Overview

URLsafehacking4mas.blogspot.ru/2013_09_08_archive.html
IP 172.217.21.161 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-04 23:31:07 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (48)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
themes.googleusercontent.com (2) 9661 2012-05-29 23:36:21 UTC 2020-05-04 15:28:46 UTC 142.250.74.97
storage.myfreecopyright.com (2) 0 2014-04-13 10:45:07 UTC 2020-01-29 08:38:45 UTC 52.218.178.67 Unknown ranking
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.189.35.180
www.facebook.com (2) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 157.240.221.35
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-12-04 17:53:11 UTC 142.250.74.168
datatechonert.com (1) 46154 2021-12-24 16:44:17 UTC 2022-12-04 18:54:04 UTC 37.48.68.71
s7.addthis.com (4) 1504 2012-05-21 03:34:04 UTC 2020-04-01 20:53:06 UTC 23.38.200.123
jg.revolvermaps.com (3) 0 2016-01-18 07:52:06 UTC 2022-12-04 02:15:57 UTC 185.44.104.99 Domain (revolvermaps.com) ranked at: 67360
connect.facebook.net (3) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 157.240.221.16
apis.google.com (1) 105 2013-05-30 23:17:44 UTC 2020-05-14 13:59:47 UTC 172.217.21.174
2.bp.blogspot.com (5) 11071 2013-07-04 03:01:31 UTC 2020-04-28 02:17:39 UTC 142.250.74.161
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-12-04 17:40:10 UTC 142.250.74.106
safehacking4mas.blogspot.com (2) 0 2014-05-13 22:26:34 UTC 2015-10-21 19:17:52 UTC 172.217.21.161 Unknown ranking
s3.ongsono.com (2) 0 2014-04-02 18:32:31 UTC 2022-12-03 22:19:19 UTC 104.21.3.145 Unknown ranking
4.bp.blogspot.com (8) 11215 2013-05-06 20:18:52 UTC 2020-05-06 03:21:52 UTC 142.250.74.161
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-12-04 17:35:43 UTC 142.250.74.35 Domain (gstatic.com) ranked at: 540
tzegilo.com (1) 0 2022-01-14 15:27:15 UTC 2022-12-04 17:37:34 UTC 104.21.84.149 Unknown ranking
onmarshtompor.com (1) 24517 2020-10-19 12:36:32 UTC 2022-12-04 18:54:04 UTC 139.45.197.243
bedrapiona.com (1) 34930 2020-05-08 13:43:48 UTC 2022-12-04 16:49:34 UTC 139.45.197.234
www.blogblog.com (2) 28878 2012-05-22 07:35:04 UTC 2020-05-06 23:24:00 UTC 216.58.207.233
logv33.xiti.com (2) 776887 2012-11-23 19:03:55 UTC 2022-12-04 12:20:03 UTC 143.204.46.236
www.google.com (5) 7 2016-03-22 03:56:07 UTC 2022-12-04 17:22:24 UTC 142.250.74.132
www.blogger.com (4) 8975 2012-05-22 07:35:03 UTC 2020-05-05 09:48:25 UTC 216.58.207.233
www.widgeo.net (13) 774083 2015-01-20 22:41:32 UTC 2022-12-04 10:34:08 UTC 104.26.10.22
pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-12-04 18:15:34 UTC 142.250.74.98
1.bp.blogspot.com (8) 8403 2013-05-06 20:18:52 UTC 2020-05-14 01:22:22 UTC 142.250.74.161
img-getpocket.cdn.mozilla.net (5) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
r3.o.lencr.org (7) 344 No data No data 23.36.76.226
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-04 17:12:40 UTC 34.102.187.140
hermanblog.googlecode.com (2) 0 2012-10-04 13:26:57 UTC 2015-10-21 07:12:08 UTC 173.194.73.82 Unknown ranking
img2.blogblog.com (1) 113758 2012-05-21 13:44:19 UTC 2020-05-01 04:55:55 UTC 216.58.207.233
blogblog.com (1) 12609 2013-07-12 23:14:39 UTC 2022-12-04 18:38:01 UTC 142.250.74.41
accounts.google.com (1) 81 2016-03-20 12:44:49 UTC 2022-12-04 18:02:08 UTC 142.250.74.109
z.moatads.com (1) 374 2014-02-11 16:19:47 UTC 2020-02-15 21:59:06 UTC 23.38.201.146
api-public.addthis.com (2) 4111 2012-05-21 13:44:35 UTC 2019-02-13 04:08:26 UTC 23.38.200.123
safehacking4mas.blogspot.ru (1) 0 2014-05-13 12:12:52 UTC 2015-10-19 15:06:57 UTC 172.217.21.161 Unknown ranking
ajax.googleapis.com (3) 12905 2013-08-16 09:51:31 UTC 2022-12-04 18:16:38 UTC 172.217.21.170
ocsp.pki.goog (20) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
pics7.inxhost.com (1) 0 2012-10-15 00:00:11 UTC 2022-12-02 03:46:03 UTC 162.220.14.208 Unknown ranking
rg.revolvermaps.com (3) 0 2016-01-18 07:52:14 UTC 2022-12-02 03:46:04 UTC 185.44.104.99 Domain (revolvermaps.com) ranked at: 67360
my.rtmark.net (1) 9054 2017-08-22 14:11:49 UTC 2022-12-04 18:38:17 UTC 139.45.195.8
inklinkor.com (1) 0 2022-04-01 11:44:00 UTC 2022-12-04 16:49:31 UTC 104.21.91.63 Unknown ranking
ocsp.digicert.com (10) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-04 17:12:39 UTC 34.117.237.239
lh6.ggpht.com (1) 12395 2018-06-22 09:09:58 UTC 2022-12-04 17:58:18 UTC 216.58.207.225
3.bp.blogspot.com (5) 11048 2013-07-04 04:18:40 UTC 2020-05-14 03:02:58 UTC 142.250.74.161
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 104.18.32.68

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-12-04 2 datatechonert.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.217.21.161
Date UQ / IDS / BL URL IP
2023-02-08 10:44:05 +0000 0 - 0 - 3 robloxpromocodesinbeeswarm.blogspot.fi/ 172.217.21.161
2023-02-08 09:30:35 +0000 0 - 2 - 3 sergdfx.blogspot.co.id/ 172.217.21.161
2023-02-08 09:01:39 +0000 0 - 0 - 16 robloxcutecharacters.blogspot.sn/ 172.217.21.161
2023-02-08 08:59:56 +0000 0 - 0 - 3 robloxfreerobuxpromocodes2020.blogspot.com.eg/ 172.217.21.161
2023-02-08 08:46:16 +0000 0 - 0 - 2 2019generatorforrobuxonahp.blogspot.co.id/ 172.217.21.161


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-02-08 13:13:37 +0000 0 - 3 - 0 auth.sysco.biz/insertNewPassword.php/?mail=m. (...) 34.117.4.157
2023-02-08 13:07:57 +0000 0 - 0 - 16 jogosinfantisroblox.blogspot.com/search/label (...) 142.250.74.1
2023-02-08 13:04:37 +0000 0 - 2 - 6 newfoundfriend.xyz/dl/E0IDMIIGB2.exe 35.205.61.67
2023-02-08 12:52:15 +0000 0 - 1 - 0 download-installer.cdn.mozilla.net/pub/thunde (...) 34.117.35.28
2023-02-08 12:29:36 +0000 0 - 1 - 0 assets.4flow.cloud/SF4604MCNR.zip 35.210.179.60


Last 1 reports on domain: safehacking4mas.blogspot.ru
Date UQ / IDS / BL URL IP
2022-12-04 23:31:07 +0000 0 - 0 - 1 safehacking4mas.blogspot.ru/2013_09_08_archiv (...) 172.217.21.161


No other reports with similar screenshot

JavaScript

Executed Scripts (55)

Executed Evals (2)
#1 JavaScript::Eval (size: 11) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16
addthis.cbs
#2 JavaScript::Eval (size: 8) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f
_ate.cbs

Executed Writes (3)
#1 JavaScript::Write (size: 374) - SHA256: 13651cc93f8f57945c852b214d8e7e0f396e7f3187d32a0bb861d134c5037db6
< iframe src = "//www.widgeo.net/geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%20%7C%2008%20September%202013&ref=safehacking4mas.blogspot.com"
width = "183"
height = "350"
scrolling = "no"
frameborder = "0"
style = "" > < /iframe>
#2 JavaScript::Write (size: 116) - SHA256: 1016996263a676730cdc2ab07a553035cc1b831384048cd19996d7dc5ca4e2de
< iframe src = "https://www.widgeo.net/hitparade.php?pagexiti=geoiphone"
width = "0"
height = "0"
frameborder = "0" > < /iframe>
#3 JavaScript::Write (size: 24) - SHA256: a3ba8250ebf2c8e28e99b0cbcb48488777fa3f512e83a7a56930803eb5d35e05
< xmp style = display: none >


HTTP Transactions (148)


Request Response
                                        
                                            GET /2013_09_08_archive.html HTTP/1.1 
Host: safehacking4mas.blogspot.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.217.21.161
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Location: http://safehacking4mas.blogspot.com/2013_09_08_archive.html
Content-Encoding: gzip
Date: Sun, 04 Dec 2022 23:30:54 GMT
Expires: Sun, 04 Dec 2022 23:30:54 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 203
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   203
Md5:    92a7ecb5bb7f5d88656c66329b421ef4
Sha1:   63f7c814ca226adf0e5994fc1e61eab99d387cb3
Sha256: 85fecf1b7c993d94555bdecaf6a3145a92a084310474dd866023f9438b2ac349
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5242
Expires: Mon, 05 Dec 2022 00:58:16 GMT
Date: Sun, 04 Dec 2022 23:30:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5325
Cache-Control: max-age=131348
Date: Sun, 04 Dec 2022 23:30:54 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 12:00:02 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11730
Expires: Mon, 05 Dec 2022 02:46:24 GMT
Date: Sun, 04 Dec 2022 23:30:54 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 23:20:09 GMT
cache-control: public,max-age=3600
age: 645
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 7RK9ysymjdfqAFldracKzFUAsxJpbseboDMxLiSivY+TAE7Mj2u5Df6JBq9XVdonTllZTK8CkDA=
x-amz-request-id: SRMWSE9V021C5MQ5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 22:47:44 GMT
age: 2590
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 04 Dec 2022 23:30:54 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /2013_09_08_archive.html HTTP/1.1 
Host: safehacking4mas.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 04 Dec 2022 23:30:54 GMT
Date: Sun, 04 Dec 2022 23:30:54 GMT
Cache-Control: private, max-age=0
Last-Modified: Fri, 11 Nov 2022 08:02:53 GMT
ETag: W/"b05c4b28883fc40f61ead17e088520283e9456413229e5b3e432ac6976ba291f"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 19627
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (942)
Size:   19627
Md5:    3d89edfcf395cc66932576ca07194800
Sha1:   38c32609dd6173330e0656a3bf4708b26c43a89c
Sha256: a951a7f60f9efb771a0e98dccde4a1637c42718ef8f8ecb6ab4341eed4287195
                                        
                                            GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30082
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 12:49:09 GMT
Expires: Fri, 01 Dec 2023 12:49:09 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Age: 297705


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65168)
Size:   30082
Md5:    ebaa24930d6b905fe00c9457484b78a9
Sha1:   f97496ee81148e264b3735464b8bfced1a8b2fad
Sha256: b9bd9830d7eceae230cfaa5105e8a3ec432392f270cee156637dac8d0684d614
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         23.38.200.123
HTTP/1.1 308 Permanent Redirect
Content-Type: text/html
                                        
Server: nginx/1.15.8
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Sun, 04 Dec 2022 23:30:54 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   171
Md5:    3c417e9efbcaeb3bf7e7df75cf3b22fd
Sha1:   00465aec6b8ec302eae8abb99678fc5c09c3f343
Sha256: 21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
                                        
                                            GET /ajax/libs/jquery/1.4.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 24177
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 21:09:32 GMT
Expires: Wed, 29 Nov 2023 21:09:32 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Age: 440482


--- Additional Info ---
Magic:  ASCII text, with very long lines (833)
Size:   24177
Md5:    0abe559b44ad75a1142a42afaad9568c
Sha1:   164f6f47f7cfc82155691d4e31d908a0e93a799f
Sha256: d33e5a1bb8bd201d8daf58a81da88d07d63c484a1cdaff1bd2d46dc90ab73a80
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: safehacking4mas.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/2013_09_08_archive.html

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sun, 04 Dec 2022 23:30:54 GMT
Expires: Sun, 11 Dec 2022 23:30:54 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 04 Dec 2022 21:56:58 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
                                        
                                            GET /2/1.js?i=6869a1tm788&s=220&m=4&v=true&r=false&b=000000&n=false&c=ff0000 HTTP/1.1 
Host: jg.revolvermaps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         185.44.104.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Dec 2022 23:30:54 GMT
Server: Apache
Last-Modified: Mon, 08 Feb 2016 12:33:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=290304000
Content-Length: 1238
Keep-Alive: timeout=4, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2430), with no line terminators
Size:   1238
Md5:    8794400587811289a8e9c90f4d56acaf
Sha1:   5a292beb72dc10afc289d0ebb33bdc2fd75624ed
Sha256: d790123462ecd6c4ab0abc5ccf6c6463ef535731718eea2b0be9d32c4addb33b
                                        
                                            GET /files/link_pelangi.js HTTP/1.1 
Host: hermanblog.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         173.194.73.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1582
Date: Sun, 04 Dec 2022 23:30:54 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1582
Md5:    4472585e8350ee28b3a7b647c704db06
Sha1:   da07647ba881bbdc784fbd9a4691a3bfd0a7af31
Sha256: 3318b95be33106af8f15f6e0def6ae4465e0d0c19f672289154d631f4f93c81f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:47:53 GMT
expires: Wed, 29 Nov 2023 21:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 29 Nov 2022 20:52:41 GMT
age: 438182
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35959)
Size:   7776
Md5:    5aa2d3297bdc86bc81322aedecbb5e79
Sha1:   1c0a3c007e41726e167e79b70ddea76198650884
Sha256: feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116406
date: Sun, 04 Dec 2022 23:30:55 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (54602)
Size:   116406
Md5:    722e21e12eaa431752dfae3577fe0619
Sha1:   cdf8ee4381284ad6b6081663ae6ee322998e1b35
Sha256: 998242560562ed6542b378745338b65d06b0001ee9c4c9bb843166524bd4c407
                                        
                                            GET /en_US/all.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         157.240.221.16
HTTP/1.1 301 Moved Permanently
Content-Type: text/plain
                                        
Location: https://connect.facebook.net/en_US/all.js
Server: proxygen-bolt
Date: Sun, 04 Dec 2022 23:30:55 GMT
Connection: keep-alive
Content-Length: 0

                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.217.21.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sun, 04 Dec 2022 23:30:55 GMT
expires: Sun, 04 Dec 2022 23:30:55 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1279)
Size:   20984
Md5:    7ac44ef24e267df17ff72f195b252806
Sha1:   62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
Sha256: aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
                                        
                                            GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
age: 496046
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56726
Md5:    1217c8e34acb09c7cea97bae4d386ea1
Sha1:   55ee17703d0a7710943e93913bacb49220d98b4b
Sha256: c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: img2.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 13:44:53 GMT
Expires: Tue, 06 Dec 2022 13:44:53 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 06:52:50 GMT
Age: 467162


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            GET /files/link_pelangi.js HTTP/1.1 
Host: hermanblog.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         173.194.73.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1582
Date: Sun, 04 Dec 2022 23:30:55 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1582
Md5:    4472585e8350ee28b3a7b647c704db06
Sha1:   da07647ba881bbdc784fbd9a4691a3bfd0a7af31
Sha256: 3318b95be33106af8f15f6e0def6ae4465e0d0c19f672289154d631f4f93c81f
                                        
                                            GET /_Kwwy9VyLMKw/S3qDYQZCiRI/AAAAAAAACxA/aXY0neVNzh0/but_readmore.png HTTP/1.1 
Host: lh6.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         216.58.207.225
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="but_readmore.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1493
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Fri, 02 Dec 2022 10:38:06 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v124a"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 91 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size:   1493
Md5:    5d31b2d6d8a8200300204928f616e329
Sha1:   d3141c7c49972c9ad2cb8fce306a5aa17b3d5290
Sha256: 86d688b9378a52832c377e0fa7423ca9c911c4cdc4a62d7ee82fad6b9592913e
                                        
                                            GET /images/raise_page_rank.jpg HTTP/1.1 
Host: s3.ongsono.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         104.21.3.145
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Length: 1093
Connection: keep-alive
Last-Modified: Mon, 27 Jul 2020 07:33:03 GMT
ETag: "5f1e832f-445"
Expires: Tue, 20 Dec 2022 00:03:51 GMT
Cache-Control: public, max-age=2592000
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Age: 47112
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BQR1IMsmXPVpnIRa83ily%2BBHqnV1%2FwtiAMA0X5GqlkS%2BjqVdG7jQspo4maIybAdOEfKkrs2L5NKPDn7Vpron5rGQ5XcUbODq2xfAsNQ%2B7%2F1HUux6i1kaL8eoMG%2BudiT32g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77485526fa11b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 80x15, components 3\012- data
Size:   1093
Md5:    477f186c67fb1270715ea32e5ed90db2
Sha1:   8d4b27557b6bb42fc5bc4a5d791ea6023085721d
Sha256: e0533cc822b133801e8d9f854bec4dc4edbe207ad35ef3aa2a233d1a8ae6bd1a
                                        
                                            GET /image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot HTTP/1.1 
Host: themes.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.97
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
                                        
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 04 Dec 2022 23:30:55 GMT
Location: https://themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 23:08:58 GMT
cache-control: public,max-age=3600
age: 1317
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=6105040037749415494&zx=e2e6b0bc-2b0d-4b5b-a31b-bf03e551e605 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:55 GMT
last-modified: Sun, 04 Dec 2022 23:30:55 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    a62e4d501434033d5d177e67d3aafdd0
Sha1:   34f7300c9ed47334cf10826d57af785321e3138b
Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
                                        
                                            GET /-ByUV8Asg02Y/Tf8sGp0rx3I/AAAAAAAAAQs/ilKmRKIJVog/s150/next2.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="next2.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 10679
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10b"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 150 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size:   10679
Md5:    cbcc03f64f90cb84a8b8a2b7159a5ad7
Sha1:   72b7b1ae8e358634a058a47e0e9f7c551f507c31
Sha256: 52096fd4d87e56e99198e21ae9dc1e261184bd6568f1937d62701e1235aa3fa1
                                        
                                            GET /geocompteur/geocompteur.php?c=geoiphone&id=2194072&adult=0&cat=informatique&fonce=&claire= HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         104.26.10.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Length: 2027
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Sat, 10-Dec-2022 23:30:54 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Sun, 11 Dec 2022 23:30:54 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hEOk3bDE7jyIbxsUqw51%2BTLbsJk3Ot3Evk3be%2FHpkByYLaQgQRr6iEFYVowuko2iD5i90NLm1rrGK1gfrc3GgPJ66r6R%2B2DBtcpXdSRHfqZYALShfrjByx9kWiaCY2y5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 774855266995b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (2149)
Size:   2027
Md5:    f2c43d06e34c98372b49dcd80bdfa1e9
Sha1:   c642bd763895914f8bdea089f23dbaa9ed6c07a2
Sha256: 899bbd7848da31e3c17065c5b44733f3975d01094ff0bceeef3bc1b60199261d
                                        
                                            GET /message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         104.26.10.22
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
set-cookie: monpays=no; expires=Sat, 04-Mar-2023 23:30:54 GMT; Max-Age=7776000; path=/
cache-control: public, max-age=180
expires: Sun, 04 Dec 2022 23:33:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wvzcar85LyLBJatU6%2FBnD5MA3BKmILWTCibU24Q%2FHP24rp0Q4V%2FR4lY9FbKugI3DgJ7TyXnXEk7QEHKG65OxbCg7XhJqooSBA%2BhJOIgWYybtu%2BxijtIMR1y9TK%2FIEu5F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 774855266e950b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (2149)
Size:   2062
Md5:    df8fcf24d07d5f6ce70941347d76b6a9
Sha1:   287090f666cb9dee196eeec1885d24f49efc2ff8
Sha256: de2814eb9fd6f406597343c56b2647257fdcfb20ffbf481696b49ad52ed74c9a
                                        
                                            GET /img/logopm.png HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         104.26.10.22
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 31 Dec 2022 22:37:17 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 262417
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s6l7FH%2BVfdCCEWi3CXP1vZapr%2FrYiWgDOcWWtXoX%2FcLnCGFFx9O0UMG67BEvcpcdHKgBVK696S4dZly8Q44KlPrvhu%2BEpFNkFZ8effAHbDknVutWNVrw9z%2F3EINIcamU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 774855282f9e0b41-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   714
Md5:    3832d6b8d8c47a5cefe6561297b514f6
Sha1:   f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
Sha256: c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08
                                        
                                            GET /-ThJFqA0SqEU/Tf8sXRXpkuI/AAAAAAAAAQ0/js96J8TbTXs/s150/prev2.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v10d"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="prev2.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 10170
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 150 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size:   10170
Md5:    c57d325399d94093eea99974ec4736fa
Sha1:   19e3bbeb642c993ad41169da18b8e17073ab286e
Sha256: f2640247579f79091c8b93592ee35505035e1bc455e870eb5ab9421f95814d3c
                                        
                                            GET /img/share_buttons_20_3.png HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:28:12 GMT
expires: Tue, 06 Dec 2022 17:28:12 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 14:52:29 GMT
age: 453763
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size:   5080
Md5:    ad9999106d5f550920b586e8e1704e5a
Sha1:   93fd02c51166402a41f96509cd0ca3fb917877dd
Sha256: 3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /show_ip_address.php HTTP/1.1 
Host: s3.ongsono.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         104.21.3.145
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Mon, 05 Dec 2022 11:30:55 GMT
Cache-Control: public
Last-Modified: Sun, 04 Dec 2022 23:30:55 GMT
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pe0AcmsAiWjxCtJ%2Bjm0ovNxgNBOvtfQbpDQ5vQCOU6cinbqPR9TFwTGXY%2BpA0l2wDaDEINYj12oqeTBUkIHA9JNxQZHYEqz0%2BJjd2jwxeSJ0ptbt0Czw7Nt60%2FeKFEP%2F6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77485526ba220afe-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /1kt/travel/bg_black_50.png HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 83
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 09:36:53 GMT
Expires: Wed, 07 Dec 2022 09:36:53 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 20:52:41 GMT
Age: 395642


--- Additional Info ---
Magic:  PNG image data, 5 x 5, 8-bit/color RGBA, interlaced\012- data
Size:   83
Md5:    f7417b83fa976977f788364905aa5dd7
Sha1:   a6ede06565a88ef03ca33ad1b40a3c43e6c7f91f
Sha256: 8ad5d8cd8999e56275e12e5a5325b108bd15146fefe072af726fffecfe6ab862
                                        
                                            GET /1kt/travel/bg_black_70.png HTTP/1.1 
Host: blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.41
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.blogblog.com/1kt/travel/bg_black_70.png
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Mon, 05 Dec 2022 00:00:55 GMT
Cache-Control: public, max-age=1800
Server: sffe
Content-Length: 247
X-XSS-Protection: 0


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   247
Md5:    9ee12c3b3131aca9f7501ad3ab6e948c
Sha1:   d1854e0127339d8af2c58a9f4cf1dcbb748cab3e
Sha256: cd0cf8c6eb88093f351e6dca3e7f13b09144c7dfbd566f1d9cfcd7d189a7d55c
                                        
                                            GET /s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 19920
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 07:21:58 GMT
Expires: Sat, 02 Dec 2023 07:21:58 GMT
Cache-Control: public, max-age=31536000
Age: 230937
Last-Modified: Tue, 19 Apr 2022 19:00:30 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19920, version 1.0\012- data
Size:   19920
Md5:    754c4def845e64948e4e2db385078c00
Sha1:   49365281be547c02a001fb7909cdfad1ba518afe
Sha256: 5fb894030e4ade4d9f76ede985bc96d468bcb923fcd4b908a5d8e38178819dc4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4752
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:11:43 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en_US/all.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         157.240.221.16
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 26ab2bf6d5f0bfdcbc1a73a3f6de1a41
etag: "89c3de23073124cad1fc79f2e615422b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 04 Dec 2022 23:40:00 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 1/0cg+8wvFxr3McG+zo3oQ==
x-fb-debug: FUB9GprTpVFKZbV/K1IzrLRTBrU/pKxnsBptyF7JGZnT0dlCOaDFrxxcZ/QDLBYmrEYtTwtnYUJpP1HRQiQKHA==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1679558926
date: Sun, 04 Dec 2022 23:30:55 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1957)
Size:   1687
Md5:    d7fd1c83ef30bc5c6bdcc706fb3a37a1
Sha1:   d53609bb633ae63ef66ae8299f3ea5c025e41be2
Sha256: 3ce11dac85bbd511c29a96c74087d46338174cce51930b496da070936adf5bba
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5322
Cache-Control: max-age=126278
Date: Sun, 04 Dec 2022 23:30:55 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 10:35:33 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /-LIPJaW26snA/UjLXwnCNL8I/AAAAAAAABVE/erg-JlrMwLI/s640/1.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 299941
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v552"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 431, 8-bit/color RGB, non-interlaced\012- data
Size:   299941
Md5:    a896af1e1cc9bd23c90323f3f75fadc0
Sha1:   3cc909389fc500e3e07865ab6aa4b21a6c5512cc
Sha256: 89f3cef9e14d295efb47fec20b09e273864f423edfa75ae370ddb0416a82f928
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /mfc_protected.png HTTP/1.1 
Host: storage.myfreecopyright.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         52.218.178.67
HTTP/1.1 403 Forbidden
Content-Type: application/xml
                                        
x-amz-request-id: 6W779E6A9QCRSE88
x-amz-id-2: VPJGGnEAmFhrbzb9GPsLkx5WDFDxYGbz9QCnaOCT5mL97CvwPSs1AbvJ90X2Vrbzs/uTR5NaaPg=
Transfer-Encoding: chunked
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: AmazonS3


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document, ASCII text
Size:   243
Md5:    e5622b0e6ee143602873bbf44a5f443e
Sha1:   607d2af57cf2ae9076c0bb8d4f96381cff2a86ed
Sha256: 3a497cf15b8dcb2b1a13d6bd11fd3768ce37b10d34c148a245072952dcbfd35f
                                        
                                            GET /1kt/travel/bg_black_70.png HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive

search
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 84
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 08:28:03 GMT
Expires: Tue, 06 Dec 2022 08:28:03 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 17:52:28 GMT
Age: 486172


--- Additional Info ---
Magic:  PNG image data, 5 x 5, 8-bit/color RGBA, interlaced\012- data
Size:   84
Md5:    4fc6c14642616095c0b1c90baa826951
Sha1:   25cacf250fad4290661fe8849069769f4eb40aba
Sha256: 4f01951293a11116b89b6e19f70cb9b72b2e3a68b2005c75d1d9b8e7b85eb35a
                                        
                                            GET /images/sticker.gif HTTP/1.1 
Host: pics7.inxhost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         162.220.14.208
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
ETag: "614701747"
Last-Modified: Sun, 27 Nov 2022 01:36:42 GMT
Content-Length: 254
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: Microsoft-IIS/8.5


--- Additional Info ---
Magic:  GIF image data, version 89a, 80 x 15\012- data
Size:   254
Md5:    fd663b51cdc02b70c33133efbe3b0901
Sha1:   de9c6a8a8605dab62a85e917a8c6dce785753727
Sha256: c834eb6baafb55eb3befeb03423e38d8488bba1c37aa190e8b81e2acd249157f
                                        
                                            GET /-c3Cz2P6fvms/UjKtSNcYZxI/AAAAAAAABTM/Hy7G9U883Ys/s640/8.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v533"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="8.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 99143
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 453, 8-bit/color RGB, non-interlaced\012- data
Size:   99143
Md5:    8230b48d796f6df031cd7bcc3c3625bb
Sha1:   ca7ba38bf24eb2742aa220460c4e50ec89871ea4
Sha256: 449f04736e0f4e17d001cc20eb6a0d7a77500b29484a3e726d6d273c0cd9494b
                                        
                                            GET /r.php?i=6869a1tm788&l=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013_09_08_archive.html&r=1670196652962 HTTP/1.1 
Host: jg.revolvermaps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         185.44.104.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: Apache
Content-Length: 43
Keep-Alive: timeout=4, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    6d22e4f2d2057c6e8d6fab098e76e80f
Sha1:   b80b11203d97fe01c5597ca3be70406ea48f5709
Sha256: afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
                                        
                                            GET /-1DKfnYf_pVI/Tf8seJfGGPI/AAAAAAAAAQ8/LZtT-Tv3Po4/s150/home.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="home.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11757
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10f"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 100 x 97, 8-bit/color RGBA, non-interlaced\012- data
Size:   11757
Md5:    a671953ad07c2204aefddb273e8b336b
Sha1:   220c4c130974e43fe80c4e3b1a9fa08ca6ccf020
Sha256: d247e4145bdaf6f2514fe96cd23291129bdcfbcebe611aa96607662a820bfcdc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4752
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:11:43 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /c.php?i=6869a1tm788 HTTP/1.1 
Host: jg.revolvermaps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         185.44.104.99
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: Apache
Cache-Control: max-age=900
Last-Modified: Sun, 04 Dec 2022 23:30:55 GMT
Content-Length: 43
Keep-Alive: timeout=4, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    6d22e4f2d2057c6e8d6fab098e76e80f
Sha1:   b80b11203d97fe01c5597ca3be70406ea48f5709
Sha256: afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
                                        
                                            GET /-b6owAIJEa2I/UjKsMFCt3LI/AAAAAAAABSI/wAJRJZG-Lxw/s640/1.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v522"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 299941
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 431, 8-bit/color RGB, non-interlaced\012- data
Size:   299941
Md5:    a896af1e1cc9bd23c90323f3f75fadc0
Sha1:   3cc909389fc500e3e07865ab6aa4b21a6c5512cc
Sha256: 89f3cef9e14d295efb47fec20b09e273864f423edfa75ae370ddb0416a82f928
                                        
                                            GET /-10v0AUDhzkM/UjLYIQFKveI/AAAAAAAABVU/Q_seMzbNNVg/s640/3.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="3.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 294192
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v556"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size:   294192
Md5:    1848d96923c82284bea1ddc969e855e5
Sha1:   a497f1bea81a6d02ac7ff0f10ea5ec07e2643e20
Sha256: 480c7ad5fb208bba1854487f1d6352df323c44f89bfae2be42f78d64a24e0a2e
                                        
                                            GET /-nD4DYtrG5_Q/UjKsbyKgkwI/AAAAAAAABSQ/niXVlAdz3eQ/s640/3.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v524"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 294192
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size:   294192
Md5:    1848d96923c82284bea1ddc969e855e5
Sha1:   a497f1bea81a6d02ac7ff0f10ea5ec07e2643e20
Sha256: 480c7ad5fb208bba1854487f1d6352df323c44f89bfae2be42f78d64a24e0a2e
                                        
                                            GET /-ANNlrfF9gVc/UjLYVbakcrI/AAAAAAAABVc/LlmzV8lNhKg/s640/4.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="4.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 318818
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v558"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 423, 8-bit/color RGB, non-interlaced\012- data
Size:   318818
Md5:    fade41f2cb7a83c85282296628270fe2
Sha1:   9c305722edec60f94abfa5a78a3552cd55b1b847
Sha256: 670997abd5a1da5e54a141c53d5ba4695a7cf7b4caaeff0d3f56966214d5dd4b
                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.98
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 16:22:21 GMT
Expires: Sun, 18 Dec 2022 16:22:21 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Age: 25714


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            GET /-rQOBKTjViW0/UM05c9pagjI/AAAAAAAAAgc/DV2_N11GsN8/s798/logo_green.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v207"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="logo_green.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 7771
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 262x80, components 3\012- data
Size:   7771
Md5:    595a241acf4b78a8080880b7d964e859
Sha1:   e0c433b3f6a850895662e9b36cf36e7453771a21
Sha256: b916fd730636c65ec4fb565366a0f3c7f189f4e78f7e50b918dc7b968817a89f
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fDJMwyt8FrWQxNq0Jz/cRA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.189.35.180
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3pwA5K13oYtvit9rFIKecjBIeEI=

                                        
                                            GET /-z-UTIQMExfo/UjLZGSGwtFI/AAAAAAAABWE/WgtyTGaRfIE/s640/9.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v562"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 241413
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 308, 8-bit/color RGB, non-interlaced\012- data
Size:   241413
Md5:    6dcf34107c4199902e2a5b227f3a6403
Sha1:   e139484a02e83bccfcb9d500bba424a5f5d9d6d2
Sha256: 6da71261976d41882266bdb215ba72bca9036c4a6d0921d95998e1c234c1e591
                                        
                                            GET /5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000 HTTP/1.1 
Host: rg.revolvermaps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         185.44.104.99
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=290304000
Content-Length: 2653
Keep-Alive: timeout=4, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4694), with no line terminators
Size:   2653
Md5:    4af76efae45df83550f2bc6f0e08da1e
Sha1:   b240e60e0d9c2bdad0e056e839fa170c3676359d
Sha256: 3f9c41b4fcfc62eee7ba1d7d93e4cb10e9957ea41161319d8bf6e9a4e7caf239
                                        
                                            GET /-lcwzJa4ztgw/UjKtbCA8E-I/AAAAAAAABTU/_68bLwFdv4s/s640/9.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v535"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 241413
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 308, 8-bit/color RGB, non-interlaced\012- data
Size:   241413
Md5:    6dcf34107c4199902e2a5b227f3a6403
Sha1:   e139484a02e83bccfcb9d500bba424a5f5d9d6d2
Sha256: 6da71261976d41882266bdb215ba72bca9036c4a6d0921d95998e1c234c1e591
                                        
                                            GET /-B3ztVrubu3E/UjLY0zIimTI/AAAAAAAABV0/rNi2_UDjwpE/s640/8.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="8.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 99143
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v55e"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 453, 8-bit/color RGB, non-interlaced\012- data
Size:   99143
Md5:    8230b48d796f6df031cd7bcc3c3625bb
Sha1:   ca7ba38bf24eb2742aa220460c4e50ec89871ea4
Sha256: 449f04736e0f4e17d001cc20eb6a0d7a77500b29484a3e726d6d273c0cd9494b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2789
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:44:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot HTTP/1.1 
Host: themes.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v1"
expires: Mon, 05 Dec 2022 23:30:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 04 Dec 2022 23:30:55 GMT
server: fife
content-length: 380966
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Picasa], baseline, precision 8, 1800x1350, components 3\012- data
Size:   380966
Md5:    25f28c14231c292ea378827e6f5c24df
Sha1:   d421366c81560e3577e6f1378720ad7731237fda
Sha256: 6afcea5c82cdabdfeda856796c10189c4b8e9d1d2984f56db6e20622e049964a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2789
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:44:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /-jcOQzHpTRqI/UjLYkTGXEqI/AAAAAAAABVk/yzugJ2Wd2CE/s640/5.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="5.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 297059
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v55a"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size:   297059
Md5:    9e0fa7dd55748049297493581c6cefe8
Sha1:   38332769a6d67d8246de55aee66b8ab1228d045f
Sha256: 92be499e78602b230352a26bc6e48972ce943e808c25f35afca7c074f672863b
                                        
                                            GET /plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         157.240.221.35
HTTP/1.1 301 Moved Permanently
Content-Type: text/plain
                                        
Location: https://www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
Server: proxygen-bolt
Date: Sun, 04 Dec 2022 23:30:55 GMT
Connection: keep-alive
Content-Length: 0

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5711
Cache-Control: max-age=158705
Date: Sun, 04 Dec 2022 23:30:55 GMT
Etag: "638ce051-116"
Expires: Tue, 06 Dec 2022 19:36:00 GMT
Last-Modified: Sun, 04 Dec 2022 18:00:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.38.200.123
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Sun, 04 Dec 2022 23:30:55 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size:   26421
Md5:    707317ccaabe08d32d1bd781754e6871
Sha1:   bb82dcd3e044c960e0861c2ce878f5504e628f78
Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
                                        
                                            GET /geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%20%7C%2008%20September%202013&ref=safehacking4mas.blogspot.com HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         104.26.10.22
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 04 Dec 2022 23:30:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="NOI ADM DEV COM NAV OUR STP"
set-cookie: idcompteurcc_2194072=done; expires=Mon, 05-Dec-2022 23:30:55 GMT; Max-Age=86400; path=/ online_idcompteurcc_2194072=done; expires=Sun, 04-Dec-2022 23:33:55 GMT; Max-Age=180; path=/ pays_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ online_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ vj_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ total_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ bonus_2194072=15947; expires=Mon, 05-Dec-2022 23:30:55 GMT; Max-Age=86400; path=/ bonus_j_2194072=1; expires=Sun, 04-Dec-2022 23:33:55 GMT; Max-Age=180; path=/
cache-control: public, max-age=180
expires: Sun, 04 Dec 2022 23:33:55 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zsMGXljnj%2Bhubs%2BbFFVcY0BzvZ2CnJkh8L9lqU8VetW%2Bp8qOKURKWPbfxn8lYBVH8itH7HwOHv1tR7PHRmFdy3y3XXZgyxhe1yOVLz%2BWqfVruTHAPZZPnH3YX%2FSgioxh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7748552a790f0b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (319)
Size:   1359
Md5:    f40a59190b9e414527006b0ed1e145cb
Sha1:   069827bf4ab39c3068d9e29930acc3258d804e13
Sha256: 5d3e6d95fefa3f56f93e284932e7c247962e52debcc22110e8df29d27488ce4c
                                        
                                            GET /mfc_protected.png HTTP/1.1 
Host: storage.myfreecopyright.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         52.218.178.67
HTTP/1.1 403 Forbidden
Content-Type: application/xml
                                        
x-amz-request-id: 6W7AW6BT5J4FJQCP
x-amz-id-2: ty7zrXiZlQiVCI5VgNYJBViyhm0FkkGk5KziKcK2WPkX6fWFVzrzEMkri0RhIr95dbW/GjX0R/s=
Transfer-Encoding: chunked
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: AmazonS3


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document, ASCII text
Size:   243
Md5:    3cfa027defcf3e72f1d60070cd3ae7d0
Sha1:   ead06cdb5719faf7f384408738886e652d94f556
Sha256: 7d9bf0671ec54e87cc278944039e7b7e2a59499b06156530641ecfb8e5d406a8
                                        
                                            GET /-UEBLlopQ5RE/UjKtGzYwIJI/AAAAAAAABTA/gKtOJ-fa_d8/s640/7.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v530"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 236256
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 311, 8-bit/color RGB, non-interlaced\012- data
Size:   236256
Md5:    42435b7ea3a37c12c8074e8fb98c6e55
Sha1:   13dbc05e873eb3e0750408f320d181feb3907e37
Sha256: a7af4d632c81230a8432adefed91f39d8752628526669644c09e4d8d8761b0d9
                                        
                                            GET /-xKhdp_tcYJ4/UjKsfveYs3I/AAAAAAAABSY/FzQJ7ZFEKbc/s640/2.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v526"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 299394
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size:   299394
Md5:    2012e6c40d3eacbd1dc43dacfd8e25a3
Sha1:   7538452d08091165262f708144b16ce7df77cb84
Sha256: 3f8c9c5780e98f9a95f384cc8647df2e2f4f2bf5ced921e6e31553d07b704f7d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2789
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 23:30:55 GMT
Last-Modified: Sun, 04 Dec 2022 22:44:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /-SOkXT0Lau78/UjKsouN3XVI/AAAAAAAABSg/aQOssgNNnb4/s640/4.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v528"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 318772
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 428, 8-bit/color RGB, non-interlaced\012- data
Size:   318772
Md5:    146cb08e5363d8626627eb8560e82689
Sha1:   ba67b2bfabba11c4a7d7cd0be07ce6b31e1cf6fc
Sha256: d01d1d79c36040b13a20c6f77d52f1bff1e01f2664c42f8bf3bf560535bff6fb
                                        
                                            GET /-YMw0si3qJuM/UjLX6DY5sJI/AAAAAAAABVM/C8W8F4tQifs/s640/2.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v554"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 299394
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size:   299394
Md5:    2012e6c40d3eacbd1dc43dacfd8e25a3
Sha1:   7538452d08091165262f708144b16ce7df77cb84
Sha256: 3f8c9c5780e98f9a95f384cc8647df2e2f4f2bf5ced921e6e31553d07b704f7d
                                        
                                            GET /-Je6jT9LcXMs/UjLYrCn_sXI/AAAAAAAABVs/aGYk7mBqkO0/s640/6.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="6.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 226211
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:55 GMT
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v55c"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 300, 8-bit/color RGB, non-interlaced\012- data
Size:   226211
Md5:    35890a42e96f21a17abc3cc07f1793b0
Sha1:   cb9143b961f8a8c21492cfe14fa6f277d63f24d5
Sha256: eb2ec841b2a4b35538e31c1f16efb101e2ce2be1917d9375dcac423843bf222a
                                        
                                            GET /tcm_t_u.js HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.26.10.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 04 Dec 2022 23:30:55 GMT
content-length: 0
cf-bgj: minify
cf-polished: origSize=4360
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 03:46:03 GMT
last-modified: Sat, 01 Oct 2022 00:32:25 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 243891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qp%2BVwuZhebY0XkGpDqLITa3k781gUj6ROO8zUWwjAR5OX%2B3N5juUnRjTFkJ176pEUXUikFXvw2OlyoBbCFih9%2FgY1qy%2Bd8lpwfb98gQkulExMWfwzOGBiHt%2FqN1ouI9g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552ba854b503-OSL
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4231
Cache-Control: max-age=157224
Date: Sun, 04 Dec 2022 23:30:56 GMT
Etag: "638ce051-116"
Expires: Tue, 06 Dec 2022 19:11:20 GMT
Last-Modified: Sun, 04 Dec 2022 18:00:49 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1 
Host: accounts.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         142.250.74.109
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://www.blogger.com/followers.g?blogID=6105040037749415494&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-IPOZmgNZlNF-aiKrYUWfUw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 482
server: GSE
set-cookie: __Host-GAPS=1:Ax0MY6BWXj5kraWdR3mpBUYHeNkO1g:jm0D3vwpe0pDtwWg;Path=/;Expires=Tue, 03-Dec-2024 23:30:56 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (519)
Size:   482
Md5:    5b993bf90f9b57d89591ab8baaa645e3
Sha1:   79b43a6c5039d6f92c2bedc41f497ce009e54c5c
Sha256: 7bbf34aadfa3af11c72b0f2458d3ce879b62e3d465f81eb779b84773e4027978
                                        
                                            GET /d/m/256/4.jpg HTTP/1.1 
Host: rg.revolvermaps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000

search
                                         185.44.104.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Server: Apache
Last-Modified: Sun, 20 Feb 2011 15:36:38 GMT
Accept-Ranges: bytes
Content-Length: 23695
Cache-Control: public, max-age=290304000
Keep-Alive: timeout=4, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 256x128, components 3\012- data
Size:   23695
Md5:    f740a9fe450be470bf84a06d1752e9e8
Sha1:   4c2187f66e2c771ce169d8dd35152c81331c75bf
Sha256: 41a4d4a6fae1dd85bcc3c9ced2a3b98afb9e751a5a7b6ad0837ad3d13b9e435d
                                        
                                            GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%20%7C%2008%20September%202013&ref=safehacking4mas.blogspot.com

search
                                         104.26.10.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 18:31:41 GMT
ETag: W/"6387a18d-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EbAOeUsFTjl4cvw12PDpaJvUfZddS2tLJ6%2F5J%2BolpJHcreuFyPNaFefCVtjYXogcLOb36lE1Vd48RmxRxpeSDflcdigXf8gsAUfWBQpgrWmP1G3nnORi9bN%2BjJaPrUGN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7748552caa630b41-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Tue, 06 Dec 2022 23:30:56 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (12331)
Size:   3886
Md5:    54c87b7a9007d256c837e382cab4170d
Sha1:   6c8f44204021f68596af9ae5a742c3ad1b76a6ec
Sha256: 3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1
                                        
                                            GET /-as3jkBDYtGQ/UjLY7Ndv0XI/AAAAAAAABV8/43Euw-PDiJw/s1600/7.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v560"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 484281
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 1052 x 511, 8-bit/color RGB, non-interlaced\012- data
Size:   484281
Md5:    f5b761ccf09ff04be624d61a74518647
Sha1:   677edf49661a80dd27361f35d4967a7efebc69f3
Sha256: 2f7db9696946b66ad955050988d86b788fb3616daf2fd94e22407c5cd66be03b
                                        
                                            GET /plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         157.240.221.35
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}, {"max_age":3600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}],"group":"network-errors"}
nel: {"report_to":"network-errors","max_age":3600,"failure_fraction":0.01}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: JX9t+j4ZfE7Ac6srdXcBpkC8N7iN7YruIblC5aX4ibMqvANOQ2riXeQPDP4Oxg5tDqiSjX7nm0e5c8skQtSthA==
content-length: 0
date: Sun, 04 Dec 2022 23:30:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /t.php?i=6869a1tm788&r=tz8i HTTP/1.1 
Host: rg.revolvermaps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000

search
                                         185.44.104.99
HTTP/1.1 200 OK
Content-Type: text/plain;charset=UTF-8
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Server: Apache
Content-Length: 25
Keep-Alive: timeout=4, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   25
Md5:    7ae6f05e66f1c6825d8e00956fb7db58
Sha1:   cb0ad7e7e861c8376eb79836fc16f343b69c7bf9
Sha256: 94e173d9ceab73248b8f4e33d5acc332e68806abf4fb50f83ba0c0b1f2ecb8f2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-vCyPVLtBY7o/UjKsxNQa-XI/AAAAAAAABSo/4DLJsDm0Nuk/s640/5.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v52a"
Expires: Mon, 05 Dec 2022 23:30:55 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 04 Dec 2022 23:30:55 GMT
Server: fife
Content-Length: 297059
X-XSS-Protection: 0

                                        
                                            GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/hitparade.php?pagexiti=geoiphone
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.10.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 04 Dec 2022 23:30:56 GMT
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ayDQjWtjmxXj00kOUYJ%2FsOYJaiaBnjOYUnPH%2BGXYx1k8peXMZwdxCBa%2Fv%2BhMj6ehpceW%2FfNsdAoMbMttCOxIFpsaYWHOemVbQP0%2FrIyvfBpJEDVUAO%2BHGioMQgenE5EM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7748552cf989b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 06 Dec 2022 23:30:56 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4358
Md5:    44e82e57966df690cf5bfd87da6f0772
Sha1:   f780d4d70ad138ecea76c13c8c39ca949fa83ac4
Sha256: 0836ec212dbd770869ecfb8b185beeb1819eb32e4c0b3bc2a6a685e8f70e97f2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-_CcFEMyjyFk/UjKtJRlDWVI/AAAAAAAABTE/bOMumKEqu4g/s640/6.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="6.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 226211
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:56 GMT
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v531"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 640 x 300, 8-bit/color RGB, non-interlaced\012- data
Size:   226211
Md5:    35890a42e96f21a17abc3cc07f1793b0
Sha1:   cb9143b961f8a8c21492cfe14fa6f277d63f24d5
Sha256: eb2ec841b2a4b35538e31c1f16efb101e2ce2be1917d9375dcac423843bf222a
                                        
                                            GET /gtag/js?id=G-RP7FMTL79Y HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 23:30:56 GMT
expires: Sun, 04 Dec 2022 23:30:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20080)
Size:   76332
Md5:    7376e96900df70990ab089b6f572b15a
Sha1:   3401e66a09bef50468782873721ac2223511e6e8
Sha256: 130d0520b1660cc231f3b73e6143159fee1d47dee1d7a6a958f87998ac43a26b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /geocompteur/img/tmp/earth_blue.png HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.10.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sun, 04 Dec 2022 23:30:56 GMT
content-length: 2620
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3276
content-disposition: inline; filename="earth_blue.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sun, 01 Jan 2023 03:46:03 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 243891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q2ld%2Fq58B0gHrsjx5EZaksRterLtNo0OSmNhmuP8XO%2BzvaQX5p3tEIVTdRLQbXtuZsphw%2F7zQ2ui3aqHLvR%2FQOD%2BBagD0FUlUD%2FRRty02zhZQd85L%2BK2TPS2W8Qx4rZ3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552e3a86b503-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2620
Md5:    007ede82537f2eb7e991ea20c6bc7b78
Sha1:   e6468eec65f4630144c093e01f801fdfa9b192d1
Sha256: fdba9a1248b8c6cf7a3d1261e0acbb873a4a4caf93bd4647bf6f15ea4e11f9ab
                                        
                                            GET /geocompteur/img/tmp/geoiphone.png HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.26.10.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sun, 04 Dec 2022 23:30:56 GMT
content-length: 13288
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=17826
content-disposition: inline; filename="geoiphone.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sun, 01 Jan 2023 03:46:03 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 243891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=frd3No%2Btx98sMwJmv6OIm2cIo1r%2FH%2BQsTBzSB%2BC0bF1vGfv4LJcl6v%2FlemPY6OuQSZePmmRscNpb7V0AX5BfLYOQF%2FuvxpnBo%2FQ9ZFHSinq7qk%2F2%2FZgpc1mgSK4mifvW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552e4a8ab503-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   13288
Md5:    0ce0946129ba4a52bd090187d92052fa
Sha1:   a7569b3380803eafdcbbaf7692615ee9c2b1c5ed
Sha256: dca5f742066232f2227cd12113ff4af4b45e1d9e148afc677782f0c53a54baf9
                                        
                                            GET /hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/ HTTP/1.1 
Host: logv33.xiti.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.46.236
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
content-length: 151
date: Sun, 04 Dec 2022 23:30:56 GMT
cache-control: no-store
location: /hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: idrxvr=5D48541A-EA22-4166-851E-A32938C96561; Path=/; Domain=xiti.com; Expires=Thu, 04 Jan 2024 23:30:56 GMT; HttpOnly atidx=5D48541A-EA22-4166-851E-A32938C96561; Path=/; Domain=xiti.com; Expires=Thu, 04 Jan 2024 23:30:56 GMT; HttpOnly; Secure atid=5D48541A-EA22-4166-851E-A32938C96561; Path=/; Domain=xiti.com; Expires=Thu, 04 Jan 2024 23:30:56 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: El99PzLxW5aNGnVZ4oYSPa7rNrxPZ5brb8fCKoIpbuAuESBF3WRKkA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   151
Md5:    50b1630f10be27c547fcf0d79a668def
Sha1:   1a694202acd7a9ea79f1e8c3bd29bfcb2a61544f
Sha256: 2d90afe734561ca4ad9eacee9ea6b77063e899a669045f2fc20462cbb5f50078
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /addthismoatframe568911941483/moatframe.js HTTP/1.1 
Host: z.moatads.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.201.146
HTTP/2 200 OK
content-type: application/x-javascript
                                        
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=56089
date: Sun, 04 Dec 2022 23:30:56 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (523)
Size:   948
Md5:    f14b4e1f799b14f798a195f43cf58376
Sha1:   b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
Sha256: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
                                        
                                            GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.217.21.170
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 12:33:41 GMT
expires: Sun, 03 Dec 2023 12:33:41 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 125835
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (820)
Size:   24715
Md5:    cc24419c482370498f3c227ac73d666b
Sha1:   37fc103ace873f47102e0ca88eb4735bc6806750
Sha256: 152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /geocompteur/css/geo_css.php?c=geoiphone&size= HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.26.10.22
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
date: Sun, 04 Dec 2022 23:30:56 GMT
cache-control: public, max-age=604800
expires: Sun, 11 Dec 2022 23:30:55 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XeNHDj%2BP8qeDiui2k1vIm5Duhnpqeuwr5r5V%2F8Q58DCMk3SbRCL%2BtUvxdC5BrbG7jgZ1lqyo7SnALdZ8raBYDKqK%2BD8PWg2cdukNp0U1plHLplPAApLq1IGy%2FNMNfjue"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552ca91ab503-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   46591
Md5:    85fe63b60fda164612aa4abcca8b4d6e
Sha1:   c5c43e5be9494f3fb001dc1d30054756abad79be
Sha256: 6ede39151cc5c6cd2e5137fcbf5fac7ce65cbff0028eaf1a982cb8d14c35a4bd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /hit.xiti?s=281802&p=geoiphone&hl=23x30x53&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On HTTP/1.1 
Host: logv33.xiti.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.widgeo.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.46.236
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 373
date: Sun, 04 Dec 2022 23:30:56 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T7syxk6AAYne-HSg3I80jsFatOprqCxIM-vEvkJNgDyxPEFL4kIrwg==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 39 x 25\012- data
Size:   373
Md5:    29cb2a1e585dff1f4282449fdbbab2d7
Sha1:   075d147195f9dba1862a6f3990d219d7c4389225
Sha256: 86fd3be02ab9497ebb14a884fb226386cd0db257b234b005f0000326ae8c9081
                                        
                                            GET /en_US/all.js?hash=f8501572626cd2a92552e3896783d82c HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         157.240.221.16
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 1c2e5e4f06971f2fee63909410731716
etag: "fee8d60678706bf610a9f26b8e8123d8"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 04 Dec 2023 21:52:43 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: c2MJz5q59/Gq9ea6KWvLhg==
x-fb-debug: R2f198ee8k4Kro92wzBi2tFhohfKFiZ1oVCGOM/Rn9wj9EbUV5PjMOWtGKJs+Wd7nGBcp0wwIrgT7pN4pqZbog==
priority: u=3,i
content-length: 86735
x-fb-trip-id: 1679558926
date: Sun, 04 Dec 2022 23:30:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18734)
Size:   86735
Md5:    736309cf9ab9f7f1aaf5e6ba296bcb86
Sha1:   250ba4910b34b7e4aa2ca14e7fb6725e66b14f80
Sha256: 4395a91af295568813cfa983f5693cec4694cc969d1f39faaa0a7900788ed036
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6022
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 23:30:56 GMT
Etag: "638c57ef-116"
Last-Modified: Sun, 04 Dec 2022 21:50:34 GMT
Server: ECS (amb/6BBA)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /-nGFfPEKLSC8/Tc5GbVhSqkI/AAAAAAAAAHQ/Lb6TGtBZNiY/s300/Favicon.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Favicon.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1162
X-XSS-Protection: 0
Date: Sun, 04 Dec 2022 23:30:56 GMT
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v74"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size:   1162
Md5:    1da5eda143506695c18215a9dfa5d6a5
Sha1:   dfd9f622576ee2593273133334f4038b4b80cfba
Sha256: f6d6609cc138db307b9872e39ce22be8cca4c3f5f21af65edfc549065792a5bd
                                        
                                            GET /stattag.js HTTP/1.1 
Host: tzegilo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.84.149
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 04 Dec 2022 23:30:56 GMT
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4357
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hOLH8aULlsb82BzRQGulP0qY%2B8v4UaaxONqGKoLcZiEMynsWYAhzI2HZ3yCLUex52OfhX1zxbGqBS5o3oo0R3J5MXuY0LTpWQFD1vTXlEF2%2BcVDZZWzJuCy3W8cW8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7748552f9eb1b4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12966), with no line terminators
Size:   5510
Md5:    9b1b06938646350d97cd273fc60af9be
Sha1:   3a060ed02516fcf4e0bfcfcf925943d837d25330
Sha256: 191a326b611edcca75058be969f1da1e17beab070f1d8f94f863b26a0f772899
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5E444685FC55211330424827C83A0B4A885FF07F4C97FA667EEAD72CDC3C3EAF"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8122
Expires: Mon, 05 Dec 2022 01:46:18 GMT
Date: Sun, 04 Dec 2022 23:30:56 GMT
Connection: keep-alive

                                        
                                            GET /geocompteur/geowidget_js.js HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.26.10.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 04 Dec 2022 23:30:56 GMT
cf-bgj: minify
cf-polished: origSize=2217
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 12:58:55 GMT
last-modified: Thu, 13 Feb 2020 12:35:42 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 469920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MHIdQagJ5UoxFrxneZfchbNv1NU4tQc5kymWWeWcePCIG%2F2%2BICAorLUkLFlRUnVkZVsnrsXnTGfKuQklGkqcS3Q6KOZV47j3YE3fvat7X%2FSEpUylBT2wexYeJ0hqAU8J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7748552e4a94b503-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (866)
Size:   501
Md5:    aabaf14e31c7bda100e5ac660ebc83cb
Sha1:   6584cd6c278873022fa992ff87a9f993ad417cc7
Sha256: 6213f3f0b353d3ca43b76eaa05f609492fd3e68a8187c9eed93604f97eb0789f
                                        
                                            GET /gid.js?userId=70ded7bfddc54d93ac841be3af7f4a6d HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         139.45.195.8
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Sun, 04 Dec 2022 23:30:56 GMT
content-length: 65
access-control-allow-origin: http://safehacking4mas.blogspot.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=70ded7bfddc54d93ac841be3af7f4a6d; expires=Mon, 04 Dec 2023 23:30:56 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   65
Md5:    44f70953b762a3e9c3330d5d74e10e03
Sha1:   6250fb6a001e3352716454902917bfd3f5074dc2
Sha256: f8975a593a6a32ac88a915ea8fac8c79ce2ec633097360aded29af58dfce4fe7
                                        
                                            GET /tag.min.js HTTP/1.1 
Host: inklinkor.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.91.63
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Sun, 04 Dec 2022 23:30:55 GMT
x-trace-id: ebcc4d0bfe60ea9b05991349b64d69d7
cache-control: max-age=86400
last-modified: Fri, 02 Dec 2022 10:18:23 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Mon, 05 Dec 2022 21:46:41 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 6254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWJ1VqzvMJU4ZuKdRn9wp30POeMOy3U%2FgvQwRbvvHcGuFQFegfTioRg43xGNsRqkicF1fMYYhaOn%2Fny02LNduttAgXjkBDW0rKBF56hvuxTGkPIRL7ekExUNk7ngDZpP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7748552bea85b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   25504
Md5:    14d5c17175d26b1bd4b70c91f90a402e
Sha1:   9c55a837247ca16d22607d40ccab3bee0d7017be
Sha256: 4a1017d530a0d95c7585b5462312e49e80e5f8da5bf95279f9ce7006b175b856
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/counter.d27508c102582d608697.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5fd2"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 8265
date: Sun, 04 Dec 2022 23:30:56 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24530), with no line terminators
Size:   8265
Md5:    47fcfb824ad738c29e3195451d5c755e
Sha1:   8a955f27a30f4a8c9cde94567c041040e3c60d61
Sha256: 1508b4ae159e51231031ce58f3a5c31aca11a438f4ea3c12ea3581bbc97f4305
                                        
                                            GET /s2/photos/public/AIbEiAIAAABECIj94_qVp7n8zgEiC3ZjYXJkX3Bob3RvKigyZWQ4YWNhZTUzYTNiMjdkYjA5OGIzOGQ0NDMwMWJkMzMwNmRhMDczMAF3VyYdnU3kBRPTVv-2LAZI6_EzeA HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.132
HTTP/2 302 Found
content-type: application/binary
                                        
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WClU7Ulqut-qLZea75JmnYtMirDIz3tAc9dydDGQew=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-bYGbZsdGTH2qS-yudu4EBA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=Myny15Db-bx2a0uIyH2iMf0nefqyN4q5Pt5_Wp217_-IU-o6Qhtpq2D9_FUTklGmDD2j5XfKcrrH4K-fM2yegcJXfr7ujdeXcqbid_y0ujBEZhWi-1VzseuOR2E3b9tRYgIwX1dvEsqOiGzziX2cw6PyvHhxFNXbHxg5bW0xtx0; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /s2/photos/public/AIbEiAIAAABECLDN1sL5obWi_gEiC3ZjYXJkX3Bob3RvKig4MGI3NmYzMGVlYTQ3Yzc1ZjA5MDI1ZDJiNjE5MGJjZDg2Y2FhZGM3MAE7KsZGhMsKGBRO1N0j_9vHOL5J2w HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.132
HTTP/2 302 Found
content-type: application/binary
                                        
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WClclEhiJ7GVCebwmyUL3-KUF54YAMXhCA3YlzgheA=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-Z6cfP-G9sGCnWHf6VW9TCQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=BVIRFnU2AtptpYXkDiVuteS9r5woN2haEi0QMk1P8Hbcz-5RI2dI85akkXiklPI2w_ymxpeePHsIOjIy_87FekiFwmNXQch2KRI6wbWCwZ6ae9gB1pBEHDVHZ-6M_asCjduum6sO3-zY4Lu9vPX74bj6beP0Sb0vuEv1WM4hGP8; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s2/photos/public/AIbEiAIAAABECOrGgpP0leihygEiC3ZjYXJkX3Bob3RvKig3NTA5MjA0ZmFiYmMxMzIxMTBjMDcxOWZkMDc2MDcwMmY0NzlhY2E0MAELhtXBT4ohtMq8956dhX3C7rYtmQ HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.132
HTTP/2 302 Found
content-type: application/binary
                                        
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WCnwTnm4Jqal2bqoOrZSuLx7EX9_kaMMwQzjmweM3w=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-RqriAa5O115SJzjEmoRQFg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=FBQ-_GbjVzFA7AjZwnCLvVZE-frkA22sJFtVa0_5IKCR83aXjCzLBWkgW0-r8XBYWlKpa4aOXjnQngXa4saZc_GFULAWyPEB8NhJUo6jclYXMJxl6x5-PAj0TE2gNouPW3JaZuVZwvvdCtuFE2VZqBtK929avZd0zv-ybh-ua6Q; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /s2/photos/public/AIbEiAIAAABECI6pyrOj4MLIqQEiC3ZjYXJkX3Bob3RvKihmOTg4ODAzZjk0OTJmOTIwM2FlYTNkOWFhMTMxZDZlNzQ0ZmExOTM4MAGUaHQup-TJOBQmWB8RSZAzMhba1g HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.132
HTTP/2 302 Found
content-type: application/binary
                                        
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WCkBbykGa0OZWVMLAt7twX4FCtfYVTEGD40vGuNREw=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-aXOy9YZQ5oo9d9cL9U25sQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=oiKNYXkMVzZ8--UA2spJ8T_HP_VnkIxCQUd91Fx69dePwU84M8Lb_iJ1rLjtQtyaZ3cSdrUBqFBpoTVa07jgeOsF6PmZlg2y5OOBomtjXXpaqfdwd2XtMV31RTGEm-MdkBTzKAOHH2XqBMByuHmvlAnGCbnTCp4T4j_ZQOgNQzY; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /-6AZiJQ5Xbuc/TvYK214Vx8I/AAAAAAAAADI/uumMbMUsmvQ/s45-c/a.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v32"
expires: Mon, 05 Dec 2022 23:30:56 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="a.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 04 Dec 2022 23:30:56 GMT
server: fife
content-length: 1639
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size:   1639
Md5:    4bacbae331523525d191d2dcf57f4dba
Sha1:   e84ea2572eeb15c04e0322499285932b75c48a71
Sha256: 4e3107fae2b50dc9959784ceefb156d83aa4f534df04c66b4dfc2a9d8c54403c
                                        
                                            GET /s2/photos/public/AIbEiAIAAABDCI6flJGH6dSWJCILdmNhcmRfcGhvdG8qKDNjM2I1ZWJmZWVjYzdlMmZmZTM4ZDg5NTg3ZDkwYjY0MjVmNzY3MDUwAUvpWhqgFL13qHK1L_u1o5e7jylb HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.132
HTTP/2 302 Found
content-type: application/binary
                                        
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Dec 2022 23:30:56 GMT
location: https://lh3.googleusercontent.com/a-/AD5-WCkDFx6QgC3DcRl_2z1daVhfvZsZg4yNcSZXkqAeOg=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-6yhD6rKCQrnchT7nPu-bGg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=d_TFqRGoHK_fKz6j3Xk7FxfqWmNt_kyDqNqoS-5hUv3La3T5JM6734k07gFaSeXXrCUQ_5SFhGuChIcrrQBD1t7iJazzH4Xgy3h3ERxt_vWJvui0ubS_rThyd-AFrgCuztpAIy6w3WSHz84rZT32RGSfXpdZmJt5R9KNZpdNrjc; expires=Mon, 05-Jun-2023 23:30:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Dec 2022 23:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5887
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 23:30:57 GMT
Connection: keep-alive

                                        
                                            GET /-Qxrq-XJQq_w/UZpq16Z6lFI/AAAAAAAAANE/B_PVS6qQamw/s45-c/untitled.JPG HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="untitled.JPG"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1713
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:30:57 GMT
expires: Sat, 03 Dec 2022 03:46:05 GMT
cache-control: public, max-age=86400, no-transform
etag: "vd2"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size:   1713
Md5:    418618f81b91331a1a100832f92527cc
Sha1:   71c664a26bf2e60cd080e925700061c7619df1a6
Sha256: 25164b2c7fa9f0877eb39457edd3a4eb147807875e2cd7fc474952766d028961
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5887
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 23:30:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5887
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 23:30:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data