MDcwMmY0NzlhY2E0MAELhtXBT4ohtMq8956dhX3C7rYtmQ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WCnwTnm4Jqal2bqoOrZSuLx7EX9_kaMMwQzjmweM3w=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-RqriAa5O115SJzjEmoRQFg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=FBQ-_GbjVzFA7AjZwnCLvVZE-frkA22sJFtVa0_5IKCR83aXjCzLBWkgW0-r8XBYWlKpa4aOXjnQngXa4saZc_GFULAWyPEB8NhJUo6jclYXMJxl6x5-PAj0TE2gNouPW3JaZuVZwvvdCtuFE2VZqBtK929avZd0zv-ybh-ua6Q; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECI6pyrOj4MLIqQEiC3ZjYXJkX3Bob3RvKihmOTg4ODAzZjk0OTJmOTIwM2FlYTNkOWFhMTMxZDZlNzQ0ZmExOTM4MAGUaHQup-TJOBQmWB8RSZAzMhba1g
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECI6pyrOj4MLIqQEiC3ZjYXJkX3Bob3RvKihmOTg4ODAzZjk0OTJmOTIwM2FlYTNkOWFhMTMxZDZlNzQ0ZmExOTM4MAGUaHQup-TJOBQmWB8RSZAzMhba1g
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECI6pyrOj4MLIqQEiC3ZjYXJkX3Bob3RvKihmOTg4ODAzZjk0OTJmOTIwM2FlYTNkOWFhMTMxZDZlNzQ0ZmExOTM4MAGUaHQup-TJOBQmWB8RSZAzMhba1g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WCkBbykGa0OZWVMLAt7twX4FCtfYVTEGD40vGuNREw=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-aXOy9YZQ5oo9d9cL9U25sQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=oiKNYXkMVzZ8--UA2spJ8T_HP_VnkIxCQUd91Fx69dePwU84M8Lb_iJ1rLjtQtyaZ3cSdrUBqFBpoTVa07jgeOsF6PmZlg2y5OOBomtjXXpaqfdwd2XtMV31RTGEm-MdkBTzKAOHH2XqBMByuHmvlAnGCbnTCp4T4j_ZQOgNQzY; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-6AZiJQ5Xbuc/TvYK214Vx8I/AAAAAAAAADI/uumMbMUsmvQ/s45-c/a.jpg
200 OK 1.6 kB URL HTTP/2 1.bp.blogspot.com/-6AZiJQ5Xbuc/TvYK214Vx8I/AAAAAAAAADI/uumMbMUsmvQ/s45-c/a.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 4bacbae331523525d191d2dcf57f4dba
e84ea2572eeb15c04e0322499285932b75c48a71
4e3107fae2b50dc9959784ceefb156d83aa4f534df04c66b4dfc2a9d8c54403c
GET /-6AZiJQ5Xbuc/TvYK214Vx8I/AAAAAAAAADI/uumMbMUsmvQ/s45-c/a.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v32"
expires: Mon, 05 Dec 2022 23:30:56 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="a.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 04 Dec 2022 23:30:56 GMT
server: fife
content-length: 1639
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCI6flJGH6dSWJCILdmNhcmRfcGhvdG8qKDNjM2I1ZWJmZWVjYzdlMmZmZTM4ZDg5NTg3ZDkwYjY0MjVmNzY3MDUwAUvpWhqgFL13qHK1L_u1o5e7jylb
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCI6flJGH6dSWJCILdmNhcmRfcGhvdG8qKDNjM2I1ZWJmZWVjYzdlMmZmZTM4ZDg5NTg3ZDkwYjY0MjVmNzY3MDUwAUvpWhqgFL13qHK1L_u1o5e7jylb
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCI6flJGH6dSWJCILdmNhcmRfcGhvdG8qKDNjM2I1ZWJmZWVjYzdlMmZmZTM4ZDg5NTg3ZDkwYjY0MjVmNzY3MDUwAUvpWhqgFL13qHK1L_u1o5e7jylb HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WCkDFx6QgC3DcRl_2z1daVhfvZsZg4yNcSZXkqAeOg=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-6yhD6rKCQrnchT7nPu-bGg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=d_TFqRGoHK_fKz6j3Xk7FxfqWmNt_kyDqNqoS-5hUv3La3T5JM6734k07gFaSeXXrCUQ_5SFhGuChIcrrQBD1t7iJazzH4Xgy3h3ERxt_vWJvui0ubS_rThyd-AFrgCuztpAIy6w3WSHz84rZT32RGSfXpdZmJt5R9KNZpdNrjc; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 951899738210b4e73e821fe5c4a4c55f
b0b369c38a8431c1688152bb1fc56d80de1f5a37
43a0bfab009cbba919c151e02143651adc3c81ce1ae7bd3a49a6eced6d456f2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5887
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 23:30:57 GMT
Connection: keep-alive
2.bp.blogspot.com/-Qxrq-XJQq_w/UZpq16Z6lFI/AAAAAAAAANE/B_PVS6qQamw/s45-c/untitled.JPG
200 OK 1.7 kB URL HTTP/2 2.bp.blogspot.com/-Qxrq-XJQq_w/UZpq16Z6lFI/AAAAAAAAANE/B_PVS6qQamw/s45-c/untitled.JPG
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 418618f81b91331a1a100832f92527cc
71c664a26bf2e60cd080e925700061c7619df1a6
25164b2c7fa9f0877eb39457edd3a4eb147807875e2cd7fc474952766d028961
GET /-Qxrq-XJQq_w/UZpq16Z6lFI/AAAAAAAAANE/B_PVS6qQamw/s45-c/untitled.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="untitled.JPG"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1713
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:30:57 GMT
expires: Sat, 03 Dec 2022 03:46:05 GMT
cache-control: public, max-age=86400, no-transform
etag: "vd2"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5887
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 23:30:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5887
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 23:30:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5887
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 23:30:57 GMT
Connection: keep-alive
www.widgeo.net/hitparade.php?pagexiti=geoiphone
200 OK 14 kB URL HTTP/2 www.widgeo.net/hitparade.php?pagexiti=geoiphone
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 554b74cb6d8c3de4ed9520e796f275e0
950dffbae449957e13571782ad05dc4db89af939
11f42c811ad03d7341430ceb2d7e291b36a66a80bfff33bff2104cc1ca2a35f1
GET /hitparade.php?pagexiti=geoiphone HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=180
expires: Sun, 04 Dec 2022 23:33:55 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mxGnjWKI4rvSXh1Eaa0x%2Fafj%2BBFg3iG0e%2B%2FgBv4t5MHZP44doN3sQwnTOwUdA8dW5u0YDLbFA%2FqElgVkxdSdBrDlzDVoytzmxlleG9Evz7mkrlcN84jDeOFgk7AOMPJL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552bf88fb503-OSL
content-encoding: br
X-Firefox-Spdy: h2
3.bp.blogspot.com/-c9RqMbBluxk/TqwAeNnkzhI/AAAAAAAAAfY/RNXDZYfR62g/s45-c/299322_184190378325708_100002042406320_398246_707100420_n.jpg
200 OK 1.7 kB URL HTTP/2 3.bp.blogspot.com/-c9RqMbBluxk/TqwAeNnkzhI/AAAAAAAAAfY/RNXDZYfR62g/s45-c/299322_184190378325708_100002042406320_398246_707100420_n.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 9ddcfb9eb45fd09f00ae8c83b53b6dcf
be46eb17302241bae1e3aca24b13e1d2fde65253
db47a45b3debf5460d1735c97535eb0006baca63653e8b13db23a83f6174fdc3
GET /-c9RqMbBluxk/TqwAeNnkzhI/AAAAAAAAAfY/RNXDZYfR62g/s45-c/299322_184190378325708_100002042406320_398246_707100420_n.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="299322_184190378325708_100002042406320_398246_707100420_n.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1731
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:30:57 GMT
expires: Sat, 03 Dec 2022 03:46:05 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1f6"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 557fea28a0a540d2ffdadd828e03de0b
c314368e2e73dabf2c5d856e2c3e1fae610a3005
0fdd195911cdfff46a6dd8ba7b760953e5317fd7ee88abf1e19458518979fdee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11253
x-amzn-requestid: e0561a00-8657-4af0-b24c-08b328282f79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_wKE9coAMFjmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1334-2844266d51d5c5672f34ff61;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v2OgP5Rhp06ijoZU2F8vOhLjBfHdBMPa2mOIg6EiYJrgCRbrKgJz2g==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:07 GMT
age: 5930
etag: "c314368e2e73dabf2c5d856e2c3e1fae610a3005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad33fba3-ee62-4ef5-9330-0bd0a142dd92.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad33fba3-ee62-4ef5-9330-0bd0a142dd92.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9e228ec099cad3eea0fb1656da3536f
532cf52021a6cdb7b7963e9108b41590f58276fe
8e54f09dd66fdc35e5f54100cf6c56abf88cb7e724b08092e7ce82720d423135
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad33fba3-ee62-4ef5-9330-0bd0a142dd92.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6236
x-amzn-requestid: 0215aac5-7c44-43b0-b2e9-baddeed42fe0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjiXEEXiIAMFqIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ae42d-5961705726e81a4e3b6a91c9;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 05:52:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ToFwGweqIr6TeGKj1mw8gMfun_defm7BE11XM-gKfL5NsEbJKC2iMg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:15:59 GMT
age: 4498
etag: "532cf52021a6cdb7b7963e9108b41590f58276fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dafdb4fe91795a9e16baebb085ccd818
f5ed5d03e6969f81349ad78fde0e71390a4ed391
f535ce45d68317bad15513d3cd3d21d2c0ef12e93d6ac19cc07b704ee1651f51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7853
x-amzn-requestid: fa079a7e-1e93-41d6-bb16-2703077a0cb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGrKEGFoAMFnBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6388517a-076131847c129c197e84901b;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:02:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cri6Vf6-INRisbFQ4ITZ7f8RIvomQXQ-TjkjWAOkkUhmI1yhHIbTYA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 08:10:52 GMT
age: 55205
etag: "f5ed5d03e6969f81349ad78fde0e71390a4ed391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb029b41d342a82250aef6d6f713be6e
cd754bb6094d2e456b95dce8daace45a0de8a121
c16e364547c9e7a3c487b614073d59c7c495c5e5387b75136afab0dc68bebca4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10031
x-amzn-requestid: ca6c11c5-8842-4ffb-bb9e-5351c4e60c5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjY0CGUVIAMFxog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ad4e6-4282be9f505aa5764e9b1fa2;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 04:47:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vg9n0d9YqjfrKwJHGGcztV4gsGENhNYUuC1HUmWFsxRlDdMSpV4IQw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 15:58:47 GMT
age: 27130
etag: "cd754bb6094d2e456b95dce8daace45a0de8a121"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d81855b-98f7-4c0c-bfb4-78957d8c433d.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d81855b-98f7-4c0c-bfb4-78957d8c433d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9b475d52dd164b9cc0efbecfd58282b6
973e77db7fb34c60e08719dc7196d865e8831cb2
3985e24217a2bd811a0ea9bf0223eb0cda31604986f3467fae028a086a8b827e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d81855b-98f7-4c0c-bfb4-78957d8c433d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: 4d20bc36-d129-468d-b30d-f6b571d528af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKz6G86oAMF9oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abe7f-5f9353c04487352b64ba3bf8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:11:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pjwTv-Ry-1NHzZj6N-Mwul76sDeRSpLlVh7azqqqls44kH-mNhnggw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:24:11 GMT
age: 72406
etag: "973e77db7fb34c60e08719dc7196d865e8831cb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
onmarshtompor.com/?rb=DalTO8cCTp-HWsC523b-LMgdb35wsuXLGSicipUv2VfDUAN0PdyZHTe_0bAy8XZEpCy1vnjzaLYc3pLN_hKPd1u_3Y_IQFmmQI6XwAJd3CpMGgDs784sDPiU1OuUOD2gCnbRVBiheRheB1LMApzjC0HUpKb_W9s-NGdw4VA8lDdBLulyTBaS1bW1XFX7bKvGmxhGHB6hJGBE2GxRrgo44uQTHXbvspehqObacdyJ8xyACAosQ0cTVI6lQpsDEsX0&request_ab2=96002&zoneid=3294720&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=7&pl=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013_09_08_archive.html%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=4114af0a-fff2-4493-a0bf-8f45163cf4e7&userId=70ded7bfddc54d93ac841be3af7f4a6d&m=link
200 OK 1.8 kB URL HTTP/1.1 onmarshtompor.com/?rb=DalTO8cCTp-HWsC523b-LMgdb35wsuXLGSicipUv2VfDUAN0PdyZHTe_0bAy8XZEpCy1vnjzaLYc3pLN_hKPd1u_3Y_IQFmmQI6XwAJd3CpMGgDs784sDPiU1OuUOD2gCnbRVBiheRheB1LMApzjC0HUpKb_W9s-NGdw4VA8lDdBLulyTBaS1bW1XFX7bKvGmxhGHB6hJGBE2GxRrgo44uQTHXbvspehqObacdyJ8xyACAosQ0cTVI6lQpsDEsX0&request_ab2=96002&zoneid=3294720&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=7&pl=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013_09_08_archive.html%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=4114af0a-fff2-4493-a0bf-8f45163cf4e7&userId=70ded7bfddc54d93ac841be3af7f4a6d&m=link
IP
File type JSON data\012- , ASCII text, with very long lines (2354), with no line terminators
Hash ed7148e5dc277e1f26f042d9833e37cb
6b72db745e24762eec51b81854205158d27f5b1a
84744a3f3002a1b5d83f0a360e26c2fc9b0ea17e96aa868994c2f35a64182555
GET /?rb=DalTO8cCTp-HWsC523b-LMgdb35wsuXLGSicipUv2VfDUAN0PdyZHTe_0bAy8XZEpCy1vnjzaLYc3pLN_hKPd1u_3Y_IQFmmQI6XwAJd3CpMGgDs784sDPiU1OuUOD2gCnbRVBiheRheB1LMApzjC0HUpKb_W9s-NGdw4VA8lDdBLulyTBaS1bW1XFX7bKvGmxhGHB6hJGBE2GxRrgo44uQTHXbvspehqObacdyJ8xyACAosQ0cTVI6lQpsDEsX0&request_ab2=96002&zoneid=3294720&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=7&pl=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013_09_08_archive.html%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=4114af0a-fff2-4493-a0bf-8f45163cf4e7&userId=70ded7bfddc54d93ac841be3af7f4a6d&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://safehacking4mas.blogspot.com/
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 23:30:57 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: af7db57487c7f5923690ebbb43207abc
Access-Control-Allow-Origin: http://safehacking4mas.blogspot.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=70ded7bfddc54d93ac841be3af7f4a6d; expires=Mon, 04 Dec 2023 23:30:57 GMT; path=/
oaidts=1670196657; expires=Mon, 04 Dec 2023 23:30:57 GMT; path=/
syncedCookie=true; expires=Sun, 11 Dec 2022 23:30:57 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
ocsp.sectigo.com/
200 OK 471 B IP
Hash 2a3e9c9270d5d1402700343b567d8e21
4348655937347ff19881acafd04b1277e017f19c
905ee9517e8597ac86e76b99b970f77a4fbb2500de30ef6efea97a4bbcea51d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 23:30:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 13:33:18 GMT
Expires: Fri, 09 Dec 2022 13:33:17 GMT
Etag: "4348655937347ff19881acafd04b1277e017f19c"
Cache-Control: max-age=395539,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77485531ca59b50c-OSL
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 921
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sun, 04 Dec 2022 23:30:57 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://safehacking4mas.blogspot.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-gmail-facebook-with-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackgmailfacebookwithusinghtml0
200 OK 108 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-gmail-facebook-with-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackgmailfacebookwithusinghtml0
IP
File type ASCII text, with no line terminators
Hash b40fd321ea564ba6477a2925adc4d707
1619f056cdcb46ca84694756f2a113fe96fec454
73e73ac096ae06f3e0a487093579644e04cd1a26c7eb7a82f06ace33fc6dcd8d
GET /url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-gmail-facebook-with-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackgmailfacebookwithusinghtml0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: safehacking4mas.blogspot.com/2013/09/how-to-hack-gmail-facebook-with-using.html
last-modified: Sun, 04 Dec 2022 23:30:57 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 108
date: Sun, 04 Dec 2022 23:30:57 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-email-using-web-jacking.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackemailusingwebjackinghtml0
200 OK 105 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-email-using-web-jacking.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackemailusingwebjackinghtml0
IP
File type ASCII text, with no line terminators
Hash 92a9e0868cbfbd028ba750d505ef2191
8e5a0fadac0c6ec6ca404dab6e847541a47fe333
5b63c4b127bc0e5e903609c47404069227f488231828e1e2eaf7fb2ff90f0c47
GET /url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-email-using-web-jacking.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackemailusingwebjackinghtml0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: safehacking4mas.blogspot.com/2013/09/how-to-hack-email-using-web-jacking.html
last-modified: Sun, 04 Dec 2022 23:30:57 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 105
date: Sun, 04 Dec 2022 23:30:57 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.widgeo.net/tcm.js
200 OK 0 B IP
GET /tcm.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 23:30:55 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3693
cache-control: public, max-age=604800
expires: Sat, 10 Dec 2022 06:52:48 GMT
last-modified: Wed, 12 Oct 2022 00:08:47 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 146285
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ALPenhJFSRMuYdZjPEJhNpPKd13YC%2FbfgXlp214sWbJOEbM%2F0WCBmxV2cbeqY66PgJlUAMRW%2FQyxFLwA3Pl3cfyCzF5K9VeFW%2FNwH1GRBN68sWU0l6Q5jfSc6zHm2jyf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552affb7b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.458.0
200 OK 0 B URL HTTP/2 bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.458.0
IP
GET /5/3294720/?oo=1&js_build=iclick-v1.458.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 23:30:56 GMT
content-type: application/json
x-trace-id: ade569c82ae6ca8079f50394964d8b57
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: http://safehacking4mas.blogspot.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=70ded7bfddc54d93ac841be3af7f4a6d; expires=Mon, 04 Dec 2023 23:30:56 GMT; path=/; secure; SameSite=None
oaidts=1670196656; expires=Mon, 04 Dec 2023 23:30:56 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 23:30:56 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
172.217.21.161
23.38.200.123
104.21.91.63
139.45.197.243
185.44.104.99
37.48.68.71