Overview

URLzonfiniti.blogspot.com/2010/10/lirik-lagu-fantastic-adventure-law.html
IP 172.217.21.161 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-01 01:18:37 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (46)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.blogger.com (5) 8975 2012-05-22 07:35:03 UTC 2022-11-30 18:58:54 UTC 216.58.207.233
tcr.tynt.com (1) 75586 No data No data 172.64.151.83
2.bp.blogspot.com (1) 11071 2013-07-04 03:01:31 UTC 2022-11-30 19:04:17 UTC 142.250.74.65
i1190.photobucket.com (2) 0 No data No data 143.204.55.54 Domain (photobucket.com) ranked at: 14012
d2b9l3u54v5v39.cloudfront.net (3) 0 No data No data 54.230.245.82 Unknown ranking
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-11-30 17:26:07 UTC 34.120.237.76
sc.tynt.com (1) 8428 No data No data 104.18.36.173
t.dtscout.com (1) 11951 No data No data 141.101.120.10
zonfiniti.blogspot.com (4) 0 2012-11-03 14:29:48 UTC 2022-12-01 01:09:09 UTC 172.217.21.161 Unknown ranking
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-11-30 21:05:51 UTC 142.250.74.74
yx-ads6.com (4) 524905 No data No data 185.66.200.221
feeds.feedburner.com (2) 12807 No data No data 142.250.74.78
3.bp.blogspot.com (5) 11048 2013-07-04 04:18:40 UTC 2022-11-30 19:14:29 UTC 142.250.74.65
synad2.nuffnang.com.my (1) 0 No data No data 18.138.110.223 Domain (nuffnang.com.my) ranked at: 626127
ic.tynt.com (7) 4300 2013-08-06 01:33:59 UTC 2022-11-30 23:35:47 UTC 67.202.105.31
cdn.tynt.com (1) 7260 2012-06-26 16:52:03 UTC 2022-11-30 19:38:31 UTC 104.18.36.173
r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-11-30 17:12:16 UTC 23.33.119.27
ocsp.pki.goog (22) 175 2017-06-14 07:23:31 UTC 2022-11-30 17:12:14 UTC 142.250.74.131
fonts.gstatic.com (4) 0 2014-09-09 00:40:21 UTC 2022-11-30 22:48:06 UTC 216.58.207.227 Domain (gstatic.com) ranked at: 540
ebaaa.xyz (2) 0 No data No data 185.66.201.8 Unknown ranking
www.google.com (1) 7 2015-07-09 17:04:24 UTC 2022-11-30 21:17:02 UTC 216.58.207.228
www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-11-30 22:12:22 UTC 142.250.74.35 Domain (gstatic.com) ranked at: 540
static.cbox.ws (4) 161241 No data No data 188.114.97.1
widgets.amung.us (1) 12623 No data No data 172.67.8.141
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-11-30 17:19:42 UTC 34.160.144.191
bloggerhosting.appspot.com (2) 0 No data No data 172.217.21.180 Unknown ranking
apis.google.com (2) 105 2013-05-30 23:17:44 UTC 2022-11-30 17:13:21 UTC 216.58.207.238
de.tynt.com (1) 1252 2013-08-06 01:33:59 UTC 2022-11-30 23:15:37 UTC 67.202.105.31
www.blogtopsites.com (1) 738733 No data No data 54.209.14.81
www.zonfiniti.blogspot.com (1) 0 No data No data 172.217.21.161 Unknown ranking
www5.cbox.ws (3) 286738 No data No data 188.114.97.1
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-30 17:12:31 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-30 17:13:24 UTC 34.117.237.239
lh3.googleusercontent.com (3) 66 2013-05-30 23:27:19 UTC 2022-11-30 17:12:35 UTC 216.58.207.225
c.statcounter.com (1) 7772 2016-04-06 11:04:27 UTC 2022-11-30 17:30:45 UTC 104.20.219.77
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-11-30 17:12:17 UTC 54.203.75.56
ylx-i.advertica-cdn2.com (2) 193063 No data No data 185.66.200.127
4.bp.blogspot.com (2) 11215 2013-05-06 20:18:52 UTC 2022-11-30 18:58:57 UTC 142.250.74.65
whos.amung.us (1) 12687 2014-04-02 14:27:13 UTC 2022-11-30 21:30:16 UTC 104.22.74.171
bdv.bidvertiser.com (5) 289264 No data No data 54.241.51.109
cdn.ebaaa.xyz (9) 0 No data No data 185.66.200.127 Unknown ranking
accounts.google.com (1) 81 2016-09-05 09:39:47 UTC 2022-11-30 18:34:25 UTC 142.250.74.77
ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-11-30 21:13:57 UTC 104.18.32.68
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-11-30 20:24:46 UTC 93.184.220.29
www.statcounter.com (1) 11621 No data No data 104.20.219.77
pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-11-30 23:05:47 UTC 142.250.74.34

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-01 2 zonfiniti.blogspot.com/2010/10/lirik-lagu-fantastic-adventure-law.html Malware
2022-12-01 2 zonfiniti.blogspot.com/js/cookienotice.js Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.217.21.161
Date UQ / IDS / BL URL IP
2023-02-06 08:28:40 +0000 0 - 0 - 1 centroone.blogspot.com/2013/09/bulan-depan-yo (...) 172.217.21.161
2023-02-06 08:24:23 +0000 0 - 3 - 0 lbratina.blogspot.com/search/label/music%20reviews 172.217.21.161
2023-02-06 08:24:26 +0000 0 - 0 - 16 codepinrobloxquimarche2021.blogspot.qa/ 172.217.21.161
2023-02-06 08:11:19 +0000 0 - 0 - 3 xcvbcxvbhsdfghsdgfhcxvb.blogspot.com.ng/ 172.217.21.161
2023-02-06 08:10:37 +0000 0 - 0 - 2 jennyujo.blogspot.co.ke/ 172.217.21.161


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-02-06 09:12:33 +0000 0 - 0 - 1 yuvann.com/media/cms/staticwebappIeID/Login/u (...) 34.102.136.180
2023-02-06 09:11:55 +0000 0 - 35 - 0 server.bertuzzitravel.com/conferma/web/login.php 35.240.47.27
2023-02-06 09:10:39 +0000 0 - 0 - 1 onesitetrader.com/a/46639684d1471d43bdc2659b1 (...) 34.102.136.180
2023-02-06 09:02:55 +0000 0 - 0 - 2 bluebird.gta-game-hax.repl.co/BlueBirdBeta.dll 34.149.204.188
2023-02-06 09:00:54 +0000 0 - 1 - 1 sgtmarkets.com/h.hta 35.214.114.156


Last 5 reports on domain: zonfiniti.blogspot.com
Date UQ / IDS / BL URL IP
2023-01-04 02:14:37 +0000 0 - 0 - 2 zonfiniti.blogspot.com/2013/12/pil-papan-trad (...) 172.217.21.161
2022-12-24 01:36:54 +0000 0 - 0 - 2 zonfiniti.blogspot.com/2009/11/lirik-lagu-wai (...) 142.250.74.161
2022-12-18 03:22:15 +0000 0 - 0 - 2 zonfiniti.blogspot.com/2008/07/i-told-you-so- (...) 172.217.21.161
2022-12-16 01:12:43 +0000 0 - 0 - 2 zonfiniti.blogspot.com/2008/01 172.217.21.161
2022-12-15 01:07:51 +0000 0 - 0 - 2 zonfiniti.blogspot.com/2012/07/proses-evakuas (...) 142.250.74.33


No other reports with similar screenshot

JavaScript

Executed Scripts (79)

Executed Evals (15)
#1 JavaScript::Eval (size: 30) - SHA256: fbaac139f955d05484c54f3269747d8e83bb6ee1e6c6b9d3519ce225a5de04c5
typeof flb727451 == "undefined"
#2 JavaScript::Eval (size: 20) - SHA256: e4ba2c2ffa1dd49b79ce3add9400cfe6e8747a2c2a1b15a92e48d9bfd291af8d
var sndmx727451 = 1;
#3 JavaScript::Eval (size: 30) - SHA256: 3d90560be4a39210e4293047da1d7d7a2c066bc5c1c1495b9d7d0e60d41756bf
typeof flb727451 != "undefined"
#4 JavaScript::Eval (size: 23) - SHA256: bfbc5bd748cc1f0ee17effbd6fba04cd9385145e74cadaaa16c1e063bd7875b9
e.style.left = amt + 'px'
#5 JavaScript::Eval (size: 32) - SHA256: 43ec30f20da4a8638032406f00fd95eff471429970ae7154f9550b92c883c95e
typeof sndmx727451 == "undefined"
#6 JavaScript::Eval (size: 264) - SHA256: 39579f75bcf62085fff19d2e37ddf70e9cf240fdb343e46ee527e3521ab5bb7c
({
    'bg': [0, -50, 50, 115],
    '0': [-115, 0, 20, 14],
    '1': [-115, -17, 20, 9],
    '2': [-115, -31, 20, 13],
    '3': [-115, -47, 20, 13],
    '4': [-115, -62, 20, 15],
    '5': [-115, -78, 20, 13],
    '6': [-115, -93, 20, 15],
    '7': [-115, -109, 20, 14],
    '8': [-115, -124, 20, 14],
    '9': [-115, -139, 20, 15],
    ',': [-112, -154, 23, 7]
})
#7 JavaScript::Eval (size: 265) - SHA256: fdd2120c37da9ce7a58d96be9ef6cb106c1040561b6801c70718faf6fc342e8c
({
    'bg': [-50, -50, 50, 115],
    '0': [-135, -147, 20, 14],
    '1': [-135, -135, 20, 9],
    '2': [-135, -117, 20, 13],
    '3': [-135, -100, 20, 14],
    '4': [-135, -84, 20, 15],
    '5': [-135, -70, 20, 13],
    '6': [-135, -53, 20, 15],
    '7': [-135, -38, 20, 14],
    '8': [-135, -23, 20, 14],
    '9': [-135, -7, 20, 15],
    ',': [-135, 0, 23, 7]
})
#8 JavaScript::Eval (size: 24) - SHA256: 7036c48a6162dea663e3aed25a7f571ff22a65214c681479eff10b1afbb49d5b
wid.style.left = '-50px'
#9 JavaScript::Eval (size: 19972) - SHA256: 49056cff68a22f7dda572f42cefd5ba14623c2c2e40fc78ad9e7a61bf64c420a
(function() {
    var y, nv = function(n, E, I, e) {
            for (e = (I = a(E), 0); 0 < n; n--) e = e << 8 | z(E);
            Z(I, E, e)
        },
        c = function(n, E, I, e, X, L) {
            if (n.N.length) {
                (n.R = (n.R && 0(), true), n).rY = E;
                try {
                    e = n.Z(), n.G = e, n.I = 0, n.Y = e, L = Ia(E, n), X = n.Z() - n.Y, n.D += X, X < (I ? 0 : 10) || 0 >= n.l-- || (X = Math.floor(X), n.F.push(254 >= X ? X : 254))
                } finally {
                    n.R = false
                }
                return L
            }
        },
        iN = function(n, E, I) {
            if ((I = typeof n, "object") == I)
                if (n) {
                    if (n instanceof Array) return "array";
                    if (n instanceof Object) return I;
                    if ((E = Object.prototype.toString.call(n), "[object Window]") == E) return "object";
                    if ("[object Array]" == E || "number" == typeof n.length && "undefined" != typeof n.splice && "undefined" != typeof n.propertyIsEnumerable && !n.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == E || "undefined" != typeof n.call && "undefined" != typeof n.propertyIsEnumerable && !n.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == I && "undefined" == typeof n.call) return "object";
            return I
        },
        m = function(n, E) {
            n.N.splice(0, 0, E)
        },
        Lv = function(n, E) {
            return (n = n.create().shift(), E.S).create().length || E.v.create().length || (E.v = void 0, E.S = void 0), n
        },
        P = function(n, E, I, e, X, L) {
            if (!E.U) {
                if (3 < (I = (0 == ((L = void 0, I && I[0] === r) && (n = I[1], L = I[2], I = void 0), X = Q(19, E), X).length && (e = Q(117, E) >> 3, X.push(n, e >> 8 & 255, e & 255), void 0 != L && X.push(L & 255)), n = "", I && (I.message && (n += I.message), I.stack && (n += ":" + I.stack)), Q(504, E)), I)) {
                    E.L = (L = (n = (I -= (n = n.slice(0, (I | 0) - 3), n.length | 0) + 3, EK(n)), E.L), E);
                    try {
                        G(E, 446, f(2, n.length).concat(n), 9)
                    } finally {
                        E.L = L
                    }
                }
                Z(504, E, I)
            }
        },
        b = function(n, E, I) {
            n[Z(I, E, n), ev] = 2796
        },
        Tl = function(n, E) {
            (E.push(n[0] << 24 | n[1] << 16 | n[2] << 8 | n[3]), E.push(n[4] << 24 | n[5] << 16 | n[6] << 8 | n[7]), E).push(n[8] << 24 | n[9] << 16 | n[10] << 8 | n[11])
        },
        gN = function(n, E, I, e) {
            G(n, (I = (e = a(n), a(n)), I), f(E, Q(e, n)))
        },
        Xn = function(n, E) {
            if (E = (n = q.trustedTypes, null), !n || !n.createPolicy) return E;
            try {
                E = n.createPolicy("bg", {
                    createHTML: x0,
                    createScript: x0,
                    createScriptURL: x0
                })
            } catch (I) {
                q.console && q.console.error(I.message)
            }
            return E
        },
        aa = function(n, E, I, e) {
            return (e = O[n.substring(0, 3) + "_"]) ? e(n.substring(3), E, I) : wN(E, n)
        },
        DU = function(n, E, I, e) {
            try {
                e = n[((E | 0) + 2) % 3], n[E] = (n[E] | 0) - (n[((E | 0) + 1) % 3] | 0) - (e | 0) ^ (1 == E ? e << I : e >>> I)
            } catch (X) {
                throw X;
            }
        },
        Q = function(n, E) {
            if (void 0 === (E = E.K[n], E)) throw [r, 30, n];
            if (E.value) return E.create();
            return E.create(1 * n * n + -43 * n + -56), E.prototype
        },
        ZU = function(n, E, I, e, X, L) {
            for (e = (L = (I = ((X = a((E = n[zl] || {}, n)), E.TW = a(n), E).P = [], n.L == n) ? (z(n) | 0) - 1 : 1, a(n)), 0); e < I; e++) E.P.push(a(n));
            for (E.A = Q(X, n); I--;) E.P[I] = Q(E.P[I], n);
            return E.Kv = Q(L, n), E
        },
        Mi = function(n, E, I, e, X) {
            G(n, (((e = Q((X = a((e = (I = E & 4, E &= 3, a(n)), n)), e), n), I) && (e = EK("" + e)), E) && G(n, X, f(2, e.length)), X), e)
        },
        EK = function(n, E, I, e, X) {
            for (X = E = (n = n.replace(/\r\n/g, "\n"), I = [], 0); X < n.length; X++) e = n.charCodeAt(X), 128 > e ? I[E++] = e : (2048 > e ? I[E++] = e >> 6 | 192 : (55296 == (e & 64512) && X + 1 < n.length && 56320 == (n.charCodeAt(X + 1) & 64512) ? (e = 65536 + ((e & 1023) << 10) + (n.charCodeAt(++X) & 1023), I[E++] = e >> 18 | 240, I[E++] = e >> 12 & 63 | 128) : I[E++] = e >> 12 | 224, I[E++] = e >> 6 & 63 | 128), I[E++] = e & 63 | 128);
            return I
        },
        O, a = function(n, E) {
            if (n.S) return Lv(n.v, n);
            return (E = h(8, n, true), E & 128) && (E ^= 128, n = h(2, n, true), E = (E << 2) + (n | 0)), E
        },
        A = function(n, E) {
            E.T = ((E.T ? E.T + "~" : "E:") + n.message + ":" + n.stack).slice(0, 2048)
        },
        mC = function(n, E, I, e, X) {
            if ((I = n[0], I) == N) E.l = 25, E.u(n);
            else if (I == k) {
                X = n[1];
                try {
                    e = E.T || E.u(n)
                } catch (L) {
                    A(L, E), e = E.T
                }
                X(e)
            } else if (I == uN) E.u(n);
            else if (I == l) E.u(n);
            else if (I == WU) {
                try {
                    for (e = 0; e < E.C.length; e++) try {
                        X = E.C[e], X[0][X[1]](X[2])
                    } catch (L) {}
                } catch (L) {}(0, n[1])(function(L, T) {
                    E.o(L, true, T)
                }, (E.C = [], function(L) {
                    (m(E, (L = !E.N.length, [cU])), L) && c(E, true, false)
                }))
            } else {
                if (I == H) return e = n[2], Z(264, E, n[6]), Z(98, E, e), E.u(n);
                I == cU ? (E.F = [], E.K = null, E.X = []) : I == ev && "loading" === q.document.readyState && (E.h = function(L, T) {
                    function g() {
                        T || (T = true, L())
                    }
                    q.document.addEventListener("DOMContentLoaded", (T = false, g), F), q.addEventListener("load", g, F)
                })
            }
        },
        F = {
            passive: true,
            capture: true
        },
        wN = function(n, E) {
            return n(function(I) {
                I(E)
            }), [function() {
                return E
            }]
        },
        x0 = function(n) {
            return n
        },
        sK = function(n, E) {
            Z(169, n, (n.mu.push(n.K.slice()), n.K[169] = void 0, E))
        },
        v = function(n, E, I, e, X, L, T, g, x) {
            if (I.L = (T = (x = (g = (L = 0 < (E || I.I++, I).W && I.R && I.rY && 1 >= I.B && !I.S && !I.h && (!E || 1 < I.J - e) && 0 == document.hidden, (X = 4 == I.I) || L) ? I.Z() : I.G, g) - I.G, x >> 14), I.H && (I.H ^= T * (x << 2)), I.j += T, T) || I.L, X || L) I.I = 0, I.G = g;
            if (!L || g - I.Y < I.W - (n ? 255 : E ? 5 : 2)) return false;
            return I.h = ((Z((n = Q(E ? 117 : 169, (I.J = e, I)), 169), I, I.O), I).N.push([uN, n, E ? e + 1 : e]), B), true
        },
        Ia = function(n, E, I, e) {
            for (; E.N.length;) {
                e = (E.h = null, E).N.pop();
                try {
                    I = mC(e, E)
                } catch (X) {
                    A(X, E)
                }
                if (n && E.h) {
                    n = E.h, n(function() {
                        c(E, true, true)
                    });
                    break
                }
            }
            return I
        },
        Q6 = function(n, E, I, e) {
            return Q((Z(169, (rN(n, (e = Q(169, n), n.X && e < n.O ? (Z(169, n, n.O), sK(n, E)) : Z(169, n, E), I)), n), e), 98), n)
        },
        bN = function(n, E, I, e, X) {
            for (e = (I.xv = ((I.uV = ((I.aN = I[k], I).zW = V6, tI), I).Lv = Y0({get: function() {
                        return this.concat()
                    }
                }, I.g), J[I.g](I.Lv, {
                    value: {
                        value: {}
                    }
                })), 0), X = []; 128 > e; e++) X[e] = String.fromCharCode(e);
            c(I, true, (m(I, (m(I, (m(I, (Z(6, (b(function(L, T, g, x, w, D) {
                v(false, true, L, T) || (w = ZU(L.L), T = w.P, D = w.A, g = T.length, x = w.Kv, w = w.TW, T = 0 == g ? new x[D] : 1 == g ? new x[D](T[0]) : 2 == g ? new x[D](T[0], T[1]) : 3 == g ? new x[D](T[0], T[1], T[2]) : 4 == g ? new x[D](T[0], T[1], T[2], T[3]) : 2(), Z(w, L, T))
            }, (Z(446, I, R((b(function(L, T, g, x, w, D) {
                if (!v(true, true, L, T)) {
                    if ((D = (w = Q((T = (g = (D = a(L), T = a(L), a(L)), w = a(L), Q)(T, L), w), L), Q(D, L)), L = Q(g, L), "object") == iN(D)) {
                        for (x in g = [], D) g.push(x);
                        D = g
                    }
                    for (x = 0, g = D.length, L = 0 < L ? L : 1; x < g; x += L) T(D.slice(x, (x | 0) + (L | 0)), w)
                }
            }, I, ((b(function(L) {
                nv(4, L)
            }, (b(function(L, T, g, x, w, D, M) {
                for (x = (T = (g = Q((D = a(L), w = dN(L), M = "", 157), L), g.length), 0); w--;) x = ((x | 0) + (dN(L) | 0)) % T, M += X[g[x]];
                Z(D, L, M)
            }, I, (Z(409, (I.cV = (Z(373, I, [160, (b(function(L, T, g, x) {
                Z((x = Q((g = (T = a((g = (x = a(L), a(L)), L)), Q(g, L)), x), L), T), L, x[g])
            }, (b(function(L, T, g, x, w) {
                Z((w = (g = (g = a((x = (T = a(L), a(L)), L)), w = a(L), Q)(g, L), x = Q(x, L), Q(w, L)), T), L, PU(x, w, L, g))
            }, I, (b(function(L, T, g, x, w) {
                for (x = (w = (g = dN((T = a(L), L)), []), 0); x < g; x++) w.push(z(L));
                Z(T, L, w)
            }, I, (b(function(L) {
                gN(L, 1)
            }, (b(function(L, T, g, x) {
                !v(false, true, L, T) && (T = ZU(L), x = T.Kv, g = T.A, L.L == L || g == L.S0 && x == L) && (Z(T.TW, L, g.apply(x, T.P)), L.G = L.Z())
            }, (b(function(L, T, g, x) {
                Z((g = Q((T = a((g = a(L), L)), x = Q(T, L), g), L), T), L, x + g)
            }, (Z(19, I, (b(function(L, T, g) {
                Z((g = (T = a(L), a(L)), T = Q(T, L), T = iN(T), g), L, T)
            }, I, (b(function(L, T, g, x) {
                Z((T = a((x = (g = a(L), a(L)), L)), T), L, Q(g, L) || Q(x, L))
            }, I, (b(function(L, T) {
                L = (T = a(L), Q)(T, L.L), L[0].removeEventListener(L[1], L[2], F)
            }, (b(function(L, T, g) {
                v(false, true, L, T) || (T = a(L), g = a(L), Z(g, L, function(x) {
                    return eval(x)
                }(Gl(Q(T, L.L)))))
            }, I, (b(function(L) {
                Mi(L, 3)
            }, I, (b(function(L, T, g) {
                0 != (g = (g = (T = a(L), a(L)), Q)(g, L), Q(T, L)) && Z(169, L, g)
            }, (Z(426, I, (b(function(L, T, g, x, w) {
                x = (T = Q((g = (w = (T = (x = a(L), g = a(L), a)(L), a(L)), Q(g, L)), w = Q(w, L), T), L), Q)(x, L.L), 0 !== x && (T = PU(T, 1, L, w, x, g), x.addEventListener(g, T, F), Z(426, L, [x, g, T]))
            }, (Z((b(function(L) {
                gN(L, 4)
            }, (b(function(L, T, g, x) {
                Z((x = (T = (x = a(L), a(L)), g = a(L), T = Q(T, L), Q(x, L)), g), L, x in T | 0)
            }, (Z(258, (Z(504, (Z(98, I, (b(function() {}, I, (b(function(L, T, g, x) {
                Z((T = z((x = a(L), L)), g = a(L), g), L, Q(x, L) >>> T)
            }, I, (b(function(L, T, g) {
                Z((g = (T = a(L), a(L)), g), L, "" + Q(T, L))
            }, I, (b(function(L, T) {
                sK((T = Q(a(L), L), L.L), T)
            }, I, (b(function(L, T, g, x, w, D, M, W, t, p, V, u) {
                function U(Y, d) {
                    for (; g < Y;) u |= z(L) << g, g += 8;
                    return u >>= (d = u & (1 << (g -= Y, Y)) - 1, Y), d
                }
                for (w = (x = (g = (V = a(L), u = 0), M = (U(3) | 0) + 1, U(5)), []), D = T = 0; D < x; D++) W = U(1), w.push(W), T += W ? 0 : 1;
                for (p = (D = (T = ((T | 0) - 1).toString(2).length, 0), []); D < x; D++) w[D] || (p[D] = U(T));
                for (T = 0; T < x; T++) w[T] && (p[T] = a(L));
                for (t = []; M--;) t.push(Q(a(L), L));
                b(function(Y, d, y6, C, S) {
                    for (C = (y6 = [], S = [], 0); C < x; C++) {
                        if (d = p[C], !w[C]) {
                            for (; d >= S.length;) S.push(a(Y));
                            d = S[d]
                        }
                        y6.push(d)
                    }(Y.S = fv(t.slice(), Y), Y).v = fv(y6, Y)
                }, L, V)
            }, I, (b(function(L, T, g, x) {
                if (x = L.mu.pop()) {
                    for (g = z(L); 0 < g; g--) T = a(L), x[T] = L.K[T];
                    L.K = (x[504] = (x[19] = L.K[19], L).K[504], x)
                } else Z(169, L, L.O)
            }, (b(function(L) {
                Mi(L, 4)
            }, I, (b(function(L, T, g, x) {
                (x = (g = a((T = a(L), L)), a(L)), L.L == L) && (g = Q(g, L), x = Q(x, L), Q(T, L)[g] = x, 226 == T && (L.i = void 0, 2 == g && (L.H = h(32, L, false), L.i = void 0)))
            }, I, (b(function(L, T, g, x) {
                T = (g = a((T = (x = a(L), a(L)), L)), x = Q(x, L), Q)(T, L), Z(g, L, +(x == T))
            }, I, (Z(90, ((Z(117, (((I.l = 25, (I.T = void 0, (e = window.performance || {}, (I.v = (I.XU = 0, void 0), I.K = [], I).rY = (I.X = [], (I.O = 0, I.W = 0, I).N = [], I.H = (I.mu = [], I.R = false, void 0), I.B = 0, false), I).S = void 0, I.F = [], I).j = (I.Y = 0, I.V = void 0, I.G = 0, I.D = 0, 1), I).pv = (I.J = 8001, (I.I = void 0, I.h = (I.S0 = function(L) {
                this.L = L
            }, null), I.L = (I.C = [], I), I).U = false, (I.i = void 0, e).timeOrigin || (e.timing || {}).navigationStart || 0), Z)(169, I, 0), I), 0), I).Yv = 0, I), []), 111)), 292)), Z(184, I, 353), 170)), I), 382), 286)), 390)), 281)), 7)), 326)), {})), I), 2048), I), [0, 0, 0]), I), 44), I), 84), 207), I, q), I), 396), 0)), I), 323), 177)), 442)), I), 81), 376)), 433)), [])), I), 14), I), 222), I), 347), 287)), 50)), I), 123), 0), 0]), 0), I), I), 205)), I), 432), I).vV = 0, 215)), 4))), I), 228), I), 0), [ev])), [l, n])), [WU, E])), true))
        },
        R = function(n, E) {
            for (E = []; n--;) E.push(255 * Math.random() | 0);
            return E
        },
        f = function(n, E, I, e) {
            for (e = (I = (n | 0) - 1, []); 0 <= I; I--) e[(n | 0) - 1 - (I | 0)] = E >> 8 * I & 255;
            return e
        },
        Y0 = function(n, E) {
            return J[E](J.prototype, {
                splice: n,
                floor: n,
                pop: n,
                stack: n,
                document: n,
                call: n,
                length: n,
                prototype: n,
                parent: n,
                console: n,
                propertyIsEnumerable: n,
                replace: n
            })
        },
        Z = function(n, E, I) {
            if (169 == n || 117 == n) E.K[n] ? E.K[n].concat(I) : E.K[n] = fv(I, E);
            else {
                if (E.U && 226 != n) return;
                373 == n || 446 == n || 90 == n || 19 == n || 258 == n ? E.K[n] || (E.K[n] = pv(118, E, I, n)) : E.K[n] = pv(81, E, I, n)
            }
            226 == n && (E.H = h(32, E, false), E.i = void 0)
        },
        qi = function(n, E, I, e) {
            function X() {}
            return {
                invoke: (e = aa((I = void 0, n), function(L) {
                    X && (E && B(E), I = L, X(), X = void 0)
                }, !!E)[0], function(L, T, g, x) {
                    function w() {
                        I(function(D) {
                            B(function() {
                                L(D)
                            })
                        }, g)
                    }
                    if (!T) return T = e(g), L && L(T), T;
                    I ? w() : (x = X, X = function() {
                        (x(), B)(w)
                    })
                })
            }
        },
        OK = function(n, E, I) {
            if (3 == n.length) {
                for (I = 0; 3 > I; I++) E[I] += n[I];
                for (I = [13, 8, 13, 12, 16, (n = 0, 5), 3, 10, 15]; 9 > n; n++) E[3](E, n % 3, I[n])
            }
        },
        K = function(n, E, I) {
            I = this;
            try {
                bN(E, n, this)
            } catch (e) {
                A(e, this), n(function(X) {
                    X(I.T)
                })
            }
        },
        dN = function(n, E) {
            return E = z(n), E & 128 && (E = E & 127 | z(n) << 7), E
        },
        UK = function(n, E, I, e, X) {
            for (X = (I = I[e = I[2] | 0, 3] | 0, 0); 14 > X; X++) n = n >>> 8 | n << 24, n += E | 0, n ^= e + 2298, I = I >>> 8 | I << 24, E = E << 3 | E >>> 29, I += e | 0, I ^= X + 2298, E ^= n, e = e << 3 | e >>> 29, e ^= I;
            return [E >>> 24 & 255, E >>> 16 & 255, E >>> 8 & 255, E >>> 0 & 255, n >>> 24 & 255, n >>> 16 & 255, n >>> 8 & 255, n >>> 0 & 255]
        },
        hI = function(n, E, I) {
            return E.o(function(e) {
                I = e
            }, false, n), I
        },
        z = function(n) {
            return n.S ? Lv(n.v, n) : h(8, n, true)
        },
        jv = function(n, E) {
            return E[n] << 24 | E[(n | 0) + 1] << 16 | E[(n | 0) + 2] << 8 | E[(n | 0) + 3]
        },
        rN = function(n, E, I, e, X, L) {
            if (!n.T) {
                n.B++;
                try {
                    for (X = (L = 0, n.O), e = void 0; --E;) try {
                        if (I = void 0, n.S) e = Lv(n.S, n);
                        else {
                            if ((L = Q(169, n), L) >= X) break;
                            e = Q((Z(117, n, L), I = a(n), I), n)
                        }
                        v(false, false, (e && e[cU] & 2048 ? e(n, E) : P(0, n, [r, 21, I]), n), E)
                    } catch (T) {
                        Q(184, n) ? P(22, n, T) : Z(184, n, T)
                    }
                    if (!E) {
                        if (n.gY) {
                            rN(n, (n.B--, 168668240895));
                            return
                        }
                        P(0, n, [r, 33])
                    }
                } catch (T) {
                    try {
                        P(22, n, T)
                    } catch (g) {
                        A(g, n)
                    }
                }
                n.B--
            }
        },
        G = function(n, E, I, e, X, L) {
            if (n.L == n)
                for (L = Q(E, n), 446 == E ? (E = function(T, g, x, w) {
                        if ((w = (x = L.length, (x | 0) - 4 >> 3), L.q7) != w) {
                            g = [0, (w = (w << 3) - (L.q7 = w, 4), 0), X[1], X[2]];
                            try {
                                L.O$ = UK(jv((w | 0) + 4, L), jv(w, L), g)
                            } catch (D) {
                                throw D;
                            }
                        }
                        L.push(L.O$[x & 7] ^ T)
                    }, X = Q(258, n)) : E = function(T) {
                        L.push(T)
                    }, e && E(e & 255), n = 0, e = I.length; n < e; n++) E(I[n])
        },
        fv = function(n, E, I) {
            return ((I = J[E.g](E.xv), I)[E.g] = function() {
                return n
            }, I).concat = function(e) {
                n = e
            }, I
        },
        h = function(n, E, I, e, X, L, T, g, x, w, D, M, W, t) {
            if ((g = Q(169, E), g) >= E.O) throw [r, 31];
            for (w = (e = (D = E.aN.length, n), 0), x = g; 0 < e;) T = x >> 3, t = x % 8, W = 8 - (t | 0), L = E.X[T], W = W < e ? W : e, I && (X = E, X.i != x >> 6 && (X.i = x >> 6, M = Q(226, X), X.V = UK(X.i, X.H, [0, 0, M[1], M[2]])), L ^= E.V[T & D]), x += W, w |= (L >> 8 - (t | 0) - (W | 0) & (1 << W) - 1) << (e | 0) - (W | 0), e -= W;
            return Z(169, E, (I = w, (g | 0) + (n | 0))), I
        },
        q = this || self,
        B = q.requestIdleCallback ? function(n) {
            requestIdleCallback(function() {
                n()
            }, {
                timeout: 4
            })
        } : q.setImmediate ? function(n) {
            setImmediate(n)
        } : function(n) {
            setTimeout(n, 0)
        },
        PU = function(n, E, I, e, X, L) {
            function T() {
                if (I.L == I) {
                    if (I.K) {
                        var g = [H, n, e, void 0, X, L, arguments];
                        if (2 == E) var x = c(I, (m(I, g), false), false);
                        else if (1 == E) {
                            var w = !I.N.length;
                            (m(I, g), w) && c(I, false, false)
                        } else x = mC(g, I);
                        return x
                    }
                    X && L && X.removeEventListener(L, T, F)
                }
            }
            return T
        },
        pv = function(n, E, I, e, X, L, T, g) {
            return ((L = (T = n & (X = $0, I = [89, -43, 5, 1, 4, 91, I, 75, 51, -20], 7), J[E.g](E.Lv)), L)[E.g] = function(x) {
                T += 6 + 7 * n, g = x, T &= 7
            }, L).concat = function(x) {
                return (g = (x = (x = e % 16 + 1, -40 * e * e * g - x * g - -2240 * g + I[T + 51 & 7] * e * x + 40 * g * g + T + 1 * e * e * x - -1720 * e * g + (X() | 0) * x), void 0), x = I[x], I[(T + 13 & 7) + (n & 2)] = x, I)[T + (n & 2)] = -43, x
            }, L
        },
        zl = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        cU = ((K.prototype.gY = false, K.prototype.dY = void 0, K).prototype.s = "toString", K.prototype.BV = void 0, []),
        H = [],
        l = [],
        k = [],
        ev = [],
        WU = [],
        r = {},
        N = [],
        uN = [],
        $0 = ((y = (((Tl, function() {})(R), DU, function() {})(OK), K.prototype.g = "create", K.prototype), y).bV = function(n, E, I) {
            return n ^ ((E = ((E ^= E << 13, E ^= E >> 17, E) ^ E << 5) & I) || (E = 1), E)
        }, void 0),
        J = (y.o = (y.HV = function() {
            return Math.floor(this.D + (this.Z() - this.Y))
        }, ((y.GW = function(n, E, I, e, X, L) {
            for (X = (e = L = 0, []); L < n.length; L++)
                for (I = I << E | n[L], e += E; 7 < e;) e -= 8, X.push(I >> e & 255);
            return X
        }, y).Z = (y.he = function() {
            return Math.floor(this.Z())
        }, (window.performance || {}).now) ? function() {
            return this.pv + window.performance.now()
        } : function() {
            return +new Date
        }, y).PV = function(n, E, I, e, X) {
            for (e = X = 0; X < n.length; X++) e += n.charCodeAt(X), e += e << 10, e ^= e >> 6;
            return X = new Number((n = (e += e << 3, e ^= e >> 11, e + (e << 15) >>> 0), n & (1 << E) - 1)), X[0] = (n >>> E) % I, X
        }, function(n, E, I, e, X) {
            if (I = "array" === iN(I) ? I : [I], this.T) n(this.T);
            else try {
                e = [], X = !this.N.length, m(this, [N, e, I]), m(this, [k, n, e]), E && !X || c(this, E, true)
            } catch (L) {
                A(L, this), n(this.T)
            }
        }), r).constructor;
    (K.prototype.u = function(n, E) {
        return $0 = function() {
                return n == E ? -56 : -98
            }, E = {}, n = {},
            function(I, e, X, L, T, g, x, w, D, M, W, t, p, V, u) {
                n = (t = n, E);
                try {
                    if (e = I[0], e == l) {
                        p = I[1];
                        try {
                            for (x = (u = (V = [], L = 0, atob(p)), 0); L < u.length; L++) T = u.charCodeAt(L), 255 < T && (V[x++] = T & 255, T >>= 8), V[x++] = T;
                            Z(226, this, (this.O = (this.X = V, this).X.length << 3, [0, 0, 0]))
                        } catch (U) {
                            P(17, this, U);
                            return
                        }
                        rN(this, 8001)
                    } else if (e == N) I[1].push(Q(373, this).length, Q(504, this), Q(446, this).length, Q(90, this).length), Z(98, this, I[2]), this.K[67] && Q6(this, Q(67, this), 8001);
                    else {
                        if (e == k) {
                            (w = (V = I[2], f(2, (Q(373, this).length | 0) + 2)), X = this.L, this).L = this;
                            try {
                                W = Q(19, this), 0 < W.length && G(this, 373, f(2, W.length).concat(W), 10), G(this, 373, f(1, this.j), 109), G(this, 373, f(1, this[k].length)), u = 0, u += Q(6, this) & 2047, u -= (Q(373, this).length | 0) + 5, D = Q(446, this), 4 < D.length && (u -= (D.length | 0) + 3), 0 < u && G(this, 373, f(2, u).concat(R(u)), 15), 4 < D.length && G(this, 373, f(2, D.length).concat(D), 156)
                            } finally {
                                this.L = X
                            }
                            if (g = ((x = R(2).concat(Q(373, this)), x[1] = x[0] ^ 6, x)[3] = x[1] ^ w[0], x[4] = x[1] ^ w[1], this).N7(x)) g = "!" + g;
                            else
                                for (u = 0, g = ""; u < x.length; u++) M = x[u][this.s](16), 1 == M.length && (M = "0" + M), g += M;
                            return Q(((Z(504, this, ((L = g, Q)(373, this).length = V.shift(), V.shift())), Q(446, this)).length = V.shift(), 90), this).length = V.shift(), L
                        }
                        if (e == uN) Q6(this, I[1], I[2]);
                        else if (e == H) return Q6(this, I[1], 8001)
                    }
                } finally {
                    n = t
                }
            }
    }(), K.prototype.yC = 0, K.prototype).N7 = function(n, E, I, e) {
        if (I = window.btoa) {
            for (e = "", E = 0; E < n.length; E += 8192) e += String.fromCharCode.apply(null, n.slice(E, E + 8192));
            n = I(e).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
        } else n = void 0;
        return n
    }, K.prototype.Z4 = 0;
    var V6, tI = /./,
        AI = (K.prototype[WU] = [0, 0, 1, 1, 0, 1, 1], l.pop.bind(K.prototype[N])),
        Gl = function(n, E) {
            return (E = Xn()) && 1 === n.eval(E.createScript("1")) ? function(I) {
                return E.createScript(I)
            } : function(I) {
                return "" + I
            }
        }(((V6 = Y0({get: AI
        }, (tI[K.prototype.s] = AI, K.prototype.g)), K).prototype.iV = void 0, q));
    (O = q.botguard || (q.botguard = {}), 40 < O.m) || (O.m = 41, O.bg = qi, O.a = aa), O.kDL_ = function(n, E, I) {
        return [(I = new K(E, n), function(e) {
            return hI(e, I)
        })]
    };
}).call(this);
#10 JavaScript::Eval (size: 22) - SHA256: 355b9b382781cde432ccca7627a8fdecad5040be2910428d5fc5b4b57fed949b
0,
function(L) {
    nv(1, L)
}
#11 JavaScript::Eval (size: 64) - SHA256: 9908576f4e1cce70106175d94488f9071022d3485f8a8ccf0655b399b318a7c4
0,
function(L, T, g) {
    (T = (g = a((T = a(L), L)), L).K[T] && Q(T, L), Z)(g, L, T)
}
#12 JavaScript::Eval (size: 22) - SHA256: 662748d1507b16ab56d1bceff58b8302eb43f21ce0de70b24b21b8ef39aeff35
0,
function(L) {
    nv(2, L)
}
#13 JavaScript::Eval (size: 17) - SHA256: 17f5bfdbae6b35ae8bc3b27c069526d694021fe1e37a8027678e770fbb05e061
/*@cc_on!@*/
false
#14 JavaScript::Eval (size: 262) - SHA256: ff0504e3bd7c9ca7030953a039cc9622891cd31e22cedc2c9d33f8bbb607c74f
({
    'bg': [0, 0, 115, 50],
    '0': [0, -165, 14, 20],
    '1': [-17, -165, 9, 20],
    '2': [-31, -165, 14, 20],
    '3': [-47, -165, 13, 20],
    '4': [-62, -165, 15, 20],
    '5': [-78, -165, 13, 20],
    '6': [-93, -165, 15, 20],
    '7': [-109, -165, 14, 20],
    '8': [-124, -165, 14, 20],
    '9': [-139, -165, 15, 20],
    ',': [-102, -131, 7, 23]
})
#15 JavaScript::Eval (size: 15576) - SHA256: d4be0587aacd19697ae508209e99aa30536e2b75393db507b1cd329131d8e19c
/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var E = function(n) {
            return n
        },
        T = function(n, I) {
            if ((I = (n = null, e.trustedTypes), !I) || !I.createPolicy) return n;
            try {
                n = I.createPolicy("bg", {
                    createHTML: E,
                    createScript: E,
                    createScriptURL: E
                })
            } catch (L) {
                e.console && e.console.error(L.message)
            }
            return n
        },
        e = this || self;
    (0, eval)(function(n, I) {
        return (I = T()) && 1 === n.eval(I.createScript("1")) ? function(L) {
            return I.createScript(L)
        } : function(L) {
            return "" + L
        }
    }(e)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var y,nv=function(n,E,I,e){for(e=(I=a(E),0);0<n;n--)e=e<<8|z(E);Z(I,E,e)},c=function(n,E,I,e,X,L){if(n.N.length){(n.R=(n.R&&0(),true),n).rY=E;try{e=n.Z(),n.G=e,n.I=0,n.Y=e,L=Ia(E,n),X=n.Z()-n.Y,n.D+=X,X<(I?0:10)||0>=n.l--||(X=Math.floor(X),n.F.push(254>=X?X:254))}finally{n.R=false}return L}},iN=function(n,E,I){if((I=typeof n,"object")==I)if(n){if(n instanceof Array)return"array";if(n instanceof Object)return I;if((E=Object.prototype.toString.call(n),"[object Window]")==E)return"object";if("[object Array]"==E||"number"==typeof n.length&&"undefined"!=typeof n.splice&&"undefined"!=typeof n.propertyIsEnumerable&&!n.propertyIsEnumerable("splice"))return"array";if("[object Function]"==E||"undefined"!=typeof n.call&&"undefined"!=typeof n.propertyIsEnumerable&&!n.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==I&&"undefined"==typeof n.call)return"object";return I},m=function(n,E){n.N.splice(0,0,E)},Lv=function(n,E){return(n=n.create().shift(),E.S).create().length||E.v.create().length||(E.v=void 0,E.S=void 0),n},P=function(n,E,I,e,X,L){if(!E.U){if(3<(I=(0==((L=void 0,I&&I[0]===r)&&(n=I[1],L=I[2],I=void 0),X=Q(19,E),X).length&&(e=Q(117,E)>>3,X.push(n,e>>8&255,e&255),void 0!=L&&X.push(L&255)),n="",I&&(I.message&&(n+=I.message),I.stack&&(n+=":"+I.stack)),Q(504,E)),I)){E.L=(L=(n=(I-=(n=n.slice(0,(I|0)-3),n.length|0)+3,EK(n)),E.L),E);try{G(E,446,f(2,n.length).concat(n),9)}finally{E.L=L}}Z(504,E,I)}},b=function(n,E,I){n[Z(I,E,n),ev]=2796},Tl=function(n,E){(E.push(n[0]<<24|n[1]<<16|n[2]<<8|n[3]),E.push(n[4]<<24|n[5]<<16|n[6]<<8|n[7]),E).push(n[8]<<24|n[9]<<16|n[10]<<8|n[11])},gN=function(n,E,I,e){G(n,(I=(e=a(n),a(n)),I),f(E,Q(e,n)))},Xn=function(n,E){if(E=(n=q.trustedTypes,null),!n||!n.createPolicy)return E;try{E=n.createPolicy("bg",{createHTML:x0,createScript:x0,createScriptURL:x0})}catch(I){q.console&&q.console.error(I.message)}return E},aa=function(n,E,I,e){return(e=O[n.substring(0,3)+"_"])?e(n.substring(3),E,I):wN(E,n)},DU=function(n,E,I,e){try{e=n[((E|0)+2)%3],n[E]=(n[E]|0)-(n[((E|0)+1)%3]|0)-(e|0)^(1==E?e<<I:e>>>I)}catch(X){throw X;}},Q=function(n,E){if(void 0===(E=E.K[n],E))throw[r,30,n];if(E.value)return E.create();return E.create(1*n*n+-43*n+-56),E.prototype},ZU=function(n,E,I,e,X,L){for(e=(L=(I=((X=a((E=n[zl]||{},n)),E.TW=a(n),E).P=[],n.L==n)?(z(n)|0)-1:1,a(n)),0);e<I;e++)E.P.push(a(n));for(E.A=Q(X,n);I--;)E.P[I]=Q(E.P[I],n);return E.Kv=Q(L,n),E},Mi=function(n,E,I,e,X){G(n,(((e=Q((X=a((e=(I=E&4,E&=3,a(n)),n)),e),n),I)&&(e=EK(""+e)),E)&&G(n,X,f(2,e.length)),X),e)},EK=function(n,E,I,e,X){for(X=E=(n=n.replace(/\\r\\n/g,"\\n"),I=[],0);X<n.length;X++)e=n.charCodeAt(X),128>e?I[E++]=e:(2048>e?I[E++]=e>>6|192:(55296==(e&64512)&&X+1<n.length&&56320==(n.charCodeAt(X+1)&64512)?(e=65536+((e&1023)<<10)+(n.charCodeAt(++X)&1023),I[E++]=e>>18|240,I[E++]=e>>12&63|128):I[E++]=e>>12|224,I[E++]=e>>6&63|128),I[E++]=e&63|128);return I},O,a=function(n,E){if(n.S)return Lv(n.v,n);return(E=h(8,n,true),E&128)&&(E^=128,n=h(2,n,true),E=(E<<2)+(n|0)),E},A=function(n,E){E.T=((E.T?E.T+"~":"E:")+n.message+":"+n.stack).slice(0,2048)},mC=function(n,E,I,e,X){if((I=n[0],I)==N)E.l=25,E.u(n);else if(I==k){X=n[1];try{e=E.T||E.u(n)}catch(L){A(L,E),e=E.T}X(e)}else if(I==uN)E.u(n);else if(I==l)E.u(n);else if(I==WU){try{for(e=0;e<E.C.length;e++)try{X=E.C[e],X[0][X[1]](X[2])}catch(L){}}catch(L){}(0,n[1])(function(L,T){E.o(L,true,T)},(E.C=[],function(L){(m(E,(L=!E.N.length,[cU])),L)&&c(E,true,false)}))}else{if(I==H)return e=n[2],Z(264,E,n[6]),Z(98,E,e),E.u(n);I==cU?(E.F=[],E.K=null,E.X=[]):I==ev&&"loading"===q.document.readyState&&(E.h=function(L,T){function g(){T||(T=true,L())}q.document.addEventListener("DOMContentLoaded",(T=false,g),F),q.addEventListener("load",g,F)})}},F={passive:true,capture:true},wN=function(n,E){return n(function(I){I(E)}),[function(){return E}]},x0=function(n){return n},sK=function(n,E){Z(169,n,(n.mu.push(n.K.slice()),n.K[169]=void 0,E))},v=function(n,E,I,e,X,L,T,g,x){if(I.L=(T=(x=(g=(L=0<(E||I.I++,I).W&&I.R&&I.rY&&1>=I.B&&!I.S&&!I.h&&(!E||1<I.J-e)&&0==document.hidden,(X=4==I.I)||L)?I.Z():I.G,g)-I.G,x>>14),I.H&&(I.H^=T*(x<<2)),I.j+=T,T)||I.L,X||L)I.I=0,I.G=g;if(!L||g-I.Y<I.W-(n?255:E?5:2))return false;return I.h=((Z((n=Q(E?117:169,(I.J=e,I)),169),I,I.O),I).N.push([uN,n,E?e+1:e]),B),true},Ia=function(n,E,I,e){for(;E.N.length;){e=(E.h=null,E).N.pop();try{I=mC(e,E)}catch(X){A(X,E)}if(n&&E.h){n=E.h,n(function(){c(E,true,true)});break}}return I},Q6=function(n,E,I,e){return Q((Z(169,(rN(n,(e=Q(169,n),n.X&&e<n.O?(Z(169,n,n.O),sK(n,E)):Z(169,n,E),I)),n),e),98),n)},bN=function(n,E,I,e,X){for(e=(I.xv=((I.uV=((I.aN=I[k],I).zW=V6,tI),I).Lv=Y0({get:function(){return this.concat()}},I.g),J[I.g](I.Lv,{value:{value:{}}})),0),X=[];128>e;e++)X[e]=String.fromCharCode(e);c(I,true,(m(I,(m(I,(m(I,(Z(6,(b(function(L,T,g,x,w,D){v(false,true,L,T)||(w=ZU(L.L),T=w.P,D=w.A,g=T.length,x=w.Kv,w=w.TW,T=0==g?new x[D]:1==g?new x[D](T[0]):2==g?new x[D](T[0],T[1]):3==g?new x[D](T[0],T[1],T[2]):4==g?new x[D](T[0],T[1],T[2],T[3]):2(),Z(w,L,T))},(Z(446,I,R((b(function(L,T,g,x,w,D){if(!v(true,true,L,T)){if((D=(w=Q((T=(g=(D=a(L),T=a(L),a(L)),w=a(L),Q)(T,L),w),L),Q(D,L)),L=Q(g,L),"object")==iN(D)){for(x in g=[],D)g.push(x);D=g}for(x=0,g=D.length,L=0<L?L:1;x<g;x+=L)T(D.slice(x,(x|0)+(L|0)),w)}},I,((b(function(L){nv(4,L)},(b(function(L,T,g,x,w,D,M){for(x=(T=(g=Q((D=a(L),w=dN(L),M="",157),L),g.length),0);w--;)x=((x|0)+(dN(L)|0))%T,M+=X[g[x]];Z(D,L,M)},I,(Z(409,(I.cV=(Z(373,I,[160,(b(function(L,T,g,x){Z((x=Q((g=(T=a((g=(x=a(L),a(L)),L)),Q(g,L)),x),L),T),L,x[g])},(b(function(L,T,g,x,w){Z((w=(g=(g=a((x=(T=a(L),a(L)),L)),w=a(L),Q)(g,L),x=Q(x,L),Q(w,L)),T),L,PU(x,w,L,g))},I,(b(function(L,T,g,x,w){for(x=(w=(g=dN((T=a(L),L)),[]),0);x<g;x++)w.push(z(L));Z(T,L,w)},I,(b(function(L){gN(L,1)},(b(function(L,T,g,x){!v(false,true,L,T)&&(T=ZU(L),x=T.Kv,g=T.A,L.L==L||g==L.S0&&x==L)&&(Z(T.TW,L,g.apply(x,T.P)),L.G=L.Z())},(b(function(L,T,g,x){Z((g=Q((T=a((g=a(L),L)),x=Q(T,L),g),L),T),L,x+g)},(Z(19,I,(b(function(L,T,g){Z((g=(T=a(L),a(L)),T=Q(T,L),T=iN(T),g),L,T)},I,(b(function(L,T,g,x){Z((T=a((x=(g=a(L),a(L)),L)),T),L,Q(g,L)||Q(x,L))},I,(b(function(L,T){L=(T=a(L),Q)(T,L.L),L[0].removeEventListener(L[1],L[2],F)},(b(function(L,T,g){v(false,true,L,T)||(T=a(L),g=a(L),Z(g,L,function(x){return eval(x)}(Gl(Q(T,L.L)))))},I,(b(function(L){Mi(L,3)},I,(b(function(L,T,g){0!=(g=(g=(T=a(L),a(L)),Q)(g,L),Q(T,L))&&Z(169,L,g)},(Z(426,I,(b(function(L,T,g,x,w){x=(T=Q((g=(w=(T=(x=a(L),g=a(L),a)(L),a(L)),Q(g,L)),w=Q(w,L),T),L),Q)(x,L.L),0!==x&&(T=PU(T,1,L,w,x,g),x.addEventListener(g,T,F),Z(426,L,[x,g,T]))},(Z((b(function(L){gN(L,4)},(b(function(L,T,g,x){Z((x=(T=(x=a(L),a(L)),g=a(L),T=Q(T,L),Q(x,L)),g),L,x in T|0)},(Z(258,(Z(504,(Z(98,I,(b(function(){},I,(b(function(L,T,g,x){Z((T=z((x=a(L),L)),g=a(L),g),L,Q(x,L)>>>T)},I,(b(function(L,T,g){Z((g=(T=a(L),a(L)),g),L,""+Q(T,L))},I,(b(function(L,T){sK((T=Q(a(L),L),L.L),T)},I,(b(function(L,T,g,x,w,D,M,W,t,p,V,u){function U(Y,d){for(;g<Y;)u|=z(L)<<g,g+=8;return u>>=(d=u&(1<<(g-=Y,Y))-1,Y),d}for(w=(x=(g=(V=a(L),u=0),M=(U(3)|0)+1,U(5)),[]),D=T=0;D<x;D++)W=U(1),w.push(W),T+=W?0:1;for(p=(D=(T=((T|0)-1).toString(2).length,0),[]);D<x;D++)w[D]||(p[D]=U(T));for(T=0;T<x;T++)w[T]&&(p[T]=a(L));for(t=[];M--;)t.push(Q(a(L),L));b(function(Y,d,y6,C,S){for(C=(y6=[],S=[],0);C<x;C++){if(d=p[C],!w[C]){for(;d>=S.length;)S.push(a(Y));d=S[d]}y6.push(d)}(Y.S=fv(t.slice(),Y),Y).v=fv(y6,Y)},L,V)},I,(b(function(L,T,g,x){if(x=L.mu.pop()){for(g=z(L);0<g;g--)T=a(L),x[T]=L.K[T];L.K=(x[504]=(x[19]=L.K[19],L).K[504],x)}else Z(169,L,L.O)},(b(function(L){Mi(L,4)},I,(b(function(L,T,g,x){(x=(g=a((T=a(L),L)),a(L)),L.L==L)&&(g=Q(g,L),x=Q(x,L),Q(T,L)[g]=x,226==T&&(L.i=void 0,2==g&&(L.H=h(32,L,false),L.i=void 0)))},I,(b(function(L,T,g,x){T=(g=a((T=(x=a(L),a(L)),L)),x=Q(x,L),Q)(T,L),Z(g,L,+(x==T))},I,(Z(90,((Z(117,(((I.l=25,(I.T=void 0,(e=window.performance||{},(I.v=(I.XU=0,void 0),I.K=[],I).rY=(I.X=[],(I.O=0,I.W=0,I).N=[],I.H=(I.mu=[],I.R=false,void 0),I.B=0,false),I).S=void 0,I.F=[],I).j=(I.Y=0,I.V=void 0,I.G=0,I.D=0,1),I).pv=(I.J=8001,(I.I=void 0,I.h=(I.S0=function(L){this.L=L},null),I.L=(I.C=[],I),I).U=false,(I.i=void 0,e).timeOrigin||(e.timing||{}).navigationStart||0),Z)(169,I,0),I),0),I).Yv=0,I),[]),111)),292)),Z(184,I,353),170)),I),382),286)),390)),281)),7)),326)),{})),I),2048),I),[0,0,0]),I),44),I),84),207),I,q),I),396),0)),I),323),177)),442)),I),81),376)),433)),[])),I),14),I),222),I),347),287)),50)),I),123),0),0]),0),I),I),205)),I),432),I).vV=0,215)),4))),I),228),I),0),[ev])),[l,n])),[WU,E])),true))},R=function(n,E){for(E=[];n--;)E.push(255*Math.random()|0);return E},f=function(n,E,I,e){for(e=(I=(n|0)-1,[]);0<=I;I--)e[(n|0)-1-(I|0)]=E>>8*I&255;return e},Y0=function(n,E){return J[E](J.prototype,{splice:n,floor:n,pop:n,stack:n,document:n,call:n,length:n,prototype:n,parent:n,console:n,propertyIsEnumerable:n,replace:n})},Z=function(n,E,I){if(169==n||117==n)E.K[n]?E.K[n].concat(I):E.K[n]=fv(I,E);else{if(E.U&&226!=n)return;373==n||446==n||90==n||19==n||258==n?E.K[n]||(E.K[n]=pv(118,E,I,n)):E.K[n]=pv(81,E,I,n)}226==n&&(E.H=h(32,E,false),E.i=void 0)},qi=function(n,E,I,e){function X(){}return{invoke:(e=aa((I=void 0,n),function(L){X&&(E&&B(E),I=L,X(),X=void 0)},!!E)[0],function(L,T,g,x){function w(){I(function(D){B(function(){L(D)})},g)}if(!T)return T=e(g),L&&L(T),T;I?w():(x=X,X=function(){(x(),B)(w)})})}},OK=function(n,E,I){if(3==n.length){for(I=0;3>I;I++)E[I]+=n[I];for(I=[13,8,13,12,16,(n=0,5),3,10,15];9>n;n++)E[3](E,n%3,I[n])}},K=function(n,E,I){I=this;try{bN(E,n,this)}catch(e){A(e,this),n(function(X){X(I.T)})}},dN=function(n,E){return E=z(n),E&128&&(E=E&127|z(n)<<7),E},UK=function(n,E,I,e,X){for(X=(I=I[e=I[2]|0,3]|0,0);14>X;X++)n=n>>>8|n<<24,n+=E|0,n^=e+2298,I=I>>>8|I<<24,E=E<<3|E>>>29,I+=e|0,I^=X+2298,E^=n,e=e<<3|e>>>29,e^=I;return[E>>>24&255,E>>>16&255,E>>>8&255,E>>>0&255,n>>>24&255,n>>>16&255,n>>>8&255,n>>>0&255]},hI=function(n,E,I){return E.o(function(e){I=e},false,n),I},z=function(n){return n.S?Lv(n.v,n):h(8,n,true)},jv=function(n,E){return E[n]<<24|E[(n|0)+1]<<16|E[(n|0)+2]<<8|E[(n|0)+3]},rN=function(n,E,I,e,X,L){if(!n.T){n.B++;try{for(X=(L=0,n.O),e=void 0;--E;)try{if(I=void 0,n.S)e=Lv(n.S,n);else{if((L=Q(169,n),L)>=X)break;e=Q((Z(117,n,L),I=a(n),I),n)}v(false,false,(e&&e[cU]&2048?e(n,E):P(0,n,[r,21,I]),n),E)}catch(T){Q(184,n)?P(22,n,T):Z(184,n,T)}if(!E){if(n.gY){rN(n,(n.B--,168668240895));return}P(0,n,[r,33])}}catch(T){try{P(22,n,T)}catch(g){A(g,n)}}n.B--}},G=function(n,E,I,e,X,L){if(n.L==n)for(L=Q(E,n),446==E?(E=function(T,g,x,w){if((w=(x=L.length,(x|0)-4>>3),L.q7)!=w){g=[0,(w=(w<<3)-(L.q7=w,4),0),X[1],X[2]];try{L.O$=UK(jv((w|0)+4,L),jv(w,L),g)}catch(D){throw D;}}L.push(L.O$[x&7]^T)},X=Q(258,n)):E=function(T){L.push(T)},e&&E(e&255),n=0,e=I.length;n<e;n++)E(I[n])},fv=function(n,E,I){return((I=J[E.g](E.xv),I)[E.g]=function(){return n},I).concat=function(e){n=e},I},h=function(n,E,I,e,X,L,T,g,x,w,D,M,W,t){if((g=Q(169,E),g)>=E.O)throw[r,31];for(w=(e=(D=E.aN.length,n),0),x=g;0<e;)T=x>>3,t=x%8,W=8-(t|0),L=E.X[T],W=W<e?W:e,I&&(X=E,X.i!=x>>6&&(X.i=x>>6,M=Q(226,X),X.V=UK(X.i,X.H,[0,0,M[1],M[2]])),L^=E.V[T&D]),x+=W,w|=(L>>8-(t|0)-(W|0)&(1<<W)-1)<<(e|0)-(W|0),e-=W;return Z(169,E,(I=w,(g|0)+(n|0))),I},q=this||self,B=q.requestIdleCallback?function(n){requestIdleCallback(function(){n()},{timeout:4})}:q.setImmediate?function(n){setImmediate(n)}:function(n){setTimeout(n,0)},PU=function(n,E,I,e,X,L){function T(){if(I.L==I){if(I.K){var g=[H,n,e,void 0,X,L,arguments];if(2==E)var x=c(I,(m(I,g),false),false);else if(1==E){var w=!I.N.length;(m(I,g),w)&&c(I,false,false)}else x=mC(g,I);return x}X&&L&&X.removeEventListener(L,T,F)}}return T},pv=function(n,E,I,e,X,L,T,g){return((L=(T=n&(X=$0,I=[89,-43,5,1,4,91,I,75,51,-20],7),J[E.g](E.Lv)),L)[E.g]=function(x){T+=6+7*n,g=x,T&=7},L).concat=function(x){return(g=(x=(x=e%16+1,-40*e*e*g-x*g- -2240*g+I[T+51&7]*e*x+40*g*g+T+1*e*e*x- -1720*e*g+(X()|0)*x),void 0),x=I[x],I[(T+13&7)+(n&2)]=x,I)[T+(n&2)]=-43,x},L},zl=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),cU=((K.prototype.gY=false,K.prototype.dY=void 0,K).prototype.s="toString",K.prototype.BV=void 0,[]),H=[],l=[],k=[],ev=[],WU=[],r={},N=[],uN=[],$0=((y=(((Tl,function(){})(R),DU,function(){})(OK),K.prototype.g="create",K.prototype),y).bV=function(n,E,I){return n^((E=((E^=E<<13,E^=E>>17,E)^E<<5)&I)||(E=1),E)},void 0),J=(y.o=(y.HV=function(){return Math.floor(this.D+(this.Z()-this.Y))},((y.GW=function(n,E,I,e,X,L){for(X=(e=L=0,[]);L<n.length;L++)for(I=I<<E|n[L],e+=E;7<e;)e-=8,X.push(I>>e&255);return X},y).Z=(y.he=function(){return Math.floor(this.Z())},(window.performance||{}).now)?function(){return this.pv+window.performance.now()}:function(){return+new Date},y).PV=function(n,E,I,e,X){for(e=X=0;X<n.length;X++)e+=n.charCodeAt(X),e+=e<<10,e^=e>>6;return X=new Number((n=(e+=e<<3,e^=e>>11,e+(e<<15)>>>0),n&(1<<E)-1)),X[0]=(n>>>E)%I,X},function(n,E,I,e,X){if(I="array"===iN(I)?I:[I],this.T)n(this.T);else try{e=[],X=!this.N.length,m(this,[N,e,I]),m(this,[k,n,e]),E&&!X||c(this,E,true)}catch(L){A(L,this),n(this.T)}}),r).constructor;(K.prototype.u=function(n,E){return $0=function(){return n==E?-56:-98},E={},n={},function(I,e,X,L,T,g,x,w,D,M,W,t,p,V,u){n=(t=n,E);try{if(e=I[0],e==l){p=I[1];try{for(x=(u=(V=[],L=0,atob(p)),0);L<u.length;L++)T=u.charCodeAt(L),255<T&&(V[x++]=T&255,T>>=8),V[x++]=T;Z(226,this,(this.O=(this.X=V,this).X.length<<3,[0,0,0]))}catch(U){P(17,this,U);return}rN(this,8001)}else if(e==N)I[1].push(Q(373,this).length,Q(504,this),Q(446,this).length,Q(90,this).length),Z(98,this,I[2]),this.K[67]&&Q6(this,Q(67,this),8001);else{if(e==k){(w=(V=I[2],f(2,(Q(373,this).length|0)+2)),X=this.L,this).L=this;try{W=Q(19,this),0<W.length&&G(this,373,f(2,W.length).concat(W),10),G(this,373,f(1,this.j),109),G(this,373,f(1,this[k].length)),u=0,u+=Q(6,this)&2047,u-=(Q(373,this).length|0)+5,D=Q(446,this),4<D.length&&(u-=(D.length|0)+3),0<u&&G(this,373,f(2,u).concat(R(u)),15),4<D.length&&G(this,373,f(2,D.length).concat(D),156)}finally{this.L=X}if(g=((x=R(2).concat(Q(373,this)),x[1]=x[0]^6,x)[3]=x[1]^w[0],x[4]=x[1]^w[1],this).N7(x))g="!"+g;else for(u=0,g="";u<x.length;u++)M=x[u][this.s](16),1==M.length&&(M="0"+M),g+=M;return Q(((Z(504,this,((L=g,Q)(373,this).length=V.shift(),V.shift())),Q(446,this)).length=V.shift(),90),this).length=V.shift(),L}if(e==uN)Q6(this,I[1],I[2]);else if(e==H)return Q6(this,I[1],8001)}}finally{n=t}}}(),K.prototype.yC=0,K.prototype).N7=function(n,E,I,e){if(I=window.btoa){for(e="",E=0;E<n.length;E+=8192)e+=String.fromCharCode.apply(null,n.slice(E,E+8192));n=I(e).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else n=void 0;return n},K.prototype.Z4=0;var V6,tI=/./,AI=(K.prototype[WU]=[0,0,1,1,0,1,1],l.pop.bind(K.prototype[N])),Gl=function(n,E){return(E=Xn())&&1===n.eval(E.createScript("1"))?function(I){return E.createScript(I)}:function(I){return""+I}}(((V6=Y0({get:AI},(tI[K.prototype.s]=AI,K.prototype.g)),K).prototype.iV=void 0,q));(O=q.botguard||(q.botguard={}),40<O.m)||(O.m=41,O.bg=qi,O.a=aa),O.kDL_=function(n,E,I){return[(I=new K(E,n),function(e){return hI(e,I)})]};}).call(this);'));
}).call(this);

Executed Writes (5)
#1 JavaScript::Write (size: 28) - SHA256: 02a30378b586dc03985957f9e19c893c277976dd109c5deb1c14ce4efa3a970f
< div id = 'nuffnang_lb' > < /div>
#2 JavaScript::Write (size: 28) - SHA256: 674295b7176ca89279085dbaae2b02cf89dcb8c12a7177a1fe1bd3c2fdb7b790
< div id = 'nuffnang_lr' > < /div>
#3 JavaScript::Write (size: 665) - SHA256: fa6221503fb971830dabb98be29a50cd48358ae18aaf8474001ec2037a655d55
< iframe width = "468"
height = "60"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
sandbox = "allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts"
src = "//ebaaa.xyz/b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_83505&adApiR=loaded_string_4997735b0bce9d250429df012c0426f88d0bd_2834801_1669857507.0444_92563&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=159828885464&realRef=L2NETFhpTXhYWUNHeGdMclJKaDVBa24xWWRyZ0ZNR3hQUkhBMDduS25nMD0=" > < /iframe>
#4 JavaScript::Write (size: 24) - SHA256: a3ba8250ebf2c8e28e99b0cbcb48488777fa3f512e83a7a56930803eb5d35e05
< xmp style = display: none >
#5 JavaScript::Write (size: 362) - SHA256: ce9b65367d4ed6cc9d9475d2b956be6807415e6224ba54411a6e60c96e6f24fa
< iframe src = "http://yx-ads6.com/bnr_xload.php?section=General&pub=235648&format=468x60&ga=g&xt=166985750693792&xtt=9129389"
width = "468"
height = "60"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
sandbox = "allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts"
style = "width:468px !important;height:60px !important;" > < /iframe>


HTTP Transactions (132)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7233
Expires: Thu, 01 Dec 2022 03:18:59 GMT
Date: Thu, 01 Dec 2022 01:18:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2847
Cache-Control: max-age=122420
Date: Thu, 01 Dec 2022 01:18:26 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:18:46 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9179
Expires: Thu, 01 Dec 2022 03:51:25 GMT
Date: Thu, 01 Dec 2022 01:18:26 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 00:19:45 GMT
cache-control: public,max-age=3600
age: 3521
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: dZjgEvNNVVgVkQ6M+eNHctZOkxo0Jm5nijL9ENm2+FBnNLNWNnuIOgqAqyOgjk0oIV6VLNalNPc=
x-amz-request-id: VRG7A270ZSEQXFDF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 00:46:04 GMT
age: 1942
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /2010/10/lirik-lagu-fantastic-adventure-law.html HTTP/1.1 
Host: zonfiniti.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Thu, 01 Dec 2022 01:18:26 GMT
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 10 Nov 2022 09:55:18 GMT
ETag: W/"c11b6f0ea25658733eb2b52c14280a6fb24c9a38c88bb4da6e736b3bea5320b7"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 20070
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6910)
Size:   20070
Md5:    00df98c0af7ef3d735c2ac90288a1ff1
Sha1:   bd46722c5e5124fd266acc957dc563102d9d1ab9
Sha256: f79ed9b01d5df93a4b41387e2126a0161c8a138f5f57dd4b5421acfbc6972601

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Dec 2022 01:18:26 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /css?family=Chelsea+Market HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         142.250.74.74
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 01 Dec 2022 01:18:26 GMT
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   350
Md5:    40d16eece24d27dac13236a5cee7d95a
Sha1:   7ed9183c7420beabf6b39db60671b5b283a2ee23
Sha256: 2be4cd48daa4df9e03d2e56021717a5956ea286c7dbceed35815942c5d791024
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: zonfiniti.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/2010/10/lirik-lagu-fantastic-adventure-law.html

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 03:52:39 GMT
Expires: Wed, 07 Dec 2022 03:52:39 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 18:54:36 GMT
Age: 77147


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /counter/counter_xhtml.js HTTP/1.1 
Host: www.statcounter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         104.20.219.77
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 30 Nov 2022 14:58:17 GMT
ETag: W/"aa70-5eeb155aec08c"
Cache-Control: max-age=43200
Expires: Thu, 01 Dec 2022 06:20:20 GMT
Access-Control-Allow-Origin: *
P3P: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
User-Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 25086
Server: cloudflare
CF-RAY: 7727fd26a906b51e-OSL


--- Additional Info ---
Magic:  ASCII text, with very long lines (43632), with no line terminators
Size:   14093
Md5:    ec70672a2f4620ce69dbd93d41715fb2
Sha1:   68d559ba806e8aa338221616ba9a85ae582e03a3
Sha256: f6cd20fa5ef3de2a6bd894efa434c1650f12cf6b3c9df03d45489aff18c44b7e
                                        
                                            GET /serve/taolaga.googlepages.com/blogger-widget.js HTTP/1.1 
Host: bloggerhosting.appspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         172.217.21.180
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Content-Length: 272
Date: Thu, 01 Dec 2022 01:18:26 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   272
Md5:    9902fb9f7cf3e9a8dd26f45a5cb94113
Sha1:   91995c443aa89cdcf3ab52e2ea1ae3d4893624bc
Sha256: 6b43b396ba4708e5ffe9da06909bc2059e55b300f2434bc4181ca3a842d83bd6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:01:43 GMT
expires: Wed, 29 Nov 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
age: 127003
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30596)
Size:   6620
Md5:    6f46e6f68353c7911fe34f31faa1518f
Sha1:   ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
Sha256: 0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 18:49:01 GMT
Expires: Tue, 06 Dec 2022 18:49:01 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 19:53:31 GMT
Age: 109765


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            GET /static/v1/jsbin/942062736-iframe_colorizer.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5865
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:38:35 GMT
expires: Wed, 29 Nov 2023 14:38:35 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 29 Nov 2022 12:51:31 GMT
age: 124791
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1186)
Size:   5865
Md5:    ae2f1ebd5821d4f028821dfd84c6ad60
Sha1:   a33de0ac5a2b991deb45f25205606d10d60eaed9
Sha256: 017757930e96e63fb37a6c555130eaf6258b555293c0527ff45fc0e5cea840c7
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.238
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Thu, 01 Dec 2022 01:18:26 GMT
expires: Thu, 01 Dec 2022 01:18:26 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1279)
Size:   20984
Md5:    7ac44ef24e267df17ff72f195b252806
Sha1:   62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
Sha256: aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
                                        
                                            GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
age: 156897
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56726
Md5:    1217c8e34acb09c7cea97bae4d386ea1
Sha1:   55ee17703d0a7710943e93913bacb49220d98b4b
Sha256: c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /blogger_img_proxy/ANbyha3Hs0wHhrbW5nGoLvE6_vWR0nzRw2TPgWxfCtrGoh-nJbA6aXSS3IeJCk3uBfVUtx6bh6eaiQq9Gw4O2CBWaYCZ=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Fri, 02 Dec 2022 01:18:26 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 01:18:26 GMT
server: fife
content-length: 3783
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   3783
Md5:    e9872c139e13380c2a6dc914047f5c43
Sha1:   9bc56aea6b9a9171e1e19fb034149cf28099ccd7
Sha256: 5aa55dbc5e50a95b08219a0cdee7b7bff73811a06a9f51be12c557f27fc3de15
                                        
                                            GET /blogger_img_proxy/ANbyha0e3-qD_-v4rO85BciiL-YUsBLqjGRPXt6ym7LwAtJD9l4PFhmFosq-CIYHkNHmmv4TCha5Gpy9DvKpjNYlQerKfQd41loAgfUU-DicneUvBrvUKA=w72-h72-n-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Fri, 02 Dec 2022 01:18:26 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 01:18:26 GMT
server: fife
content-length: 3481
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   3481
Md5:    df8b5dc82f0bcf61828570053b7fd7cb
Sha1:   7754ed19d4331b92605b913a0b82282ec551d9ba
Sha256: b2ee614100bef7e2df35874c7899aba5607a6a3ce60197b643d470b9a1414d2b
                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         142.250.74.34
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 13:24:36 GMT
Expires: Wed, 14 Dec 2022 13:24:36 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Age: 42830


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.238
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:44:06 GMT
expires: Wed, 29 Nov 2023 13:44:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
age: 128060
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (580)
Size:   57794
Md5:    813b15c3004464f6bd39fd0773b04757
Sha1:   bd2218fe1e647f61132aad70d29cd91fd0416f26
Sha256: 446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
                                        
                                            GET /s/chelseamarket/v13/BCawqZsHqfr89WNP_IApC8tzKChiJg8.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://zonfiniti.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

search
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 61504
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 03:52:39 GMT
Expires: Thu, 30 Nov 2023 03:52:39 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Thu, 21 Apr 2022 16:40:25 GMT
Age: 77147


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 61504, version 1.0\012- data
Size:   61504
Md5:    efc4fa5d1436b84b1393c7f8097b1b0e
Sha1:   3f193d00429fa2dccd2615c2727fed9cefe179e8
Sha256: c74227d556a0967c1be9c42926de92bbd82b09f650d583c520c2d9a4b98cf307
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /KisahLawakCeritaLucu?format=sigpro HTTP/1.1 
Host: feeds.feedburner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         142.250.74.78
HTTP/1.1 200 OK
Content-Type: text/xml; charset=utf-8
                                        
Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
feedburnerv2:
Last-Modified: Sat, 26 Nov 2022 16:46:05 GMT
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 01 Dec 2022 01:18:26 GMT
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/RaichuFeedServer/cspreport, script-src 'nonce-bHk3OUsnHz7j70XBHTZgVA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/RaichuFeedServer/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/RaichuFeedServer/cspreport/allowlist
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Cross-Origin-Resource-Policy: same-site
Cross-Origin-Opener-Policy: same-origin; report-to="RaichuFeedServer"
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Report-To: {"group":"RaichuFeedServer","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/RaichuFeedServer/external"}]}
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2412)
Size:   7634
Md5:    8d17fd1c09a65f2401bbf2c7520a243e
Sha1:   7b74ff84f06d6d49f33dae7df1fca3a145005aa1
Sha256: fb825010a0c7dac62d9738ac9402d733997504c7266290cb132a835f0d6d1d5f
                                        
                                            GET /v_77930.gif HTTP/1.1 
Host: www.blogtopsites.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         54.209.14.81
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 01:18:26 GMT
Content-Length: 181
Connection: keep-alive
Server: Apache


--- Additional Info ---
Magic:  GIF image data, version 89a, 80 x 15\012- data
Size:   181
Md5:    f19b302e783ce24201563d80b2cc6784
Sha1:   e65f4bfaafa44ac5050dce3f8e981bd492e26a88
Sha256: 5294358b5240e0f24d259b9cdeb65e47d5ba3cee7227010e218bd91e99359823
                                        
                                            GET /BidVertiser.dbm?pid=252920%26bid=727451 HTTP/1.1 
Host: bdv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         54.241.51.109
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   9014
Md5:    0d489677aaa27440619b64706f2cafe9
Sha1:   b87bf2207059e1db5a939e804c7e586e7b8ad125
Sha256: 0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
                                        
                                            GET /blogger_img_proxy/ANbyha3QVLP7lbMf7BWDVdEFgEtOuU0e8lIDbv6lgva9sCaGOtbJDXEp7FbN_SifEeTZV5D1oCxARmMQ44Wkkcqum2nU0ugbo59VY76BZh3ZPAn_y0UnC0gE2t4HyZiSvC4zbBYpZmx9_HXyCOY=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.225
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 01:18:26 GMT
server: fife
content-length: 1744
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1744
Md5:    2aceab479b38c1244f7fd94219e0daf1
Sha1:   853760e770bdb2c9834bc309fb47372c9440655f
Sha256: 48307fa14f6ed5f1ffcaac291bea8c1d55a6866d9996499417d2e05a8e1da92a
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=8652144738844330194&zx=3f156d55-566f-4f4d-8c6f-df89afc6d6f8 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 01 Dec 2022 01:18:26 GMT
last-modified: Thu, 01 Dec 2022 01:18:26 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    a62e4d501434033d5d177e67d3aafdd0
Sha1:   34f7300c9ed47334cf10826d57af785321e3138b
Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 01:08:56 GMT
cache-control: public,max-age=3600
age: 570
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /banner.php?section=General&pub=235648&format=468x60&ga=g HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         185.66.200.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Dec 2022 01:18:26 GMT
Last-Modified: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet


--- Additional Info ---
Magic:  ASCII text, with very long lines (427), with no line terminators
Size:   427
Md5:    2aec1da271383a160adf9dd7874796fc
Sha1:   d9775dce995f367a77c4204e3f16555c2d28fa45
Sha256: 1bcab8f14612b47ec47703914b8e7ca42f57c4a00e52ee2db34fc1cfb1febdf9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2832
Cache-Control: max-age=117336
Date: Thu, 01 Dec 2022 01:18:27 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:54:03 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /bnr_xload.php?section=General&pub=235648&format=468x60&ga=g&xt=166985750693792&xtt=9129389 HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         185.66.200.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Dec 2022 01:18:26 GMT
Last-Modified: Thu, 01 Dec 2022 01:18:26 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Set-Cookie: used_ad2834801=1; expires=Thu, 01-Dec-2022 05:00:00 GMT; Max-Age=13293; path=/; domain=yx-ads6.com; secure; HttpOnly; SameSite=None total_impressions=1; expires=Thu, 01-Dec-2022 05:00:00 GMT; Max-Age=13293; path=/; domain=yx-ads6.com; secure; HttpOnly; SameSite=None cpa_673873=468x60_432418328_0; expires=Sat, 31-Dec-2022 01:18:27 GMT; Max-Age=2592000; path=/; domain=yx-ads6.com; secure; SameSite=None


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1278), with no line terminators
Size:   1278
Md5:    4dd54144cdf305c272e806f05e108ad4
Sha1:   3cc4096d0880d4275f8075b6149dbf1adbb8878c
Sha256: 284d3d9cabeb1781d6eb9b11900be4958c64c5541e023c29eef5a5f868a12589
                                        
                                            GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1 
Host: www.zonfiniti.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
Server: Blogger Render Server 1.0
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Encoding: gzip
Content-Length: 8829
X-Frame-Options: SAMEORIGIN
Date: Thu, 01 Dec 2022 01:18:27 GMT
Expires: Wed, 30 Nov 2022 03:52:40 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Thu, 10 Nov 2022 09:55:18 GMT
ETag: W/"94570c34c4d269a0bd385761b5afbff1fb7b772e0277e6d0b55cda50baf48fd5"
Age: 0


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (49741)
Size:   8829
Md5:    51a180b2c29c9d203ff4908974524038
Sha1:   53f6c6870e753de6d53b70ce3f0fb2b437bf2499
Sha256: fa7f1319d6a8bae2f1f56091fb2d2c563d10e7059c7e897dba42967d33bb593d
                                        
                                            GET /show.php?u13751669857507=true&ad=673873&f=468x60&a=827929&cri=0&s=MmMzZTVmZTUxYzYyNTJkMTkxNTAwZjdlN2E5YzgwMWY=&u=235648&si=432418328&di=10798170&ci=16&h=1e9ccf4b62551ba9cf6f735e1b38ebc2&cc=NO&useAf=loaded_string_4997735b0bce9d250429df012c0426f88d0bd_2834801_1669857507.0444_92563&ar=aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/bnr_xload.php?section=General&pub=235648&format=468x60&ga=g&xt=166985750693792&xtt=9129389
Upgrade-Insecure-Requests: 1

search
                                         185.66.200.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Dec 2022 01:18:27 GMT
Last-Modified: Thu, 01 Dec 2022 01:18:27 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (596), with CRLF line terminators
Size:   1591
Md5:    086f3bed7a49e41da9de6203371c9e28
Sha1:   f572f34ea83983cbdbbd59f529e6ff01b7936b4f
Sha256: 42561c3576174abde56c4b85169419d39932ef5edeb40da53319e4e360db6831
                                        
                                            GET /BidVertiser.dbm?pid=252920%26bid=727451 HTTP/1.1 
Host: bdv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         54.241.51.109
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   9014
Md5:    0d489677aaa27440619b64706f2cafe9
Sha1:   b87bf2207059e1db5a939e804c7e586e7b8ad125
Sha256: 0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
                                        
                                            GET /b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_83505&adApiR=loaded_string_4997735b0bce9d250429df012c0426f88d0bd_2834801_1669857507.0444_92563&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf HTTP/1.1 
Host: ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/

search
                                         185.66.201.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (475)
Size:   754
Md5:    fe15d9c373786da6f16ae7b574da83cd
Sha1:   dc83df1c47cb0fd52f9625c1f6da8904057cdb89
Sha256: 169fee302aaf66e093c94b0683b179a9c2ed722f17d16039f1ae66356fcccbf2
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uzRZfWeduBASbq18VD1xVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.203.75.56
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: O0UYTSto/NMqpJLIUpJTzGxrkxg=

                                        
                                            GET /logo_n_small.png?1480628810 HTTP/1.1 
Host: ylx-i.advertica-cdn2.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2016 21:46:50 GMT
ETag: W/"58409a4a-631"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  PNG image data, 16 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size:   1298
Md5:    961dcad940bcae720f8f0ead6409f9d2
Sha1:   7199f8b763df9aec9c55bad14795e2166e6b1501
Sha256: a50a9224daca3d84e35717d2c03bea4a7e9c811b2cc598078de2f9b787ed080a
                                        
                                            GET /aff/pub_5l0n01.png?1480419355 HTTP/1.1 
Host: ylx-i.advertica-cdn2.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2016 11:35:55 GMT
ETag: W/"583d681b-333f"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  PNG image data, 468 x 60, 8-bit colormap, non-interlaced\012- data
Size:   12893
Md5:    2b02f49a3a1c9571a64c27f7b797ffac
Sha1:   ec9ca4b25519977d042a11c8ad9facfa2258dc13
Sha256: e517ff3f3bee21f20a0b6bce68911f8eb1679b05d31ca64fd645db324a90cccd
                                        
                                            GET /serve/taolaga.googlepages.com/blogger-widget.js HTTP/1.1 
Host: bloggerhosting.appspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         172.217.21.180
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Content-Length: 272
Date: Thu, 01 Dec 2022 01:18:27 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   272
Md5:    9902fb9f7cf3e9a8dd26f45a5cb94113
Sha1:   91995c443aa89cdcf3ab52e2ea1ae3d4893624bc
Sha256: 6b43b396ba4708e5ffe9da06909bc2059e55b300f2434bc4181ca3a842d83bd6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "91247826A473C5A1DE1DDC5B40BD3E10F0B269EA47416D53E43C4C8BEB66B880"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6409
Expires: Thu, 01 Dec 2022 03:05:16 GMT
Date: Thu, 01 Dec 2022 01:18:27 GMT
Connection: keep-alive

                                        
                                            GET /b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_83505&adApiR=loaded_string_4997735b0bce9d250429df012c0426f88d0bd_2834801_1669857507.0444_92563&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=159828885464&realRef=L2NETFhpTXhYWUNHeGdMclJKaDVBa24xWWRyZ0ZNR3hQUkhBMDduS25nMD0= HTTP/1.1 
Host: ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/
Upgrade-Insecure-Requests: 1

search
                                         185.66.201.8
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: total_impressions=1; expires=Thu, 01-Dec-2022 04:59:59 GMT; Max-Age=13292; secure; SameSite=None used_ad2834801=1; expires=Thu, 01-Dec-2022 04:59:59 GMT; Max-Age=13292; path=/; secure; SameSite=None
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (33536), with no line terminators
Size:   3474
Md5:    5b32f07faf474d063fba745e00884fc5
Sha1:   b0a4887be28777862f11769e93650673fafbd05a
Sha256: 8c959012d5628be253cc7144d8d600843f904b4b3066f87acd8c4ec9d8f3bb43
                                        
                                            GET /BidVertiser.dbm?pid=252920&bid=727451&RD=28000933100787&DIF=1&bd_ref_v=zonfiniti.blogspot.com&tref=1&win_name=null&docref=&jsrand=28000933100787&js1loc=-&loctitle=%20Lirik%20Lagu%20Fantastic%20Adventure%20%E2%80%93 HTTP/1.1 
Host: bdv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         54.241.51.109
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thursday, 01-Dec-2022 01:18:27 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 01-Dec-2021 01:18:27 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Fri, 02-Dec-2022 01:18:27 GMT bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Fri, 02-Dec-2022 01:18:27 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Len: 5319
CONNECTION: Close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (580)
Size:   133992
Md5:    de96effddde2ded6d1b8c9b7e0b5b076
Sha1:   c6d5db5614340c9548700dd5d83fa6554a49b571
Sha256: cb2ff9b8afe072ef56d28e5bf139e67ba05c9ce1735b14ba595dbae86e08b873
                                        
                                            GET /trk/?1e9ccf4b62551ba9cf6f735e1b38ebc2 HTTP/1.1 
Host: yx-ads6.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://yx-ads6.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.66.200.221
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Thu, 01 Dec 2022 01:18:27 GMT
content-length: 43
last-modified: Thu, 01 Dec 2022 01:18:27 GMT
x-robots-tag: noindex, nofollow, noarchive, nosnippet
pragma-directive: no-cache
cache-directive: no-cache
cache-control: public, no-cache
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /albums/z449/Farmgirl1709/arrow.gif HTTP/1.1 
Host: i1190.photobucket.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         143.204.55.54
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Thu, 01 Dec 2022 01:18:27 GMT
Content-Length: 167
Connection: keep-alive
Location: https://i1190.photobucket.com/albums/z449/Farmgirl1709/arrow.gif
X-Cache: Redirect from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: R59_lk1eEgijCWwa7WzOlg4y7YsLCROyYMD3DV2LiF3p1GYxIbd4Dg==
Vary: Origin


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /activejs/bdv_fsthd.js HTTP/1.1 
Host: d2b9l3u54v5v39.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/

search
                                         54.230.245.82
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1199
Connection: keep-alive
Last-Modified: Thu, 14 Jan 2021 11:27:17 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Wed, 30 Nov 2022 06:13:41 GMT
ETag: "977ef3668ead61:0"
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oIIFOdFKQleBe7jcHFrY5MOFe8hLUufXCzoW2WU8PIuO7nBjIUtfOw==
Age: 68686


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1199
Md5:    263303c015aaddbd3c417327b3b50823
Sha1:   c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb
Sha256: 871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617
                                        
                                            GET /css/default.css HTTP/1.1 
Host: d2b9l3u54v5v39.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/

search
                                         54.230.245.82
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 1489
Connection: keep-alive
Date: Wed, 30 Nov 2022 07:36:14 GMT
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
ETag: "70d0ec1947f4d01:0"
Server: Microsoft-IIS/10.0
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: J7MeBuqlkgJXMcrW96Sgkpr0tHn_dVz8UcJT5ee9hyacBj_0AEL8VQ==
Age: 63733


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1489
Md5:    8ea20baef891abad5a169261301f1b0d
Sha1:   b983c5b36da773d38fc2d9d56fb1e462080ac0f8
Sha256: 27306e4a14ab04d39e59d9d73d6fac0fca90bbab3da5d9358c0000b9119c90af
                                        
                                            GET /css/248x298.css?cbst=2 HTTP/1.1 
Host: d2b9l3u54v5v39.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/

search
                                         54.230.245.82
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 2817
Connection: keep-alive
Last-Modified: Thu, 18 Jan 2018 16:20:30 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Thu, 01 Dec 2022 01:18:27 GMT
ETag: "183bf427890d31:0"
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: E1IcRiMKSIV4OLPp6H6wKR3Wlf3Cp9DawZxWzFXEZzzg0yC3ZGFQrA==
Age: 2947


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2817
Md5:    f020440d7f52ee37d70575b0cd5e5b24
Sha1:   82e5372b0edc7d3f383460166f8e0f1e6280aa81
Sha256: a2df6be8c0eb6d9e62a747d71755fdb0251668c571c984d040d7d6108ffaa5ef
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.228
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Thu, 01 Dec 2022 01:18:27 GMT
date: Thu, 01 Dec 2022 01:18:27 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 665
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1034), with no line terminators
Size:   665
Md5:    34e37af4d526255a20a2056cd5f4addf
Sha1:   bcac186d6a49539e69a3f67aa08d0188966f5623
Sha256: 51a2c479b272414cb9d7e1ec62edffbad01217068b73d516d33cb8f26a4fc634
                                        
                                            GET /albums/z449/Farmgirl1709/arrow.gif HTTP/1.1 
Host: i1190.photobucket.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zonfiniti.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.54
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 532
date: Wed, 30 Nov 2022 03:52:40 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="arrow.gif"
expires: Thu, 30 Nov 2023 03:52:40 GMT
server: photobucket
x-amzn-trace-id: Root=1-6386d388-68aa2cd81cdba4cb275256c0
x-request-id: cCF7kIRymefWTFy00nqo0
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8zLbmZfXXLvi0wQXrhyuPGKkHWPV-Z8ZbOrnj116KaZuwPto8PqlFg==
age: 77147
vary: Accept, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 35 x 40\012- data
Size:   532
Md5:    3e85da9e9dc96af2b567247503d88710
Sha1:   a9cfb2fb1dd591637aabaf157bd0f4e4fa347f69
Sha256: 5ec5c37c746fef19eb6fa6a02290c44085d6a7b3ce5d441f98ffdb040133f146
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:09:57 GMT
expires: Tue, 28 Nov 2023 19:09:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
age: 194910
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (730)
Size:   162976
Md5:    79d18cf4265108d7cecca1bf4ada6109
Sha1:   e51d0285a545381d4c39e9e0292a650ffeeecbb9
Sha256: 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
                                        
                                            GET /s/catamaran/v17/o-0bIpQoyXQa2RxT7-5B6Ryxs2E_6n1iPPja5a7duw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ebaaa.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 12:57:33 GMT
expires: Mon, 27 Nov 2023 12:57:33 GMT
cache-control: public, max-age=31536000
age: 303654
last-modified: Fri, 24 Jun 2022 18:44:20 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 8644, version 1.0\012- data
Size:   8644
Md5:    965a0a32be97551e060e9c431ccf6c9b
Sha1:   76e696b885b4d6908e3a4898d6f712c6639f944a
Sha256: 62c66e244e405c6dbaa9b1e8cdc8798db8a9459c8fc66766b1d38b616c4137c3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /KisahLawakCeritaLucu?format=sigpro HTTP/1.1 
Host: feeds.feedburner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         142.250.74.78
HTTP/1.1 200 OK
Content-Type: text/xml; charset=utf-8
                                        
Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
feedburnerv2:
Last-Modified: Sat, 26 Nov 2022 16:46:05 GMT
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 01 Dec 2022 01:18:27 GMT
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Content-Security-Policy: script-src 'nonce-BqgNHlPCyivD3xQxPwBOzQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/RaichuFeedServer/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/RaichuFeedServer/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/RaichuFeedServer/cspreport
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-site
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2412)
Size:   7634
Md5:    8d17fd1c09a65f2401bbf2c7520a243e
Sha1:   7b74ff84f06d6d49f33dae7df1fca3a145005aa1
Sha256: fb825010a0c7dac62d9738ac9402d733997504c7266290cb132a835f0d6d1d5f
                                        
                                            GET /genericImages/breaking-news/tornado.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:25:36 GMT
Vary: Accept-Encoding
ETag: W/"5d9da790-a397"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x752, components 3\012- data
Size:   40941
Md5:    e801ddc9ec7fe9b34b75100a753669dd
Sha1:   a2edcefd18e4f7d3973b802e6f449d914e7859a8
Sha256: 287ea86194efa270c206fc838c746f8b5e093a13336c113d67bb8afda3c0ec91
                                        
                                            GET /genericImages/breaking-news/fire.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:26:37 GMT
Vary: Accept-Encoding
ETag: W/"5d9da7cd-17dc1"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Size:   97734
Md5:    d2db288c416f9c5eb2cd2d9da339916a
Sha1:   23c7b7acef5f6da23993636098be40403a723836
Sha256: 9c9912933eeac0c79b35abae05111bddb41ec86e145a24a2e2cff331cf3b1bc2
                                        
                                            GET /genericImages/breaking-news/ufo.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:25:05 GMT
Vary: Accept-Encoding
ETag: W/"5d9da771-13b4b"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Size:   80300
Md5:    ce68ce0845ec2595c6fb22736a7a3993
Sha1:   bd68e8f1376667b6f82bd1848e84eede8873144c
Sha256: 761c4a9c7a839d56efd94a75123722d0117eaab5f11ec4875949a58a793f80ab
                                        
                                            GET /genericImages/breaking-news/tsunami.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:25:19 GMT
Vary: Accept-Encoding
ETag: W/"5d9da77f-15e0e"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Size:   89518
Md5:    aae083d8a443d81de09226dad634df2b
Sha1:   f75c55426ac9a86fc284ac7e017bf58f1f458ebf
Sha256: 6c973f95e939da1bf3a25d41cf4f01adcc4397964752140a054506e4abf37cdd
                                        
                                            GET /genericImages/breaking-news/rocket.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:26:15 GMT
Vary: Accept-Encoding
ETag: W/"5d9da7b7-160b5"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Size:   90237
Md5:    d83eadb5affd612df91f3a3cb5a9b311
Sha1:   9c4c486fd799a56ff1d4b4233aa113e1bde354b4
Sha256: a7eea983cfe69cd74f1baf8128e27c53d7e790704773157f1fe63900f6f3d3db
                                        
                                            GET /genericImages/breaking-news/unicorn.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:24:51 GMT
Vary: Accept-Encoding
ETag: W/"5d9da763-20b52"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Size:   132623
Md5:    6accd45a7ed2cb51971ddec821e20240
Sha1:   c7e58c68eea1bb2d9be338df1c5585e131f2c484
Sha256: ad49176e99d1fdfb9b548edf6799cd10b8a56c8f70b27dcb850b2ea7b31e5101
                                        
                                            GET /genericImages/breaking-news/monster.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:26:27 GMT
Vary: Accept-Encoding
ETag: W/"5d9da7c3-6f44"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 720x480, components 3\012- data
Size:   28060
Md5:    f045028c62ae8abf87211bad26764005
Sha1:   c01569b70c6b158825a833afeb0c06c50fc0d257
Sha256: 123f9d2b217640e9080cdc4f05eab6c561663773e2909d915a57146649949274
                                        
                                            GET /genericImages/breaking-news/water.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:24:25 GMT
Vary: Accept-Encoding
ETag: W/"5d9da749-1ac32"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x670, components 3\012- data
Size:   109608
Md5:    8bdddc96b70840beb8f057e0b5fd8eac
Sha1:   1cfa4dc4b8aa7cf268dce8b95e63c37ff67363e3
Sha256: 76cd14c68197e555c4634638a186e7f054d8954cf681a3d39c586c6f33cb09da
                                        
                                            GET /feeds/posts/default/-/Lirik%20Lagu?alt=json-in-script&callback=listEntries10 HTTP/1.1 
Host: zonfiniti.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/2010/10/lirik-lagu-fantastic-adventure-law.html

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"f0424c136dcfe23ced723dd312febbe13534f508242c1397ec707e07e010c3aa"
Date: Thu, 01 Dec 2022 01:18:27 GMT
Server: blogger-renderd
Expires: Thu, 01 Dec 2022 01:18:28 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Thu, 10 Nov 2022 09:55:18 GMT
Content-Encoding: gzip
Content-Length: 8655
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48185)
Size:   8655
Md5:    bc176c4bac9f3f75cf9bfe911d0e0625
Sha1:   404da76872adb1fa75f4211029336612f827658f
Sha256: a0bcb6a2498f08554d534c1efdd5b70c52ba4de5d7b45f1cae8e0bb79d77f1c1
                                        
                                            GET /box/?boxid=782802&boxtag=g6xh0k&sec=form HTTP/1.1 
Host: www5.cbox.ws
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Fri, 01 Dec 2023 01:18:28 GMT
Cache-Control: public, max-age=31536000
X-Cache: EXPIRED
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nHytPrT30%2FH5ATkdHH%2FX%2BbWdu04PPnk6BKVeesEI8edBjNEn4ICg4zV4%2B8x0k3f%2FpVLafDjc3SwS82bE%2FwG0oiPpcfiilt%2FsN6g8Ff8DqFI%2BJmD1QZqAP99sYHDkmZo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7727fd317e920b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (995)
Size:   2287
Md5:    b940bba6faf4b2265a90740d9c7ac84b
Sha1:   b69a4ab44ca6039ff0722d00269c083b9fe9616f
Sha256: b8f7643cb0c03c7bb8acf7d67090c53c10581cf524a2181917cf65db52c89faa
                                        
                                            GET /box/?boxid=782802&boxtag=g6xh0k&sec=main HTTP/1.1 
Host: www5.cbox.ws
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Cache-Control: public, must-revalidate, max-age=5
Last-Modified: Thu, 01 Dec 2022 01:18:28 GMT
X-Cache: EXPIRED
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vUhmuUgusF9WddcwvQLUdqDHQtHpe2ni0Lwzxcl7PlwJrkLsvaplEp1aFES%2Fc5nCAygHBhZ6XRb%2B4m%2F74hG77zpeJ0R1SllbzQA2gz%2BGcNsrXrT6HPjd2%2FhSZH2dDEs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7727fd317c9eb4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (716), with CRLF, LF line terminators
Size:   1501
Md5:    23363e56b565fba60ebb8101731fc727
Sha1:   0cbfc4f15cd0e3db0b7de05c719148ec6f5f16bb
Sha256: 3d3988fa505fb70dc2e5d73fe9175c96899b05efd927a8b681a3d2b42733b168
                                        
                                            GET /box/?boxid=782802&boxtag=g6xh0k&sec=css&i=1336622970 HTTP/1.1 
Host: www5.cbox.ws
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www5.cbox.ws/box/?boxid=782802&boxtag=g6xh0k&sec=form

search
                                         188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/css;charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Fri, 31 Mar 2023 00:56:47 GMT
Cache-Control: public, max-age=10368000
X-Cache: HIT
Content-Encoding: gzip
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4M4YMASbq1obMkOa%2Be%2Bk%2F0uxwdzFGh1JfRLJRACiCbrbhxPpnL5UMdwNhx0M2Y%2BHws5XXeSGKKCeEgD8OTpDdjfxlyQje1sm8u%2F2xYMCPEUIUKg5EM5l%2FhcFmqr3%2FfY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7727fd31fec10b02-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   763
Md5:    d94b95dca9c3e62bfc9ce9e3bdad95fd
Sha1:   ea43174076416f231ed8c04c83db36ddaaaf862d
Sha256: f6e03d5229a38f8c9457308feb82569bf0b0ef3819477dc324779aeb833e0739
                                        
                                            GET /jsc/jsc_1593163307.js HTTP/1.1 
Host: static.cbox.ws
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www5.cbox.ws
Connection: keep-alive
Referer: http://www5.cbox.ws/

search
                                         188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Content-Length: 16559
Connection: keep-alive
Last-Modified: Fri, 26 Jun 2020 09:21:54 GMT
ETag: "5ef5be32-40af"
Content-Encoding: gzip
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
CF-Cache-Status: HIT
Age: 691964
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KEjFnsTyDtV6z7WvCXs%2BPSbmqSBln0E0EOvgnF%2BavWipgW8e90RfJMqBYKQJ6HGvgc9HvOE5HhWvtEh7ZjGsUecd%2BcVUCAVnS%2FrU%2FrbB0%2BG4uFlnZPbB6jOLP6EC75N1Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7727fd32291b0b61-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (538)
Size:   16559
Md5:    d145f5920028cd6628fd2a489864f740
Sha1:   30754798a738b79a9a39c7f2c1f4f3d366e494b2
Sha256: f534b4a63d6e14e118b76f38c76615b6f759542f1cc987664141ebf760d7e6fe
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_CEj8AwvwSNM/S5Ppn-w6byI/AAAAAAAAEDU/zujexeXt05U/icon+untuk++shoutbox+tersembunyi+(7).png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         142.250.74.65
HTTP/1.1 404 Not Found
Content-Type: image/png
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 01 Dec 2022 01:18:28 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size:   832
Md5:    596246739a83bb45e30e13437e0810d9
Sha1:   203d99f5cb1f2c816d6f9974cc5a73cf412892a6
Sha256: 94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
                                        
                                            GET /smilies/1/toocool.gif HTTP/1.1 
Host: static.cbox.ws
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www5.cbox.ws/

search
                                         188.114.97.1
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Content-Length: 927
Connection: keep-alive
ETag: "3f6d82cc-39f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 15632022
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EoK2EJZjEpb3BITCEiyOMBa9yrILoKkkWZz1MHCiXUv1ibK8f4A5HhHF7ujPVy1p9WKqLHgkw15yWPHzDbjBZ%2FSQhPQ0CFaKYgD8twThiritr3DfU3ofcdX9x9KdkMWxTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7727fd327de2b51e-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 15 x 15\012- data
Size:   927
Md5:    3f82e8c1bf5ce4081820b23eb3dc2cc8
Sha1:   b98a5afa0ad4a5c28e333342c76894356ca4d3c0
Sha256: 68c2f479655373e535e96617cce5c98cca1752925b8fc237763f57c6d951152e
                                        
                                            GET /gfx/snd2.png HTTP/1.1 
Host: static.cbox.ws
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www5.cbox.ws/

search
                                         188.114.97.1
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Content-Length: 264
Connection: keep-alive
ETag: "4bb6743a-108"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 22075392
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lXyhHrmHXBoKt72PY8zlaQ%2FUNmYh9Q%2F9TubLq5xqvixVKDCiVlGcL6pDxJvTPh2X1DOjI2EVWmj6LeciLkYdBf8w%2FmsbDjBYfEwkxuRxtRjGhCUAWcZWSRdr4s1x4DRN2A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7727fd327ff60af6-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 48 x 11, 8-bit colormap, non-interlaced\012- data
Size:   264
Md5:    9db1fa0b7190fea89091fa74098e58e3
Sha1:   216c202d89f759c7a9d820100c00e90261e8e4ce
Sha256: c248ad7fabf75b82ad878590021ee5d430231dbaa53b1be3b9160b7aecb9c823
                                        
                                            GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCK4WM5PIdQAz_aN7jJ9XzVsH7SpeSR9ewFFJxo29VK5NRDrtkz6jtpjDJHGkszKHMHFe8dAYXprVMkWA2XehVr9RcrZQ HTTP/1.1 
Host: zonfiniti.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/2010/10/lirik-lagu-fantastic-adventure-law.html
Cookie: sc_is_visitor_unique=rx3969099.1669857507.329AF5F37BDB4F8B84E8BEBD8880BB88.1.1.1.1.1.1.1.1.1

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Content-Encoding: gzip
Date: Thu, 01 Dec 2022 01:18:28 GMT
Expires: Thu, 01 Dec 2022 01:18:28 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 260
Server: GSE


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (409), with no line terminators
Size:   260
Md5:    9b8a8edc6911603ef9ed6c39038b6022
Sha1:   ae8dea11f7b892efacc972589e727a79c26a4fb6
Sha256: bf4c8ed207533fe6d4dd5fa2ca2c611d91bddc4105df285d009f595ee06d4ad2
                                        
                                            GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8652144738844330194%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4915955861108726118%26origin%3Dhttp://zonfiniti.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8652144738844330194%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4915955861108726118%26origin%3Dhttp://zonfiniti.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1 
Host: accounts.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zonfiniti.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         142.250.74.77
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 01 Dec 2022 01:18:28 GMT
location: https://www.blogger.com/followers.g?blogID=8652144738844330194&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4915955861108726118&origin=http%3A%2F%2Fzonfiniti.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-U6J43GqhdavZbhWNwZJEzg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 477
server: GSE
set-cookie: __Host-GAPS=1:O2yEL85g-_7NAZ3nZ0kKtaJGbQ_DDw:-qP1ktdVDPf-f41O;Path=/;Expires=Sat, 30-Nov-2024 01:18:28 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (532)
Size:   477
Md5:    91ccad39a5f2c2be53242ce7494eb234
Sha1:   e2f16c16466ceb281b3d060dd2dacc1711b543d9
Sha256: 72624fb0f5afc321f89b275cdcc440420e3ef351aa200c8a159c90d6216f2213
                                        
                                            GET /ti.js HTTP/1.1 
Host: tcr.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         172.64.151.83
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-b4ff"
content-encoding: gzip
CF-Cache-Status: HIT
Age: 21864
Expires: Sun, 04 Dec 2022 01:18:28 GMT
Cache-Control: public, max-age=259200
Server: cloudflare
CF-RAY: 7727fd32cd48b4ed-OSL


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1213)
Size:   16341
Md5:    a384492ef8f3bb035fc8ecba870e86d3
Sha1:   a6da9b212e2d640261cc1c1a5c98096aef5d8778
Sha256: 9232a4a99aa4630732414441f411afe936b0e95047f3d018e46c40f211fc1ede
                                        
                                            GET /--CaDGF8uXrg/TgIU6LxaDDI/AAAAAAAAAJM/DD0aZFeqczg/s400/zonfiniti.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         142.250.74.65
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v150"
Expires: Fri, 02 Dec 2022 01:18:28 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="zonfiniti.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 01 Dec 2022 01:18:28 GMT
Server: fife
Content-Length: 435
X-XSS-Protection: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 19 x 19\012- data
Size:   435
Md5:    a916069dc5171ae8483ccf858efc22bb
Sha1:   57277f99b85cf5fc298f94d84e73abe8007e4c70
Sha256: 9f34980afb2b810a79bc8999e9653a08364a23732393fc80d093af007449a762
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:48:03 GMT
expires: Fri, 24 Nov 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 531025
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:43 GMT
expires: Fri, 24 Nov 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 549465
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13063
Expires: Thu, 01 Dec 2022 04:56:11 GMT
Date: Thu, 01 Dec 2022 01:18:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   17164
Md5:    ea413143e184220f46d88aaba438f1a0
Sha1:   53180cb430ea103836918e78771c550d9ed2994c
Sha256: 26d9ed5494ccc2e2755904a837a6c8e31ba00c4ef6e186fd0729e2128c3ceeed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13063
Expires: Thu, 01 Dec 2022 04:56:11 GMT
Date: Thu, 01 Dec 2022 01:18:28 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13063
Expires: Thu, 01 Dec 2022 04:56:11 GMT
Date: Thu, 01 Dec 2022 01:18:28 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7957
x-amzn-requestid: 54f43d6b-cf41-4067-b459-6b8d98869354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PGgNIAMF2Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-069ac54c22797a511c69a220;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5et72pBhP9fdm4fNy6V5AJjs7B5N3HUGgaToNJV3LbA59D-0QDAMvw==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 03:31:51 GMT
age: 78397
etag: "01a07f9a5725f608fafeced7b3d1ebdbcb776c29"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7957
Md5:    37004182402c955f288eb1fa8df7aef4
Sha1:   01a07f9a5725f608fafeced7b3d1ebdbcb776c29
Sha256: c90c80dd5cadbde3fef20a9c4561b1efa47401e5f6bdf64c91246553c50204f0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabcce497-e838-40ff-ab98-af5f631b766f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2382
x-amzn-requestid: 7279ff68-1e32-4c57-9b9d-f5803a19e8e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJYQuEmEIAMFkeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806d9e-2cf28dc150b53b9f3c60bb4c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:24:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UaUyc03Gw0P7G_7gjAyp-c3XxjIDbllO7lmG_8UWVCuBP4WgEgSydQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 14:26:41 GMT
age: 39107
etag: "b3eaec75f854d22cd1dcd6aa42e37f6d0df50036"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2382
Md5:    f5469e846da1e0f21cfc480f56a656a6
Sha1:   b3eaec75f854d22cd1dcd6aa42e37f6d0df50036
Sha256: d5701207a8b6b358359ebfd85a6916af7a3abf79acba235bf7d4131b0bc2e9b5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 22822
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8740
Md5:    26d6dffbf400da4803a2e76e2a8ef2f8
Sha1:   2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
Sha256: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9e3a9eb-bc9d-4e50-8738-e978a333d2ae.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4542
x-amzn-requestid: 254467ba-82aa-4964-9e3b-04b2d79a43d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJWiqEQhIAMFnJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806add-2ad86b6031c6984c43f2741d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:12:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2J8Dkm4nUOgJfxXf1aXt3_z-mOmxeksWf0TbTp9mQXOjI1skSW7XJg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 02:00:33 GMT
age: 83875
etag: "ce0321a9b4ea6b56f8d768796a16f26520654b50"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4542
Md5:    80e7af4c2331ee27460e67d6d84f5740
Sha1:   ce0321a9b4ea6b56f8d768796a16f26520654b50
Sha256: a05bb542d7c711b71a7a9a857130acf888a6400f4eb32ff5df1a506a3f8591ce
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 06:34:09 GMT
Expires: Tue, 06 Dec 2022 06:34:08 GMT
Etag: "1734c05cbea5088089655223c45f08424a3775cb"
Cache-Control: max-age=450339,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7727fd330dc4b4fd-OSL

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7609
x-amzn-requestid: 1a464872-7c15-42d3-a12a-f344adf99662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PHVUoAMFf4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-3f77f387752222b212d6e2a5;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XUcf5sxPRTQEOS_HWPDW5ioStuq1TPMKvKQSRi2kZI5TbTWEVKFfog==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 03:42:48 GMT
age: 77740
etag: "b3d22d146c6094cb539de40a72b9c5a140802ee5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7609
Md5:    0d0219e6bee2a28f003f396f872eecf0
Sha1:   b3d22d146c6094cb539de40a72b9c5a140802ee5
Sha256: 41c1b037e8e654c19f36b74cceccd1fc841cc9fb7de39ac552ab5089dc3e82db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1fe6f5b-2658-4434-b276-36d841c8ceee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8124
x-amzn-requestid: e000c0d5-82d0-41a8-8def-b36970226969
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0UqEd1oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdb7-27efd8c92b8f6e4f257cec3b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1GIxjB2nXfoxuqJHLtkXl4OJT_Po5DJA_w26E2K8WOmm_PZw1qU3IQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:19:35 GMT
etag: "ec0fd74a981603e197df26c6fb79ef039f737557"
age: 10733
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8124
Md5:    42c762f71487f8e0285dd2129700f069
Sha1:   ec0fd74a981603e197df26c6fb79ef039f737557
Sha256: 8a40883d87b1e2c6e116e3cf881a8b39c987200a8556b651f78a376b3ddbaa26
                                        
                                            GET /tab.js HTTP/1.1 
Host: widgets.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         172.67.8.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Tue, 29 Nov 2022 16:55:02 GMT
etag: W/"63863966-728a"
expires: Fri, 02 Dec 2022 01:18:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7727fd32caa8b4fa-OSL


--- Additional Info ---
Magic:  ASCII text, with very long lines (29322), with no line terminators
Size:   19182
Md5:    c9ed731944024702b435ba1cc59ef389
Sha1:   80ed46e16bd892d709d35f5ba8dfef01e4d6e320
Sha256: 34b786e8399cc681809345c8e92d95927bc67234f4e592adc1ef2a5d8e4ed449
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 23:33:39 GMT
Expires: Wed, 07 Dec 2022 23:33:38 GMT
Etag: "35d6fe235fa173d759a6691d5ffc25b6863eadba"
Cache-Control: max-age=597909,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7727fd341dfeb4ed-OSL

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Catamaran:800&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ebaaa.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.74
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 01:18:27 GMT
date: Thu, 01 Dec 2022 01:18:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /script/sc/cD2nk8enOr4kMCadbi-bnq.js HTTP/1.1 
Host: sc.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.36.173
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Thu, 01 Dec 2022 01:18:28 GMT
vary: Accept-Encoding
status: 200 OK
x-rack-cache: fresh
cache-control: max-age=86400, public, s-maxage=172800
last-modified: Tue, 29 Nov 2022 15:10:50 GMT
x-xss-protection: 1; mode=block
x-request-id: c2b4dea3-1385-4e9d-b93e-4feb25f8d25b
x-content-digest: 6cf5b76c1453c70cf41f794cfa5c5f4f0e0b4d36
x-runtime: 0.002251
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Thu, 01 Dec 2022 03:47:00 GMT
content-encoding: gzip
cf-cache-status: HIT
age: 77146
server: cloudflare
cf-ray: 7727fd355b41b4e8-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /genericImages/breaking-news/shark.jpg HTTP/1.1 
Host: cdn.ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/

search
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:18:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:26:04 GMT
Vary: Accept-Encoding
ETag: W/"5d9da7ac-197f9"
Expires: Sat, 31 Dec 2022 01:18:27 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip

                                        
                                            GET /lb.js HTTP/1.1 
Host: synad2.nuffnang.com.my
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         18.138.110.223
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Server: Apache/2.2.34 (Amazon)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Location: https://eccdn1.synad3.nuffnang.com.my/lb.js
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 01:18:28 GMT
Content-Length: 315
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    43e57bdc55f596f50440bc4166523aae
Sha1:   170ea997fd02a695bce16a22a0c6c692aae7bbb6
Sha256: 95f4c6e62743abfc1d7f71e2bf6f2efc5d0ff643e6da4ec7604f3bf69768c5ee
                                        
                                            GET /-SNHNQmxoVNs/TvVAp5vIAhI/AAAAAAAABWw/asRFhUakkO8/s45-c/DSC05641.JPG HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.65
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="DSC05641.JPG"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1953
x-xss-protection: 0
date: Thu, 01 Dec 2022 01:18:28 GMT
expires: Wed, 30 Nov 2022 13:37:37 GMT
cache-control: public, max-age=86400, no-transform
etag: "v56c"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size:   1953
Md5:    4baee26cd326fe1bac951002f135cb97
Sha1:   fb115c64a6e8c90954147e1685e7bf84b099c56e
Sha256: caac06f13c005445b14fd2479ddda47be11487bd12e0db5d395a9f3a9e0e763b
                                        
                                            GET /-JMHjEqIws5k/TxOW9ra0sZI/AAAAAAAAAAw/Dl074Fj_6D0/s45-c/sabun8.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.65
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="sabun8.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1695
x-xss-protection: 0
date: Thu, 01 Dec 2022 01:18:28 GMT
expires: Tue, 29 Nov 2022 09:46:30 GMT
cache-control: public, max-age=86400, no-transform
etag: "vc"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size:   1695
Md5:    8c1475a78d2ff9000ff5545c5e38f93d
Sha1:   be72bdacfe5ce08a0ba20af9b146de371900a730
Sha256: 9a22965a691fc17a4b36e9147cd955bd0a16c0bf3dd4d200121f1fbfa9e5ffb9
                                        
                                            GET /pingjs/?k=xib8itrntaoj&t=Lirik%20Lagu%20Fantastic%20Adventure%20%E2%80%93%20Law%20%20Liyana%20Fizi&c=t&x=http%3A%2F%2Fzonfiniti.blogspot.com%2F2010%2F10%2Flirik-lagu-fantastic-adventure-law.html&y=&a=0&d=2.421&v=27&r=2756 HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/

search
                                         104.22.74.171
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7727fd362947991b-ARN


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   50
Md5:    41a41df903d089b3b1053192a8696491
Sha1:   26982d537cde538cedefe355b3003b4264db20f4
Sha256: eb73d3190b74021e666fe46ffebaf9262d2fabe6ec8f84c568206b7ccb61d171
                                        
                                            GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1669857507071&dn=TI&iso=0&img=http%3A%2F%2F2.bp.blogspot.com%2F-mi7z0X8BVmA%2FTh8kvimG4-I%2FAAAAAAAABF8%2Fb5FbjsCntPQ%2Fs400%2Fzonfiniti.jpg&t=Lirik%20Lagu%20Fantastic%20Adventure%20%E2%80%93%20Law%20%2F%20Liyana%20Fizi&cu=http%3A%2F%2Fzonfiniti.blogspot.com%2F2010%2F10%2Flirik-lagu-fantastic-adventure-law.html HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         67.202.105.31
HTTP/2 204 No Content
                                        
server: nginx/1.16.1
date: Thu, 01 Dec 2022 01:18:28 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:18:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-lgwI1kzO4iE/UO5k9Lk3wHI/AAAAAAAABhc/GIg0wkzv3bU/s45-c/127.JPG HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.65
HTTP/2 404 Not Found
content-type: image/png
                                        
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 01:18:29 GMT
server: fife
content-length: 904
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 45 x 45, 8-bit colormap, non-interlaced\012- data
Size:   904
Md5:    288ba721beee9352ca47b2a130423c86
Sha1:   5dd28e65cfc52620335ca1a10be532ed9e44ff14
Sha256: 6ee738d016e2e0d81bb5da04d1c97a4b33d9ec9f3bfc3cee450b33d1dd997cc4
                                        
                                            GET /deb/v2?id=cD2nk8enOr4kMCadbi-bnq&dn=TI&cc=1&r= HTTP/1.1 
Host: de.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         67.202.105.31
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 01:18:29 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-length: 4
date: Thu, 01 Dec 2022 01:18:28 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    350fd6ef6446635f7a8f608434a405ec
Sha1:   a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
Sha256: d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
                                        
                                            GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1669857507071&dn=TI&iso=0&img=http%3A%2F%2F2.bp.blogspot.com%2F-mi7z0X8BVmA%2FTh8kvimG4-I%2FAAAAAAAABF8%2Fb5FbjsCntPQ%2Fs400%2Fzonfiniti.jpg&t=Lirik%20Lagu%20Fantastic%20Adventure%20%E2%80%93%20Law%20%2F%20Liyana%20Fizi&cu=http%3A%2F%2Fzonfiniti.blogspot.com%2F2010%2F10%2Flirik-lagu-fantastic-adventure-law.html HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         67.202.105.31
HTTP/2 204 No Content
                                        
server: nginx/1.16.1
date: Thu, 01 Dec 2022 01:18:29 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /-76NCLxvkYNE/TXkTnutp1yI/AAAAAAAAAao/udEaud-h8EY/s45-c/saya.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.65
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="saya.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1642
x-xss-protection: 0
date: Thu, 01 Dec 2022 01:18:29 GMT
expires: Thu, 01 Dec 2022 00:09:48 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1aa"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size:   1642
Md5:    04b575137e8230f700cccd83098b8bdc
Sha1:   bb6c6bc9666a3644b5cf0445ea8fc6121afd908e
Sha256: 4837ea40886e9870f5c00fa8f16f04f529d22a9d21f35e122b2a86a47c3323cd
                                        
                                            GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1669857507071&dn=TI&iso=0&img=http%3A%2F%2F2.bp.blogspot.com%2F-mi7z0X8BVmA%2FTh8kvimG4-I%2FAAAAAAAABF8%2Fb5FbjsCntPQ%2Fs400%2Fzonfiniti.jpg&t=Lirik%20Lagu%20Fantastic%20Adventure%20%E2%80%93%20Law%20%2F%20Liyana%20Fizi HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         67.202.105.31
HTTP/2 204 No Content
                                        
server: nginx/1.16.1
date: Thu, 01 Dec 2022 01:18:29 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /-cVBZSD11hBQ/T4-pGJucH2I/AAAAAAAAACk/8zLsfnyWvqk/s45-c/images%25252B5.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.65
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="images%2B5.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2655
x-xss-protection: 0
date: Thu, 01 Dec 2022 01:18:29 GMT
expires: Wed, 30 Nov 2022 22:44:47 GMT
cache-control: public, max-age=86400, no-transform
etag: "v29"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size:   2655
Md5:    01a6d0a0e3bae10a9c2a028ed7ff7696
Sha1:   73f339e96aaeef759973fdc9c2a454fea7361cef
Sha256: da48e2a19e60d1c4979c5f29f3c3624cc53b8fd760dc6a7bd1ba5075683a9f59
                                        
                                            GET /-KnA7I-IWlec/UMqIxZ-JnQI/AAAAAAAABCg/yodsxYLrJDA/s45-c/Neko_dance_by_EternalNova.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.65
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v428"
expires: Fri, 02 Dec 2022 01:18:29 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Neko_dance_by_EternalNova.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 01:18:29 GMT
server: fife
content-length: 1441
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size:   1441
Md5:    b2e755489a30fc1c62a7e35c12ae751f
Sha1:   89a70cbe6f364c47a553bdb1786d388a9a1a48dc
Sha256: 365286f2525185561f2c9164fc0f5abfccc751461c2e0525ba043f6bfb50703d
                                        
                                            GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1669857507071&dn=TI&iso=0&img=http%3A%2F%2F2.bp.blogspot.com%2F-mi7z0X8BVmA%2FTh8kvimG4-I%2FAAAAAAAABF8%2Fb5FbjsCntPQ%2Fs400%2Fzonfiniti.jpg HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         67.202.105.31
HTTP/2 204 No Content
                                        
server: nginx/1.16.1
date: Thu, 01 Dec 2022 01:18:29 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1669857507071&dn=TI&iso=0&img=http%3A%2F%2F2.bp.blogspot.com%2F-mi7z0X8BVmA%2FTh8kvimG4-I%2FAAAAAAAABF8%2Fb5FbjsCntPQ%2Fs400%2Fzonfiniti.jpg HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         67.202.105.31
HTTP/2 204 No Content
                                        
server: nginx/1.16.1
date: Thu, 01 Dec 2022 01:18:29 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /snd/blip1.ogg HTTP/1.1 
Host: static.cbox.ws
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www5.cbox.ws/

search
                                         188.114.97.1
HTTP/1.1 206 Partial Content
Content-Type: application/octet-stream
                                        
Date: Thu, 01 Dec 2022 01:18:29 GMT
Content-Length: 5123
Connection: keep-alive
etag: "543fdde8-1403"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
CF-Cache-Status: HIT
Age: 39971850
Content-Range: bytes 0-5122/5123
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C62HyRFmyArid2eZRmz01nxXYa6XyDWxLfoQ6cY%2BfXAshYpzsg33D8PmKm52DX4lCaqYu%2BT1EI%2B8%2BOYlr%2B46ywJI718Kv2%2FGXn5NQpjx3AD4iilIWlo1RjLb0QcjNR70Jg%3D%3D"}],"group":"cf-nel","max_age":604800}