safehacking4mas.blogspot.in/search/label/Social%20Engineering
142.250.74.161302 Moved Temporarily 206 B URL HTTP/1.1 safehacking4mas.blogspot.in/search/label/Social%20Engineering
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 712a3f0206b08b887cb63d9618989510
f8923fd13d8b3f312e212910bfb13af059ae0f6e
6aed13265be22da76e93c10cd68f44b75e239a3d4c011810784b9b3b681324f5
Analyzer Verdict Alert fortinet Malware
GET /search/label/Social%20Engineering HTTP/1.1
Host: safehacking4mas.blogspot.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://safehacking4mas.blogspot.com/search/label/Social%20Engineering
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 03:46:02 GMT
Expires: Fri, 02 Dec 2022 03:46:02 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 206
Server: GSE
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4709
Expires: Fri, 02 Dec 2022 05:04:31 GMT
Date: Fri, 02 Dec 2022 03:46:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5641
Cache-Control: max-age=116351
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:02 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 12:05:13 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 03:18:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1672
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2627
Expires: Fri, 02 Dec 2022 04:29:49 GMT
Date: Fri, 02 Dec 2022 03:46:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fr9ZGBcxF83+yQM1CLbwuDqTVGmMyu+S31UgGum7ZP5lk5mMBGIyvHscYhOfkPRI80P3I4bNHkdpun8Ur9UtNg==
x-amz-request-id: A8ZA0QGYMK33QR5P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 02:46:32 GMT
age: 3570
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:46:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
safehacking4mas.blogspot.com/search/label/Social%20Engineering
142.250.74.161200 OK 26 kB URL HTTP/1.1 safehacking4mas.blogspot.com/search/label/Social%20Engineering
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (942)
Hash a364ff5d701d6c7bc856291f1df162a0
ae95ea76bb01307fbf2aee90a083c54b3d02ee83
2b6244fd1c9e808c8926fc64db1a1822b172e17c002c234e391f84b5548ba360
Analyzer Verdict Alert fortinet Malware
GET /search/label/Social%20Engineering HTTP/1.1
Host: safehacking4mas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 02 Dec 2022 03:46:02 GMT
Date: Fri, 02 Dec 2022 03:46:02 GMT
Cache-Control: private, max-age=0
Last-Modified: Fri, 11 Nov 2022 08:02:53 GMT
ETag: W/"b05c4b28883fc40f61ead17e088520283e9456413229e5b3e432ac6976ba291f"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 25653
Server: GSE
ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
142.250.74.170200 OK 30 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
IP 142.250.74.170:0
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash ebaa24930d6b905fe00c9457484b78a9
f97496ee81148e264b3735464b8bfced1a8b2fad
b9bd9830d7eceae230cfaa5105e8a3ec432392f270cee156637dac8d0684d614
GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30082
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 12:49:09 GMT
Expires: Fri, 01 Dec 2023 12:49:09 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 53814
hermanblog.googlecode.com/files/link_pelangi.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/1.1 hermanblog.googlecode.com/files/link_pelangi.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 4472585e8350ee28b3a7b647c704db06
da07647ba881bbdc784fbd9a4691a3bfd0a7af31
3318b95be33106af8f15f6e0def6ae4465e0d0c19f672289154d631f4f93c81f
GET /files/link_pelangi.js HTTP/1.1
Host: hermanblog.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1582
Date: Fri, 02 Dec 2022 03:46:03 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 03:11:15 GMT
cache-control: public,max-age=3600
age: 2088
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:47:53 GMT
expires: Wed, 29 Nov 2023 21:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 29 Nov 2022 20:52:41 GMT
content-type: text/css
age: 194290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.4.1/jquery.min.js
142.250.74.170200 OK 24 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.4.1/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (833)
Hash 0abe559b44ad75a1142a42afaad9568c
164f6f47f7cfc82155691d4e31d908a0e93a799f
d33e5a1bb8bd201d8daf58a81da88d07d63c484a1cdaff1bd2d46dc90ab73a80
GET /ajax/libs/jquery/1.4.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 24177
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 21:09:32 GMT
Expires: Wed, 29 Nov 2023 21:09:32 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 196591
www.widgeo.net/message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise
104.26.11.22200 OK 2.1 kB URL HTTP/1.1 www.widgeo.net/message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise
IP 104.26.11.22:0
File type ASCII text, with very long lines (2149)
Hash df8fcf24d07d5f6ce70941347d76b6a9
287090f666cb9dee196eeec1885d24f49efc2ff8
de2814eb9fd6f406597343c56b2647257fdcfb20ffbf481696b49ad52ed74c9a
GET /message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
set-cookie: monpays=no; expires=Thu, 02-Mar-2023 03:46:01 GMT; Max-Age=7776000; path=/
cache-control: public, max-age=180
expires: Fri, 02 Dec 2022 03:49:01 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5xucxj%2FYWJ7FuJhzcuuxSIyIswf%2FVaEql6KxkoC2JtTcz5Y4y88RR252kUtXGepCKwC3rLsaiKNwaw2nIY8IEZR0wWFly%2B5qnhnWksK2uH4yJISH53FUabV7wd8lEpTc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 773112c1788e0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
safehacking4mas.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 safehacking4mas.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: safehacking4mas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/search/label/Social%20Engineering
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Fri, 02 Dec 2022 03:46:03 GMT
Expires: Fri, 09 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 01 Dec 2022 20:55:55 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 252154
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
hermanblog.googlecode.com/files/link_pelangi.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/1.1 hermanblog.googlecode.com/files/link_pelangi.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 4472585e8350ee28b3a7b647c704db06
da07647ba881bbdc784fbd9a4691a3bfd0a7af31
3318b95be33106af8f15f6e0def6ae4465e0d0c19f672289154d631f4f93c81f
GET /files/link_pelangi.js HTTP/1.1
Host: hermanblog.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1582
Date: Fri, 02 Dec 2022 03:46:03 GMT
img2.blogblog.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/1.1 img2.blogblog.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: img2.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 13:44:53 GMT
Expires: Tue, 06 Dec 2022 13:44:53 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 06:52:50 GMT
Content-Type: image/gif
Age: 223270
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Fri, 02 Dec 2022 03:46:03 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
connect.facebook.net/en_US/all.js
157.240.240.1301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 157.240.240.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 02 Dec 2022 03:46:03 GMT
Connection: keep-alive
Content-Length: 0
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116388 bytes)
Hash fef08c9f8bacc1b0eed3950dbe7d0f87
e9a3b98cad1e2d58eab1e2cbaa51cb979dc45075
55b3d5b3acd46444cc1844a676c75ba25209ce371065791cd4fbdc9da60aea34
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116388
date: Fri, 02 Dec 2022 03:46:03 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/geocompteur.php?c=geoiphone&id=2194072&adult=0&cat=informatique&fonce=&claire=
104.26.11.22200 OK 2.0 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocompteur.php?c=geoiphone&id=2194072&adult=0&cat=informatique&fonce=&claire=
IP 104.26.11.22:0
File type ASCII text, with very long lines (2149)
Hash f2c43d06e34c98372b49dcd80bdfa1e9
c642bd763895914f8bdea089f23dbaa9ed6c07a2
899bbd7848da31e3c17065c5b44733f3975d01094ff0bceeef3bc1b60199261d
GET /geocompteur/geocompteur.php?c=geoiphone&id=2194072&adult=0&cat=informatique&fonce=&claire= HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:03 GMT
Content-Type: application/javascript
Content-Length: 2027
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Thu, 08-Dec-2022 03:46:02 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 03:46:01 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tQnegNwYDrkdKAbnY%2Bu2PNEil%2BVmqH2lyFYwojlVmgp2FA0XawdBW%2BpI6KHTD73JO74eX5Orxh6lDi8diwtKPx3rwB55gAemEE0AizL%2BIKbyKeiqiF5SAXMrlwVJV5IY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 773112c258500b61-OSL
alt-svc: h2=":443"; ma=60
4.bp.blogspot.com/-1DKfnYf_pVI/Tf8seJfGGPI/AAAAAAAAAQ8/LZtT-Tv3Po4/s150/home.png
142.250.74.161200 OK 12 kB URL HTTP/1.1 4.bp.blogspot.com/-1DKfnYf_pVI/Tf8seJfGGPI/AAAAAAAAAQ8/LZtT-Tv3Po4/s150/home.png
IP 142.250.74.161:0
File type PNG image data, 100 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash a671953ad07c2204aefddb273e8b336b
220c4c130974e43fe80c4e3b1a9fa08ca6ccf020
d247e4145bdaf6f2514fe96cd23291129bdcfbcebe611aa96607662a820bfcdc
GET /-1DKfnYf_pVI/Tf8seJfGGPI/AAAAAAAAAQ8/LZtT-Tv3Po4/s150/home.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v10f"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="home.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 11757
X-XSS-Protection: 0
www.widgeo.net/message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise
104.26.11.22200 OK 2.1 kB URL HTTP/1.1 www.widgeo.net/message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise
IP 104.26.11.22:0
File type ASCII text, with very long lines (2149)
Hash df8fcf24d07d5f6ce70941347d76b6a9
287090f666cb9dee196eeec1885d24f49efc2ff8
de2814eb9fd6f406597343c56b2647257fdcfb20ffbf481696b49ad52ed74c9a
GET /message.php?msg=%20%20%20SAFE%20HACKING%20%20&adult=0&cat=informatique&big=big&cl=sunrise HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
set-cookie: monpays=no; expires=Thu, 02-Mar-2023 03:46:02 GMT; Max-Age=7776000; path=/
cache-control: public, max-age=180
expires: Fri, 02 Dec 2022 03:49:02 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t8%2FOkZG2Pj3W0YK3SydiqVekiF9yD3iC9nguxgdnN8hKnBeiVGEEjapbnn5Qgw8163HaJMXCPuVgExlLt68XbwQdNVxp3Dd5M9TuNycWmc6ddC33ZJ%2FZeyPXgOs8YKZY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 773112c2f8f90b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.blogger.com/img/share_buttons_20_3.png
216.58.207.233200 OK 5.1 kB URL HTTP/2 www.blogger.com/img/share_buttons_20_3.png
IP 216.58.207.233:0
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:28:12 GMT
expires: Tue, 06 Dec 2022 17:28:12 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 14:52:29 GMT
content-type: image/png
age: 209871
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s3.ongsono.com/images/raise_page_rank.jpg
104.21.3.145200 OK 1.1 kB URL HTTP/1.1 s3.ongsono.com/images/raise_page_rank.jpg
IP 104.21.3.145:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 80x15, components 3\012- data
Hash 477f186c67fb1270715ea32e5ed90db2
8d4b27557b6bb42fc5bc4a5d791ea6023085721d
e0533cc822b133801e8d9f854bec4dc4edbe207ad35ef3aa2a233d1a8ae6bd1a
GET /images/raise_page_rank.jpg HTTP/1.1
Host: s3.ongsono.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:03 GMT
Content-Type: image/jpeg
Content-Length: 1093
Connection: keep-alive
Last-Modified: Mon, 27 Jul 2020 07:33:03 GMT
ETag: "5f1e832f-445"
Expires: Tue, 20 Dec 2022 00:03:51 GMT
Cache-Control: public, max-age=2592000
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iUSRdhNLy%2BFq1nd1No8BlLXU7Qn4zhtoY0gboZTIMSoZbyIIeWprRIdsVzENIvnCxNthlJuRMTRdlWkPsy6atryt%2FfO3P%2FC6Bulo6qMEvGyA52SXEetcKHwFtfEGYja8yw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773112c33eef0b31-OSL
alt-svc: h2=":443"; ma=60
2.bp.blogspot.com/-5O2pT0gXfU4/UinHHQH2PrI/AAAAAAAABP8/uooIkABv2KI/s640/5.png
142.250.74.161200 OK 159 kB URL HTTP/1.1 2.bp.blogspot.com/-5O2pT0gXfU4/UinHHQH2PrI/AAAAAAAABP8/uooIkABv2KI/s640/5.png
IP 142.250.74.161:0
File type PNG image data, 640 x 389, 8-bit/color RGB, non-interlaced\012- data
Size 159 kB (159036 bytes)
Hash c8895e10d8c602bf97b3825d8b63d230
467dfbc8159722c989e9565889f4eeac7acd9c26
87199164c7b00393bcede5be1354b6a62cddb0073ff36fa0a2ca19453ea7ea23
GET /-5O2pT0gXfU4/UinHHQH2PrI/AAAAAAAABP8/uooIkABv2KI/s640/5.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v500"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 159036
X-XSS-Protection: 0
storage.myfreecopyright.com/mfc_protected.png
52.218.220.83403 Forbidden 243 B URL HTTP/1.1 storage.myfreecopyright.com/mfc_protected.png
IP 52.218.220.83:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 290333cf8c4e824d9e4af3e8a15d7158
5622b0ac12d66e55a9ee2b74fdc8213f939b0c92
e865b26d3171f00a3d6afa6f7baecb476c770c733ef9079dfad5c0e8d70d5875
GET /mfc_protected.png HTTP/1.1
Host: storage.myfreecopyright.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 403 Forbidden
x-amz-request-id: GNTS78VNQ4Z1132M
x-amz-id-2: RxdhhvXJcJAZDKqPau3tSpYTsh3vP1CxZk0quKX9kawEQ4o207dzuXvHnn41kv+pW+OrP0X1b78=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Fri, 02 Dec 2022 03:46:02 GMT
Server: AmazonS3
3.bp.blogspot.com/-tcxsl8O68E4/Uilsw4UNbAI/AAAAAAAABNU/WQ5Ko_ZUVRM/s640/14.png
142.250.74.161200 OK 163 kB URL HTTP/1.1 3.bp.blogspot.com/-tcxsl8O68E4/Uilsw4UNbAI/AAAAAAAABNU/WQ5Ko_ZUVRM/s640/14.png
IP 142.250.74.161:0
File type PNG image data, 640 x 399, 8-bit/color RGB, non-interlaced\012- data
Size 163 kB (163222 bytes)
Hash fdd634c5526db32ce483dcdebabb5eba
c08963b7e093e5c1b614e463aac86225c53b868c
0e41ab6986749ff8fafc2b54a5e7423aeffd11d01260939c711226f3068ed5f8
GET /-tcxsl8O68E4/Uilsw4UNbAI/AAAAAAAABNU/WQ5Ko_ZUVRM/s640/14.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4d6"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="14.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 163222
X-XSS-Protection: 0
2.bp.blogspot.com/-eOY_zoG8k7g/UinGueshV7I/AAAAAAAABPU/yul8d-MlJek/s640/11.png
142.250.74.161200 OK 145 kB URL HTTP/1.1 2.bp.blogspot.com/-eOY_zoG8k7g/UinGueshV7I/AAAAAAAABPU/yul8d-MlJek/s640/11.png
IP 142.250.74.161:0
File type PNG image data, 640 x 365, 8-bit/color RGB, non-interlaced\012- data
Size 145 kB (145405 bytes)
Hash fbe9149fed96466937d94b4f7d6233dd
75f6c477c9e71c297efee35d538ed03770aef799
0b7908424d87c4f2b29eef57ec43eb35e498b99807c8106fe1a749e89462d18d
GET /-eOY_zoG8k7g/UinGueshV7I/AAAAAAAABPU/yul8d-MlJek/s640/11.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4f6"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="11.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 145405
X-XSS-Protection: 0
3.bp.blogspot.com/-Nv27Fhz2pxg/UiWgzEnsi3I/AAAAAAAABMM/HpYEkcHeRKQ/s640/5.png
142.250.74.161200 OK 233 kB URL HTTP/1.1 3.bp.blogspot.com/-Nv27Fhz2pxg/UiWgzEnsi3I/AAAAAAAABMM/HpYEkcHeRKQ/s640/5.png
IP 142.250.74.161:0
File type PNG image data, 640 x 433, 8-bit/color RGB, non-interlaced\012- data
Size 233 kB (232701 bytes)
Hash 890ece55705675247037d07865dd05b2
0396a64f54bb1c5e38f43b0f4c227169629181c9
efe4181e7c8f58496022c987c5d6f109d6fc13be3db4561e78b463bb054099e8
GET /-Nv27Fhz2pxg/UiWgzEnsi3I/AAAAAAAABMM/HpYEkcHeRKQ/s640/5.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4c4"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 232701
X-XSS-Protection: 0
pics7.inxhost.com/images/sticker.gif
162.220.14.208200 OK 254 B URL HTTP/1.1 pics7.inxhost.com/images/sticker.gif
IP 162.220.14.208:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type GIF image data, version 89a, 80 x 15\012- data
Hash fd663b51cdc02b70c33133efbe3b0901
de9c6a8a8605dab62a85e917a8c6dce785753727
c834eb6baafb55eb3befeb03423e38d8488bba1c37aa190e8b81e2acd249157f
GET /images/sticker.gif HTTP/1.1
Host: pics7.inxhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "614701747"
Last-Modified: Sun, 27 Nov 2022 01:36:42 GMT
Content-Length: 254
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: Microsoft-IIS/8.5
3.bp.blogspot.com/-XnvlvOZ_SHA/Uils7uXM3_I/AAAAAAAABNc/KyNH0zPT_go/s640/15.png
142.250.74.161200 OK 176 kB URL HTTP/1.1 3.bp.blogspot.com/-XnvlvOZ_SHA/Uils7uXM3_I/AAAAAAAABNc/KyNH0zPT_go/s640/15.png
IP 142.250.74.161:0
File type PNG image data, 640 x 403, 8-bit/color RGB, non-interlaced\012- data
Size 176 kB (175693 bytes)
Hash add52bc20f1de8f486e1e8f5ee93f4dc
c59d55075e7124ac9c68878301f660576c0db5a1
3edd66de3af6635fbe3a78f3edf971d6cb43557433acf7e72e5d39453900a5f4
GET /-XnvlvOZ_SHA/Uils7uXM3_I/AAAAAAAABNc/KyNH0zPT_go/s640/15.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4d8"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="15.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 175693
X-XSS-Protection: 0
2.bp.blogspot.com/-5kSzZazUEkk/UiWgwsBAS-I/AAAAAAAABME/MaHTgDCJgoc/s640/7.png
142.250.74.161200 OK 145 kB URL HTTP/1.1 2.bp.blogspot.com/-5kSzZazUEkk/UiWgwsBAS-I/AAAAAAAABME/MaHTgDCJgoc/s640/7.png
IP 142.250.74.161:0
File type PNG image data, 640 x 304, 8-bit/color RGB, non-interlaced\012- data
Size 145 kB (145101 bytes)
Hash 4e2447648706a77f6aac66c9bf0ad1ce
436c16976271fba86e7866122884cd794ca98f64
8e5c262f229b8d7edf7d5499a9abbc31490072e7a159e64b7e8f79844fa0af46
GET /-5kSzZazUEkk/UiWgwsBAS-I/AAAAAAAABME/MaHTgDCJgoc/s640/7.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4c2"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 145101
X-XSS-Protection: 0
www.widgeo.net/img/logopm.png
104.26.11.22200 OK 847 B URL HTTP/1.1 www.widgeo.net/img/logopm.png
IP 104.26.11.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e34866014e9f89c5e2266c093c1f757
a5cbf8aec733f3d476d47db2d7d2f9784130d8b8
f6ce56e3b22a6957c54d515a96d4b653982bdbe0fd7e3685a95a80cfddd30b65
GET /img/logopm.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:03 GMT
Content-Type: image/png
Content-Length: 847
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Sun, 01 Jan 2023 03:46:02 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TArIhrZHQrW1UQTqspDtilAS1DW6mSGSwWkGMgWMOXss8C6xpJzwX0Moouj0hT0rrulv%2FYt4TB1b%2BwYGfDHTJuk7LatcrmC%2FZVAHuyNlX5%2B2t2yWe%2BB0RkjIu7qrPVcJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773112c458e30b61-OSL
alt-svc: h2=":443"; ma=60
2.bp.blogspot.com/-6j9FjGyV1GQ/Uilteb_39oI/AAAAAAAABOU/341RK0GVQrM/s640/8.png
142.250.74.161200 OK 156 kB URL HTTP/1.1 2.bp.blogspot.com/-6j9FjGyV1GQ/Uilteb_39oI/AAAAAAAABOU/341RK0GVQrM/s640/8.png
IP 142.250.74.161:0
File type PNG image data, 640 x 323, 8-bit/color RGB, non-interlaced\012- data
Size 156 kB (155733 bytes)
Hash 48d130e60d27d682103ce596e94c8a67
a0ad2058c9bf82cee058e3ace68e79a4899056fa
404f4ba1d43fa569047cb5cc8816f6e05a7a247ec46bbd5235097fcaabd66686
GET /-6j9FjGyV1GQ/Uilteb_39oI/AAAAAAAABOU/341RK0GVQrM/s640/8.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e6"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="8.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 155733
X-XSS-Protection: 0
2.bp.blogspot.com/-yO6UNFtH67s/UiWg9q5HiBI/AAAAAAAABMc/-3iWmS-zShs/s640/8.png
142.250.74.161200 OK 167 kB URL HTTP/1.1 2.bp.blogspot.com/-yO6UNFtH67s/UiWg9q5HiBI/AAAAAAAABMc/-3iWmS-zShs/s640/8.png
IP 142.250.74.161:0
File type PNG image data, 640 x 304, 8-bit/color RGB, non-interlaced\012- data
Size 167 kB (167241 bytes)
Hash 8c365aa42379c6da28e0ddc06672e158
8bf0b05bf2e4f70702c5eeb31af5a5a63b7b9d94
e99a68888c578f3aed85adc7e41bb4c2706ec44a60255c94ea166ed6d52ae61b
GET /-yO6UNFtH67s/UiWg9q5HiBI/AAAAAAAABMc/-3iWmS-zShs/s640/8.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4c8"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="8.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 167241
X-XSS-Protection: 0
3.bp.blogspot.com/-tITV9QFpepQ/UiWglaOe9sI/AAAAAAAABL0/ofR23cMXLds/s640/4.png
142.250.74.161200 OK 184 kB URL HTTP/1.1 3.bp.blogspot.com/-tITV9QFpepQ/UiWglaOe9sI/AAAAAAAABL0/ofR23cMXLds/s640/4.png
IP 142.250.74.161:0
File type PNG image data, 640 x 434, 8-bit/color RGB, non-interlaced\012- data
Size 184 kB (183716 bytes)
Hash 8071eef77c83ed7b9fb24ccd6d15cf27
410f7d3882b48d9a39897758e6d02b04b217a5e9
f93b5d453326fde3ab90195c78f014f5c4a5eacb6bf270ce2b0e40a51a92a052
GET /-tITV9QFpepQ/UiWglaOe9sI/AAAAAAAABL0/ofR23cMXLds/s640/4.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4be"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 183716
X-XSS-Protection: 0
3.bp.blogspot.com/-0qD3K-SKj1A/UiWggASDISI/AAAAAAAABLk/GRKm_tin7HA/s640/2.png
142.250.74.161200 OK 164 kB URL HTTP/1.1 3.bp.blogspot.com/-0qD3K-SKj1A/UiWggASDISI/AAAAAAAABLk/GRKm_tin7HA/s640/2.png
IP 142.250.74.161:0
File type PNG image data, 640 x 437, 8-bit/color RGB, non-interlaced\012- data
Size 164 kB (164521 bytes)
Hash e9b40c02cbb20ef266a7b2ea65d9f3bb
39f747c9cb07240dbee50ba801e9d6da5c332050
cadf777892be27e4dc770ced14c10759919d053579e3daa74b9402bfd53ce259
GET /-0qD3K-SKj1A/UiWggASDISI/AAAAAAAABLk/GRKm_tin7HA/s640/2.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4ba"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 164521
X-XSS-Protection: 0
3.bp.blogspot.com/-_WhY9dV9lJs/UiWfrzaBZjI/AAAAAAAABKU/0el7pWkTHBc/s640/1.png
142.250.74.161200 OK 91 kB URL HTTP/1.1 3.bp.blogspot.com/-_WhY9dV9lJs/UiWfrzaBZjI/AAAAAAAABKU/0el7pWkTHBc/s640/1.png
IP 142.250.74.161:0
File type PNG image data, 640 x 293, 8-bit/color RGB, non-interlaced\012- data
Hash 81fd8ef59a2c9d8e1ca6301a3c31015c
3e101a927fa4353aa6110652279822f2963e5b50
a704851b8e5ef29fa9a6aa92e302292b51b3c8317425b23d667a02bcdbcc10d6
GET /-_WhY9dV9lJs/UiWfrzaBZjI/AAAAAAAABKU/0el7pWkTHBc/s640/1.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4a6"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 91032
X-XSS-Protection: 0
s3.ongsono.com/show_ip_address.php
104.21.3.145200 OK 0 B URL HTTP/1.1 s3.ongsono.com/show_ip_address.php
IP 104.21.3.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /show_ip_address.php HTTP/1.1
Host: s3.ongsono.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:03 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Expires: Fri, 02 Dec 2022 15:46:03 GMT
Cache-Control: public
Last-Modified: Fri, 02 Dec 2022 03:46:03 GMT
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bZPxOQWu7MWmHDcidmaU6xutepsuwIXI%2FjtThc8sBSNIZLvGI038UAfTsMWHEWgg0XOraeGI6XTPmgMDNE2OeVT0qw4zSKuVpnFHfUWWzo4y8hYPv8aO%2FgCZQfd9q2eDZw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 773112c468d4b505-OSL
alt-svc: h2=":443"; ma=60
4.bp.blogspot.com/-B3ztVrubu3E/UjLY0zIimTI/AAAAAAAABV0/rNi2_UDjwpE/s640/8.png
142.250.74.161200 OK 99 kB URL HTTP/1.1 4.bp.blogspot.com/-B3ztVrubu3E/UjLY0zIimTI/AAAAAAAABV0/rNi2_UDjwpE/s640/8.png
IP 142.250.74.161:0
File type PNG image data, 640 x 453, 8-bit/color RGB, non-interlaced\012- data
Hash 8230b48d796f6df031cd7bcc3c3625bb
ca7ba38bf24eb2742aa220460c4e50ec89871ea4
449f04736e0f4e17d001cc20eb6a0d7a77500b29484a3e726d6d273c0cd9494b
GET /-B3ztVrubu3E/UjLY0zIimTI/AAAAAAAABV0/rNi2_UDjwpE/s640/8.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v55e"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="8.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 99143
X-XSS-Protection: 0
2.bp.blogspot.com/-10v0AUDhzkM/UjLYIQFKveI/AAAAAAAABVU/Q_seMzbNNVg/s640/3.png
142.250.74.161200 OK 294 kB URL HTTP/1.1 2.bp.blogspot.com/-10v0AUDhzkM/UjLYIQFKveI/AAAAAAAABVU/Q_seMzbNNVg/s640/3.png
IP 142.250.74.161:0
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 294 kB (294192 bytes)
Hash 1848d96923c82284bea1ddc969e855e5
a497f1bea81a6d02ac7ff0f10ea5ec07e2643e20
480c7ad5fb208bba1854487f1d6352df323c44f89bfae2be42f78d64a24e0a2e
GET /-10v0AUDhzkM/UjLYIQFKveI/AAAAAAAABVU/Q_seMzbNNVg/s640/3.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v556"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 294192
X-XSS-Protection: 0
4.bp.blogspot.com/-PBl5cdEMEe8/UinHT-pdsiI/AAAAAAAABQY/7LJ-aCCJioI/s640/6.png
142.250.74.161200 OK 176 kB URL HTTP/1.1 4.bp.blogspot.com/-PBl5cdEMEe8/UinHT-pdsiI/AAAAAAAABQY/7LJ-aCCJioI/s640/6.png
IP 142.250.74.161:0
File type PNG image data, 640 x 389, 8-bit/color RGB, non-interlaced\012- data
Size 176 kB (175685 bytes)
Hash 845543b02ce6b09db090cc45c69e7e54
74be63c849b2691986e4f3b0c00458f89b03e444
5a75ca507180c885538814761928a86b378ad5fcdc6c8ea4cdd700a66d9f4752
GET /-PBl5cdEMEe8/UinHT-pdsiI/AAAAAAAABQY/7LJ-aCCJioI/s640/6.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v508"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="6.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 175685
X-XSS-Protection: 0
4.bp.blogspot.com/-W2kFJCJW9Yc/UiltHuOqMTI/AAAAAAAABN0/ZlCsknHb5qw/s640/4.png
142.250.74.161200 OK 189 kB URL HTTP/1.1 4.bp.blogspot.com/-W2kFJCJW9Yc/UiltHuOqMTI/AAAAAAAABN0/ZlCsknHb5qw/s640/4.png
IP 142.250.74.161:0
File type PNG image data, 640 x 430, 8-bit/color RGB, non-interlaced\012- data
Size 189 kB (189014 bytes)
Hash 5b62136ff00e678e3d5af33546516e33
2ab5e030903e3c660971f8513fba76c33994fe5d
abca9d80b472a318f156e2636412af48a997a231cf7a7ae71861657ecad92f88
GET /-W2kFJCJW9Yc/UiltHuOqMTI/AAAAAAAABN0/ZlCsknHb5qw/s640/4.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4de"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 189014
X-XSS-Protection: 0
www.blogger.com/dyn-css/authorization.css?targetBlogID=6105040037749415494&zx=e2e6b0bc-2b0d-4b5b-a31b-bf03e551e605
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=6105040037749415494&zx=e2e6b0bc-2b0d-4b5b-a31b-bf03e551e605
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=6105040037749415494&zx=e2e6b0bc-2b0d-4b5b-a31b-bf03e551e605 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 03:46:03 GMT
last-modified: Fri, 02 Dec 2022 03:46:03 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-lsSVhPhq18g/UinHDzKiYQI/AAAAAAAABP0/dQicuUlEBZo/s640/3.png
142.250.74.161200 OK 150 kB URL HTTP/1.1 1.bp.blogspot.com/-lsSVhPhq18g/UinHDzKiYQI/AAAAAAAABP0/dQicuUlEBZo/s640/3.png
IP 142.250.74.161:0
File type PNG image data, 640 x 432, 8-bit/color RGB, non-interlaced\012- data
Size 150 kB (149845 bytes)
Hash a8dd9e27a5d9aee0e6eb7c083bc728ac
55e6367333ebb22a7485ef6972b25d382eab81cd
4aae84e8a5553d5d2da0e333a079674f8f889909b9e3bd66559d7971bbf242f3
GET /-lsSVhPhq18g/UinHDzKiYQI/AAAAAAAABP0/dQicuUlEBZo/s640/3.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4fe"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 149845
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5638
Cache-Control: max-age=111284
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:03 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:40:47 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0c418a5bc285d3b90a530fa83a523eb0
56684bd1424ffea9231dc1d656fcb16145797dc3
65ba7358d48a889546dd310973f8bc8855db01ef53c6d3861791fec926dc8395
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab66815736b3f17344f988cafe5c17e6
648f92ae0805f05f819c6d4df596ae69f6b4d2d5
acb18f4c864114e7b86945b5953015e9710d1a878dba4d912b9edb7885ff5775
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
216.58.207.238200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 02 Dec 2022 03:46:03 GMT
expires: Fri, 02 Dec 2022 03:46:03 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-_CcFEMyjyFk/UjKtJRlDWVI/AAAAAAAABTE/bOMumKEqu4g/s640/6.png
142.250.74.161200 OK 226 kB URL HTTP/1.1 1.bp.blogspot.com/-_CcFEMyjyFk/UjKtJRlDWVI/AAAAAAAABTE/bOMumKEqu4g/s640/6.png
IP 142.250.74.161:0
File type PNG image data, 640 x 300, 8-bit/color RGB, non-interlaced\012- data
Size 226 kB (226211 bytes)
Hash 35890a42e96f21a17abc3cc07f1793b0
cb9143b961f8a8c21492cfe14fa6f277d63f24d5
eb2ec841b2a4b35538e31c1f16efb101e2ce2be1917d9375dcac423843bf222a
GET /-_CcFEMyjyFk/UjKtJRlDWVI/AAAAAAAABTE/bOMumKEqu4g/s640/6.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v531"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="6.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 226211
X-XSS-Protection: 0
blogblog.com/1kt/travel/bg_black_70.png
142.250.74.41301 Moved Permanently 247 B URL HTTP/1.1 blogblog.com/1kt/travel/bg_black_70.png
IP 142.250.74.41:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9ee12c3b3131aca9f7501ad3ab6e948c
d1854e0127339d8af2c58a9f4cf1dcbb748cab3e
cd0cf8c6eb88093f351e6dca3e7f13b09144c7dfbd566f1d9cfcd7d189a7d55c
GET /1kt/travel/bg_black_70.png HTTP/1.1
Host: blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: http://www.blogblog.com/1kt/travel/bg_black_70.png
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 247
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 03:38:25 GMT
Expires: Fri, 02 Dec 2022 04:08:25 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 459
1.bp.blogspot.com/-s095Dxf_vrQ/UiWgicS7GfI/AAAAAAAABLs/U4RA6rsGmpU/s640/3.png
142.250.74.161200 OK 186 kB URL HTTP/1.1 1.bp.blogspot.com/-s095Dxf_vrQ/UiWgicS7GfI/AAAAAAAABLs/U4RA6rsGmpU/s640/3.png
IP 142.250.74.161:0
File type PNG image data, 640 x 439, 8-bit/color RGB, non-interlaced\012- data
Size 186 kB (186069 bytes)
Hash a586d624631f8e77876bfff0486e2a85
962a1cc0657b3ebded987cc1cf006e74b35a3d2f
07dbd983544510d0371d24be32170366ca1afa6b2bc0f606828551716596f564
GET /-s095Dxf_vrQ/UiWgicS7GfI/AAAAAAAABLs/U4RA6rsGmpU/s640/3.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4bc"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 186069
X-XSS-Protection: 0
4.bp.blogspot.com/-xKhdp_tcYJ4/UjKsfveYs3I/AAAAAAAABSY/FzQJ7ZFEKbc/s640/2.png
142.250.74.161200 OK 299 kB URL HTTP/1.1 4.bp.blogspot.com/-xKhdp_tcYJ4/UjKsfveYs3I/AAAAAAAABSY/FzQJ7ZFEKbc/s640/2.png
IP 142.250.74.161:0
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 299 kB (299394 bytes)
Hash 2012e6c40d3eacbd1dc43dacfd8e25a3
7538452d08091165262f708144b16ce7df77cb84
3f8c9c5780e98f9a95f384cc8647df2e2f4f2bf5ced921e6e31553d07b704f7d
GET /-xKhdp_tcYJ4/UjKsfveYs3I/AAAAAAAABSY/FzQJ7ZFEKbc/s640/2.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v526"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 299394
X-XSS-Protection: 0
themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
142.250.74.97301 Moved Permanently 0 B URL HTTP/1.1 themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
IP 142.250.74.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 02 Dec 2022 03:46:04 GMT
Location: https://themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
1.bp.blogspot.com/-_I341eV0nog/UinGp0qiWAI/AAAAAAAABPM/p3PPc-iMsfQ/s640/1.png
142.250.74.161200 OK 153 kB URL HTTP/1.1 1.bp.blogspot.com/-_I341eV0nog/UinGp0qiWAI/AAAAAAAABPM/p3PPc-iMsfQ/s640/1.png
IP 142.250.74.161:0
File type PNG image data, 640 x 431, 8-bit/color RGB, non-interlaced\012- data
Size 153 kB (153060 bytes)
Hash 9a50b77a2c1aaad6fb42289ff4f7a411
5daa8ef9c4b0de986e4498b836d76a8c0c3b0f94
973cf9359b0ac5b2b29342c95e637ba998da72c331479f96b445bccd00ef1aae
GET /-_I341eV0nog/UinGp0qiWAI/AAAAAAAABPM/p3PPc-iMsfQ/s640/1.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4f4"
Expires: Sat, 03 Dec 2022 03:46:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:03 GMT
Server: fife
Content-Length: 153060
X-XSS-Protection: 0
www.blogblog.com/1kt/travel/bg_black_50.png
216.58.207.233200 OK 83 B URL HTTP/1.1 www.blogblog.com/1kt/travel/bg_black_50.png
IP 216.58.207.233:0
File type PNG image data, 5 x 5, 8-bit/color RGBA, interlaced\012- data
Hash f7417b83fa976977f788364905aa5dd7
a6ede06565a88ef03ca33ad1b40a3c43e6c7f91f
8ad5d8cd8999e56275e12e5a5325b108bd15146fefe072af726fffecfe6ab862
GET /1kt/travel/bg_black_50.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 83
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 09:36:53 GMT
Expires: Wed, 07 Dec 2022 09:36:53 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 20:52:41 GMT
Content-Type: image/png
Age: 151751
fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2
216.58.207.227200 OK 20 kB URL HTTP/1.1 fonts.gstatic.com/s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 19920, version 1.0\012- data
Hash 754c4def845e64948e4e2db385078c00
49365281be547c02a001fb7909cdfad1ba518afe
5fb894030e4ade4d9f76ede985bc96d468bcb923fcd4b908a5d8e38178819dc4
GET /s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 19920
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 06:48:14 GMT
Expires: Sat, 25 Nov 2023 06:48:14 GMT
Cache-Control: public, max-age=31536000
Age: 593870
Last-Modified: Tue, 19 Apr 2022 19:00:30 GMT
Content-Type: font/woff2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2686
Cache-Control: max-age=160916
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 00:28:00 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.blogblog.com/1kt/travel/bg_black_70.png
216.58.207.233200 OK 84 B URL HTTP/1.1 www.blogblog.com/1kt/travel/bg_black_70.png
IP 216.58.207.233:0
File type PNG image data, 5 x 5, 8-bit/color RGBA, interlaced\012- data
Hash 4fc6c14642616095c0b1c90baa826951
25cacf250fad4290661fe8849069769f4eb40aba
4f01951293a11116b89b6e19f70cb9b72b2e3a68b2005c75d1d9b8e7b85eb35a
GET /1kt/travel/bg_black_70.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 84
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 08:28:03 GMT
Expires: Tue, 06 Dec 2022 08:28:03 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 17:52:28 GMT
Content-Type: image/png
Age: 242281
1.bp.blogspot.com/-UEBLlopQ5RE/UjKtGzYwIJI/AAAAAAAABTA/gKtOJ-fa_d8/s640/7.png
142.250.74.161200 OK 236 kB URL HTTP/1.1 1.bp.blogspot.com/-UEBLlopQ5RE/UjKtGzYwIJI/AAAAAAAABTA/gKtOJ-fa_d8/s640/7.png
IP 142.250.74.161:0
File type PNG image data, 640 x 311, 8-bit/color RGB, non-interlaced\012- data
Size 236 kB (236256 bytes)
Hash 42435b7ea3a37c12c8074e8fb98c6e55
13dbc05e873eb3e0750408f320d181feb3907e37
a7af4d632c81230a8432adefed91f39d8752628526669644c09e4d8d8761b0d9
GET /-UEBLlopQ5RE/UjKtGzYwIJI/AAAAAAAABTA/gKtOJ-fa_d8/s640/7.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v530"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 236256
X-XSS-Protection: 0
4.bp.blogspot.com/-YMw0si3qJuM/UjLX6DY5sJI/AAAAAAAABVM/C8W8F4tQifs/s640/2.png
142.250.74.161200 OK 299 kB URL HTTP/1.1 4.bp.blogspot.com/-YMw0si3qJuM/UjLX6DY5sJI/AAAAAAAABVM/C8W8F4tQifs/s640/2.png
IP 142.250.74.161:0
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 299 kB (299394 bytes)
Hash 2012e6c40d3eacbd1dc43dacfd8e25a3
7538452d08091165262f708144b16ce7df77cb84
3f8c9c5780e98f9a95f384cc8647df2e2f4f2bf5ced921e6e31553d07b704f7d
GET /-YMw0si3qJuM/UjLX6DY5sJI/AAAAAAAABVM/C8W8F4tQifs/s640/2.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v554"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 299394
X-XSS-Protection: 0
connect.facebook.net/en_US/all.js
157.240.240.1200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (1957)
Hash 070c4ff7889abcf8e16ebfb15c3f38fa
75cf909a349a0bf2df6ea7086e3912224a841482
1ffbba46bb47a58cb62c34ca264bd07b357dcf08c85f63ba54691b5564429c3f
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: cedf9ebf7fbad8fc1cc6692f8a881611
etag: "20c12cb8b779966aa588f3adb2ee1465"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 02 Dec 2022 03:51:42 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: BwxP94iavPjhbr+xXD84+g==
x-fb-debug: dh9jiANKI7g0vYn8D+jM+e3NbQZCgUgefQ0rQVuukfQY0eCGnmKAyFXa31GLI00r+ZWhe2SR8NUWmWezzR8XfQ==
priority: u=3,i
content-length: 1686
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 03:46:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
4.bp.blogspot.com/-oUFJtB21728/UiWguv_KsxI/AAAAAAAABL8/H82T4cxu-io/s640/6.png
142.250.74.161200 OK 191 kB URL HTTP/1.1 4.bp.blogspot.com/-oUFJtB21728/UiWguv_KsxI/AAAAAAAABL8/H82T4cxu-io/s640/6.png
IP 142.250.74.161:0
File type PNG image data, 640 x 439, 8-bit/color RGB, non-interlaced\012- data
Size 191 kB (190792 bytes)
Hash 54c53205516a94229359ad1e6d3ba22a
2845c096ea45faade136a948105c94c0942682bb
f25fa438630cdab219ae07b583014b5a507c7d161f4e544849fc1b03f56c6ed8
GET /-oUFJtB21728/UiWguv_KsxI/AAAAAAAABL8/H82T4cxu-io/s640/6.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4c0"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="6.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 190792
X-XSS-Protection: 0
1.bp.blogspot.com/-Ixr5BfdX8nM/UiWg7qEaKuI/AAAAAAAABMU/7Q4Rd1sXQ2E/s640/9.png
142.250.74.161200 OK 167 kB URL HTTP/1.1 1.bp.blogspot.com/-Ixr5BfdX8nM/UiWg7qEaKuI/AAAAAAAABMU/7Q4Rd1sXQ2E/s640/9.png
IP 142.250.74.161:0
File type PNG image data, 640 x 304, 8-bit/color RGB, non-interlaced\012- data
Size 167 kB (166924 bytes)
Hash e3b0e831a3a421d1963e4c46865891e9
42ba360c8d115aeea75c5e656b9bc8d2cdc9bc58
53c7addf45079bcd78433928ac20bc3a9cb3e81497512b4a45262bbc3c999c49
GET /-Ixr5BfdX8nM/UiWg7qEaKuI/AAAAAAAABMU/7Q4Rd1sXQ2E/s640/9.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4c6"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 166924
X-XSS-Protection: 0
jg.revolvermaps.com/c.php?i=6869a1tm788
185.44.104.99200 OK 43 B URL HTTP/1.1 jg.revolvermaps.com/c.php?i=6869a1tm788
IP 185.44.104.99:0
ASN #34549 meerfarbig GmbH & Co. KG
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /c.php?i=6869a1tm788 HTTP/1.1
Host: jg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: Apache
Cache-Control: max-age=900
Last-Modified: Fri, 02 Dec 2022 03:46:04 GMT
Content-Length: 43
Keep-Alive: timeout=4, max=99
Connection: Keep-Alive
Content-Type: image/gif
jg.revolvermaps.com/r.php?i=6869a1tm788&l=http%3A%2F%2Fsafehacking4mas.blogspot.com%2Fsearch%2Flabel%2FSocial%2520Engineering&r=1669952761986
185.44.104.99200 OK 43 B URL HTTP/1.1 jg.revolvermaps.com/r.php?i=6869a1tm788&l=http%3A%2F%2Fsafehacking4mas.blogspot.com%2Fsearch%2Flabel%2FSocial%2520Engineering&r=1669952761986
IP 185.44.104.99:0
ASN #34549 meerfarbig GmbH & Co. KG
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /r.php?i=6869a1tm788&l=http%3A%2F%2Fsafehacking4mas.blogspot.com%2Fsearch%2Flabel%2FSocial%2520Engineering&r=1669952761986 HTTP/1.1
Host: jg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: Apache
Content-Length: 43
Keep-Alive: timeout=4, max=98
Connection: Keep-Alive
Content-Type: image/gif
push.services.mozilla.com/
44.238.202.79101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.202.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zUy3EAilFq/92Ph4of5lQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DkOwH9SawrDtvwW41mjqROM3v/I=
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
216.58.207.238200 OK 31 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 216.58.207.238:0
File type ASCII text, with very long lines (580)
Hash 8b7cd98004b5a619d5ae2c11f7e4f95f
1f4a7476084e64124984e742593655247f8e8774
4a8f8a092ac4f6cdfb825ee9f028c08ec0154732dfeea23d9beaac3aed75dc4f
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 31306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 12:41:11 GMT
expires: Thu, 30 Nov 2023 12:41:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 140693
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_bubble/exm=gapi_iframes/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_1?le=scs
216.58.207.238200 OK 27 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_bubble/exm=gapi_iframes/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_1?le=scs
IP 216.58.207.238:0
File type ASCII text, with very long lines (529)
Hash b775269983819b170354c0f228ccb3ff
023cb454f6b1e51148ea987b4e7f62bb97ff73cb
626e836cddab308d6c8f81e3ca27cef96b7ab3eef1564630573b74060c6f0b7a
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_bubble/exm=gapi_iframes/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 26887
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 11:22:56 GMT
expires: Wed, 29 Nov 2023 11:22:56 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 231788
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.211.2200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.211.2:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 13:15:32 GMT
Expires: Thu, 15 Dec 2022 13:15:32 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 52232
2.bp.blogspot.com/-H0C9QvTrY1g/UiWgZ2Nwg7I/AAAAAAAABLc/XF74U7ggYQI/s640/19.png
142.250.74.161200 OK 135 kB URL HTTP/1.1 2.bp.blogspot.com/-H0C9QvTrY1g/UiWgZ2Nwg7I/AAAAAAAABLc/XF74U7ggYQI/s640/19.png
IP 142.250.74.161:0
File type PNG image data, 640 x 302, 8-bit/color RGB, non-interlaced\012- data
Size 135 kB (134905 bytes)
Hash abcaab956a64a437dc957faacc54fdf5
feb1018dd0fe9e0a4250702fac22a436433feb69
164f71c6e80c2f88c41f342b8894ce81cbc983f726f02d1ea74407be1d01cf06
GET /-H0C9QvTrY1g/UiWgZ2Nwg7I/AAAAAAAABLc/XF74U7ggYQI/s640/19.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4b8"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="19.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 134905
X-XSS-Protection: 0
www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
31.13.72.36301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 02 Dec 2022 03:46:04 GMT
Connection: keep-alive
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/--qxdQSE1sQ4/UiWfwBO5fRI/AAAAAAAABKc/053AhC8Xnno/s640/10.png
142.250.74.161200 OK 218 kB URL HTTP/1.1 2.bp.blogspot.com/--qxdQSE1sQ4/UiWfwBO5fRI/AAAAAAAABKc/053AhC8Xnno/s640/10.png
IP 142.250.74.161:0
File type PNG image data, 640 x 303, 8-bit/color RGB, non-interlaced\012- data
Size 218 kB (217496 bytes)
Hash 62d5b457c7a20d4efc5602295d6db370
22817d138b7cf3a0b5142668f01442df30d9f7a7
3d5f5c06edf0a6f2916de26381d22ca047299b73a782e48b18482ceb3e1cdcd5
GET /--qxdQSE1sQ4/UiWfwBO5fRI/AAAAAAAABKc/053AhC8Xnno/s640/10.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4a8"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 217496
X-XSS-Protection: 0
2.bp.blogspot.com/-HE_lGFnPeZM/UiWgPpEvx_I/AAAAAAAABLM/tucG1AIJRec/s640/17.png
142.250.74.161200 OK 180 kB URL HTTP/1.1 2.bp.blogspot.com/-HE_lGFnPeZM/UiWgPpEvx_I/AAAAAAAABLM/tucG1AIJRec/s640/17.png
IP 142.250.74.161:0
File type PNG image data, 640 x 305, 8-bit/color RGB, non-interlaced\012- data
Size 180 kB (180308 bytes)
Hash ea7a8b43937502b5add7fb3720bc4d8c
063fd98fa900e88ffb6e9a73a17288882898a766
7b497510621299b1f7d3d9144950507891f1f6e10b079c2c6ed492b1b299eeee
GET /-HE_lGFnPeZM/UiWgPpEvx_I/AAAAAAAABLM/tucG1AIJRec/s640/17.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4b4"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="17.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 180308
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f6a5cf3cc54084e27baaca43494f82e2
95f1661e8af86eb81602b1eeca4d242e2ba2072b
3071878638de9999958294f532f68c4986078608e215675b4c5fb002ba1a4d5a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 465
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Last-Modified: Fri, 02 Dec 2022 03:38:19 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
1.bp.blogspot.com/-rQOBKTjViW0/UM05c9pagjI/AAAAAAAAAgc/DV2_N11GsN8/s798/logo_green.jpg
142.250.74.161200 OK 7.8 kB URL HTTP/1.1 1.bp.blogspot.com/-rQOBKTjViW0/UM05c9pagjI/AAAAAAAAAgc/DV2_N11GsN8/s798/logo_green.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 262x80, components 3\012- data
Hash 595a241acf4b78a8080880b7d964e859
e0c433b3f6a850895662e9b36cf36e7453771a21
b916fd730636c65ec4fb565366a0f3c7f189f4e78f7e50b918dc7b968817a89f
GET /-rQOBKTjViW0/UM05c9pagjI/AAAAAAAAAgc/DV2_N11GsN8/s798/logo_green.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v207"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="logo_green.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 7771
X-XSS-Protection: 0
rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000
185.44.104.99200 OK 2.7 kB URL HTTP/1.1 rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000
IP 185.44.104.99:0
ASN #34549 meerfarbig GmbH & Co. KG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4694), with no line terminators
Hash 4af76efae45df83550f2bc6f0e08da1e
b240e60e0d9c2bdad0e056e839fa170c3676359d
3f9c41b4fcfc62eee7ba1d7d93e4cb10e9957ea41161319d8bf6e9a4e7caf239
GET /5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000 HTTP/1.1
Host: rg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=290304000
Content-Length: 2653
Keep-Alive: timeout=4, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Fri, 02 Dec 2022 03:46:04 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2686
Cache-Control: max-age=160916
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 00:28:00 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
4.bp.blogspot.com/-Nok4QhQ6il0/UinG4rQ1wmI/AAAAAAAABPk/RlpQFHANrnY/s640/13.png
142.250.74.161200 OK 172 kB URL HTTP/1.1 4.bp.blogspot.com/-Nok4QhQ6il0/UinG4rQ1wmI/AAAAAAAABPk/RlpQFHANrnY/s640/13.png
IP 142.250.74.161:0
File type PNG image data, 640 x 436, 8-bit/color RGB, non-interlaced\012- data
Size 172 kB (172354 bytes)
Hash f4402941c0c864676aadaf523b2bd477
e16d9492525c2825d25704772c43c16fe37321ce
0057553de18fdf5b4f4139832132d8b819e3b8723b91bd1756fbbe93bda9148a
GET /-Nok4QhQ6il0/UinG4rQ1wmI/AAAAAAAABPk/RlpQFHANrnY/s640/13.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4fa"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="13.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 172354
X-XSS-Protection: 0
3.bp.blogspot.com/-ByUV8Asg02Y/Tf8sGp0rx3I/AAAAAAAAAQs/ilKmRKIJVog/s150/next2.png
142.250.74.161200 OK 11 kB URL HTTP/1.1 3.bp.blogspot.com/-ByUV8Asg02Y/Tf8sGp0rx3I/AAAAAAAAAQs/ilKmRKIJVog/s150/next2.png
IP 142.250.74.161:0
File type PNG image data, 150 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash cbcc03f64f90cb84a8b8a2b7159a5ad7
72b7b1ae8e358634a058a47e0e9f7c551f507c31
52096fd4d87e56e99198e21ae9dc1e261184bd6568f1937d62701e1235aa3fa1
GET /-ByUV8Asg02Y/Tf8sGp0rx3I/AAAAAAAAAQs/ilKmRKIJVog/s150/next2.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v10b"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="next2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 10679
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f6a5cf3cc54084e27baaca43494f82e2
95f1661e8af86eb81602b1eeca4d242e2ba2072b
3071878638de9999958294f532f68c4986078608e215675b4c5fb002ba1a4d5a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 465
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Last-Modified: Fri, 02 Dec 2022 03:38:19 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=www.facebook.com/LearnSafeHackingOfficial&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 3J3Tnju4KH0quDbjBClXG7QDRoXSuuq/6gkorsUgQ988rckNnG79v+V008IBl4TQxi6jSJ+vEMFOGT+unlHyiw==
content-length: 0
date: Fri, 02 Dec 2022 03:46:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f6a5cf3cc54084e27baaca43494f82e2
95f1661e8af86eb81602b1eeca4d242e2ba2072b
3071878638de9999958294f532f68c4986078608e215675b4c5fb002ba1a4d5a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 465
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Last-Modified: Fri, 02 Dec 2022 03:38:19 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f222a50a2f186446ebf219f86c3be95a
9c333d8ae1fc2cc5cb692c612016048e659e4da6
f1eeb70781dca69c4ae617a6b9c96749ce1a4d4f214e4cb9ee636bdf3c1f3bd5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6280
Cache-Control: max-age=143965
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Etag: "6388ebd1-117"
Expires: Sat, 03 Dec 2022 19:45:29 GMT
Last-Modified: Thu, 01 Dec 2022 18:00:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
2.bp.blogspot.com/-T1wmwnyN6_M/UiWf_qIy4JI/AAAAAAAABK0/v9M6K0pGCIg/s640/14.png
142.250.74.161200 OK 174 kB URL HTTP/1.1 2.bp.blogspot.com/-T1wmwnyN6_M/UiWf_qIy4JI/AAAAAAAABK0/v9M6K0pGCIg/s640/14.png
IP 142.250.74.161:0
File type PNG image data, 640 x 303, 8-bit/color RGB, non-interlaced\012- data
Size 174 kB (173581 bytes)
Hash e61bff814eea4a39eb650b93ebd1f6b6
d19b99d70b4b606bca6bc30e8a168450e48bfc65
870e1a620e1ff1e302262836020e384c79900782ab98d9b00663dc8207804701
GET /-T1wmwnyN6_M/UiWf_qIy4JI/AAAAAAAABK0/v9M6K0pGCIg/s640/14.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4ae"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="14.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 173581
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4432410517c3bfe647c21ff3759d9edf
48412b84d329f63a66928a41dc80a712f3ce435f
4fbe6cc6b92672eec639058715e590f819c225fdc5e8e0f1a49ab482bf1f2cb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-wXW5hK19zc0/UilsfLJ-goI/AAAAAAAABMs/Gcuj_qEOvLs/s640/1.png
142.250.74.161200 OK 184 kB URL HTTP/1.1 3.bp.blogspot.com/-wXW5hK19zc0/UilsfLJ-goI/AAAAAAAABMs/Gcuj_qEOvLs/s640/1.png
IP 142.250.74.161:0
File type PNG image data, 640 x 433, 8-bit/color RGB, non-interlaced\012- data
Size 184 kB (184329 bytes)
Hash c96beccde1d1b5d1283269beaaf29990
ff83226fc7869571a5517b99f687b8fec201c9b5
d0927fc4c14e6d478b972e286a13abacae7b1191eeaf2b1c7f4a3c77876a9a9f
GET /-wXW5hK19zc0/UilsfLJ-goI/AAAAAAAABMs/Gcuj_qEOvLs/s640/1.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4cc"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 184329
X-XSS-Protection: 0
4.bp.blogspot.com/-lcwzJa4ztgw/UjKtbCA8E-I/AAAAAAAABTU/_68bLwFdv4s/s640/9.png
142.250.74.161200 OK 241 kB URL HTTP/1.1 4.bp.blogspot.com/-lcwzJa4ztgw/UjKtbCA8E-I/AAAAAAAABTU/_68bLwFdv4s/s640/9.png
IP 142.250.74.161:0
File type PNG image data, 640 x 308, 8-bit/color RGB, non-interlaced\012- data
Size 241 kB (241413 bytes)
Hash 6dcf34107c4199902e2a5b227f3a6403
e139484a02e83bccfcb9d500bba424a5f5d9d6d2
6da71261976d41882266bdb215ba72bca9036c4a6d0921d95998e1c234c1e591
GET /-lcwzJa4ztgw/UjKtbCA8E-I/AAAAAAAABTU/_68bLwFdv4s/s640/9.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v535"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 241413
X-XSS-Protection: 0
2.bp.blogspot.com/-bWk_Zgv6OiY/UiWgFVSiiUI/AAAAAAAABK8/iNY7Z9naxao/s640/16.png
142.250.74.161200 OK 76 kB URL HTTP/1.1 2.bp.blogspot.com/-bWk_Zgv6OiY/UiWgFVSiiUI/AAAAAAAABK8/iNY7Z9naxao/s640/16.png
IP 142.250.74.161:0
File type PNG image data, 640 x 360, 8-bit/color RGB, non-interlaced\012- data
Hash 7d0f5077bde7d69e791a21c03ebada56
ef98f060f69b8fb7cf46b35ca7fbe2d39e937a46
497355364b957be631cf50506fb638537a1704e64f2997da6b6b1a8421159857
GET /-bWk_Zgv6OiY/UiWgFVSiiUI/AAAAAAAABK8/iNY7Z9naxao/s640/16.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4b0"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="16.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 75561
X-XSS-Protection: 0
rg.revolvermaps.com/d/m/256/4.jpg
185.44.104.99200 OK 24 kB URL HTTP/1.1 rg.revolvermaps.com/d/m/256/4.jpg
IP 185.44.104.99:0
ASN #34549 meerfarbig GmbH & Co. KG
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 256x128, components 3\012- data
Hash f740a9fe450be470bf84a06d1752e9e8
4c2187f66e2c771ce169d8dd35152c81331c75bf
41a4d4a6fae1dd85bcc3c9ced2a3b98afb9e751a5a7b6ad0837ad3d13b9e435d
GET /d/m/256/4.jpg HTTP/1.1
Host: rg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: Apache
Last-Modified: Sun, 20 Feb 2011 15:36:38 GMT
Accept-Ranges: bytes
Content-Length: 23695
Cache-Control: public, max-age=290304000
Keep-Alive: timeout=4, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f222a50a2f186446ebf219f86c3be95a
9c333d8ae1fc2cc5cb692c612016048e659e4da6
f1eeb70781dca69c4ae617a6b9c96749ce1a4d4f214e4cb9ee636bdf3c1f3bd5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6280
Cache-Control: max-age=143965
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Etag: "6388ebd1-117"
Expires: Sat, 03 Dec 2022 19:45:29 GMT
Last-Modified: Thu, 01 Dec 2022 18:00:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
www.widgeo.net/geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%3A%20Social%20Engineering&ref=safehacking4mas.blogspot.com
104.26.11.22200 OK 1.4 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%3A%20Social%20Engineering&ref=safehacking4mas.blogspot.com
IP 104.26.11.22:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (322)
Hash 6c2caa31d03ac2f064314da10691c656
81fef327427caf87ca9a57114b32816dae0b35fd
9f6efb7f9f0e2c3fe145e29a5fb35aac16a5452b604d579cd29d34d45b9f2160
GET /geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%3A%20Social%20Engineering&ref=safehacking4mas.blogspot.com HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="NOI ADM DEV COM NAV OUR STP"
set-cookie: idcompteurcc_2194072=done; expires=Sat, 03-Dec-2022 03:46:03 GMT; Max-Age=86400; path=/
online_idcompteurcc_2194072=done; expires=Fri, 02-Dec-2022 03:49:03 GMT; Max-Age=180; path=/
pays_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
online_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
vj_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
total_2194072=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
bonus_2194072=15947; expires=Sat, 03-Dec-2022 03:46:03 GMT; Max-Age=86400; path=/
bonus_j_2194072=1; expires=Fri, 02-Dec-2022 03:49:03 GMT; Max-Age=180; path=/
cache-control: public, max-age=180
expires: Fri, 02 Dec 2022 03:49:03 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tgdEOQLPVnZctPsMUzou7CQZn%2BXioD5GSy6b1%2BrtHQMkb4hoMdO%2FNQLS4meNmQQmZH4XjNAw8c8xC1RzHvsGuVC5X3qOYVp7sYAxaJ%2Fuva9bAg9q8Qt%2BUGZWemo7Y17i"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 773112c95a680b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
2.bp.blogspot.com/-b6owAIJEa2I/UjKsMFCt3LI/AAAAAAAABSI/wAJRJZG-Lxw/s640/1.png
142.250.74.161200 OK 300 kB URL HTTP/1.1 2.bp.blogspot.com/-b6owAIJEa2I/UjKsMFCt3LI/AAAAAAAABSI/wAJRJZG-Lxw/s640/1.png
IP 142.250.74.161:0
File type PNG image data, 640 x 431, 8-bit/color RGB, non-interlaced\012- data
Size 300 kB (299941 bytes)
Hash a896af1e1cc9bd23c90323f3f75fadc0
3cc909389fc500e3e07865ab6aa4b21a6c5512cc
89f3cef9e14d295efb47fec20b09e273864f423edfa75ae370ddb0416a82f928
GET /-b6owAIJEa2I/UjKsMFCt3LI/AAAAAAAABSI/wAJRJZG-Lxw/s640/1.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v522"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 299941
X-XSS-Protection: 0
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
142.250.74.109302 Found 482 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (519)
Hash 5b993bf90f9b57d89591ab8baaa645e3
79b43a6c5039d6f92c2bedc41f497ce009e54c5c
7bbf34aadfa3af11c72b0f2458d3ce879b62e3d465f81eb779b84773e4027978
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6105040037749415494%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://safehacking4mas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 03:46:04 GMT
location: https://www.blogger.com/followers.g?blogID=6105040037749415494&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByNhZWFlYWUiByMwMDliYzAqC3RyYW5zcGFyZW50MgcjMzZiYzM2OgcjYWVhZWFlQgcjMDA5YmMwSgcjZmZmZmZmUgcjMDA5YmMwWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-qcH4XKhgpY8blJeE3BdQLg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 482
server: GSE
set-cookie: __Host-GAPS=1:QzM2vuMQzABrUlIjP6icqDe_TqLT0Q:gvXYJzQGS5iuDEok;Path=/;Expires=Sun, 01-Dec-2024 03:46:04 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-V5X63jjydNY/UinHT4-5VSI/AAAAAAAABQQ/tdT9winFsxs/s640/8.png
142.250.74.161200 OK 160 kB URL HTTP/1.1 1.bp.blogspot.com/-V5X63jjydNY/UinHT4-5VSI/AAAAAAAABQQ/tdT9winFsxs/s640/8.png
IP 142.250.74.161:0
File type PNG image data, 640 x 364, 8-bit/color RGB, non-interlaced\012- data
Size 160 kB (159913 bytes)
Hash 2c1452a4b254b2327060a7f581a4fde2
7c351ef4ecafd3ea0c99002e124577df553c2cb1
6d1904b97c3f1c9ef9e66cc072b6000ab806fb48ad63ad7e2ea4caa036b60197
GET /-V5X63jjydNY/UinHT4-5VSI/AAAAAAAABQQ/tdT9winFsxs/s640/8.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v507"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="8.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 159913
X-XSS-Protection: 0
1.bp.blogspot.com/-6c-T7omuZUg/UiltRVoZCrI/AAAAAAAABN8/Fc1KYnLYlKA/s640/5.png
142.250.74.161200 OK 130 kB URL HTTP/1.1 1.bp.blogspot.com/-6c-T7omuZUg/UiltRVoZCrI/AAAAAAAABN8/Fc1KYnLYlKA/s640/5.png
IP 142.250.74.161:0
File type PNG image data, 640 x 327, 8-bit/color RGB, non-interlaced\012- data
Size 130 kB (130358 bytes)
Hash 590789fd28acc97733c3a1f782778e3a
39a676f6b78a53af38775e3cfc33fa458eecbf42
efdf1f3162f12b348e4d11ede49bc9a3af57cff4dea5cffc09727f5579491df5
GET /-6c-T7omuZUg/UiltRVoZCrI/AAAAAAAABN8/Fc1KYnLYlKA/s640/5.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e0"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 130358
X-XSS-Protection: 0
storage.myfreecopyright.com/mfc_protected.png
52.218.220.83403 Forbidden 243 B URL HTTP/1.1 storage.myfreecopyright.com/mfc_protected.png
IP 52.218.220.83:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash bd080d6503ec95429fb1535b8190f873
972b4bca74fd48d4a53cf8bca9d58e541257d34b
500b176ce6ec6c97c00753cb32474ecbf6f3258bbbd0c83c43b03310b6d1b2a2
GET /mfc_protected.png HTTP/1.1
Host: storage.myfreecopyright.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 403 Forbidden
x-amz-request-id: MSCVTP0TB3H5FN3T
x-amz-id-2: +VK9YnM/VQYGPenT0V51Q5/3+WHxbusYTPLJdNzl+1yuvkrLCx0Pd7s58FDfC32cO4VYqr+V5qs=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: AmazonS3
4.bp.blogspot.com/-vCyPVLtBY7o/UjKsxNQa-XI/AAAAAAAABSo/4DLJsDm0Nuk/s640/5.png
142.250.74.161200 OK 297 kB URL HTTP/1.1 4.bp.blogspot.com/-vCyPVLtBY7o/UjKsxNQa-XI/AAAAAAAABSo/4DLJsDm0Nuk/s640/5.png
IP 142.250.74.161:0
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 297 kB (297059 bytes)
Hash 9e0fa7dd55748049297493581c6cefe8
38332769a6d67d8246de55aee66b8ab1228d045f
92be499e78602b230352a26bc6e48972ce943e808c25f35afca7c074f672863b
GET /-vCyPVLtBY7o/UjKsxNQa-XI/AAAAAAAABSo/4DLJsDm0Nuk/s640/5.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v52a"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 297059
X-XSS-Protection: 0
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
104.26.11.22200 OK 3.9 kB URL HTTP/1.1 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP 104.26.11.22:0
File type ASCII text, with very long lines (12331)
Hash 54c87b7a9007d256c837e382cab4170d
6c8f44204021f68596af9ae5a742c3ad1b76a6ec
3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/geocompteur_html.php?id=2194072&c=geoiphone&size=&nostats=&title=Learn%20%24%40FE%20H%40CKING%2C%20Download%20Hacking%20Software%20Free%2C%20Hacking%20Tutorials%2C%20Tips%20%26%20Tricks%2C%20..%3A%20Social%20Engineering&ref=safehacking4mas.blogspot.com
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 18:31:41 GMT
ETag: W/"6387a18d-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZiUIFnxicsfDXvqwqGg%2FAa0nby52xAVQlVCqjN8qCS8XuJ0qmLzoxkUMqdPe%2FsbdtMGNso59eX3BtXhNw1Vm1pBJ%2B8xfe%2FsbaM1d6ZIMn6T6Mn9XKXLwLkG4q2BBBvcK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773112ca6a960b02-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Sun, 04 Dec 2022 03:46:04 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
1.bp.blogspot.com/-qgxeFdBboVE/Uilsjg2a6HI/AAAAAAAABM0/KMruw8s4hxQ/s640/10.png
142.250.74.161200 OK 199 kB URL HTTP/1.1 1.bp.blogspot.com/-qgxeFdBboVE/Uilsjg2a6HI/AAAAAAAABM0/KMruw8s4hxQ/s640/10.png
IP 142.250.74.161:0
File type PNG image data, 640 x 397, 8-bit/color RGB, non-interlaced\012- data
Size 199 kB (198743 bytes)
Hash 5712e010eaad8254591902b8d7706b15
9e2fae296fe746f946cf639718ed07c099993d3d
83b817a511e85870480983a7f2044ce47cc1290829c0040c0472b47d16e2de4c
GET /-qgxeFdBboVE/Uilsjg2a6HI/AAAAAAAABM0/KMruw8s4hxQ/s640/10.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4ce"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 198743
X-XSS-Protection: 0
rg.revolvermaps.com/t.php?i=6869a1tm788&r=27n9
185.44.104.99200 OK 25 B URL HTTP/1.1 rg.revolvermaps.com/t.php?i=6869a1tm788&r=27n9
IP 185.44.104.99:0
ASN #34549 meerfarbig GmbH & Co. KG
Hash 7ae6f05e66f1c6825d8e00956fb7db58
cb0ad7e7e861c8376eb79836fc16f343b69c7bf9
94e173d9ceab73248b8f4e33d5acc332e68806abf4fb50f83ba0c0b1f2ecb8f2
GET /t.php?i=6869a1tm788&r=27n9 HTTP/1.1
Host: rg.revolvermaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rg.revolvermaps.com/5/f.php?m=4&h=110&i=6869a1tm788&c=ff0000
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: Apache
Content-Length: 25
Keep-Alive: timeout=4, max=98
Connection: Keep-Alive
Content-Type: text/plain;charset=UTF-8
3.bp.blogspot.com/-ZsT3qG-znVg/UiWfjJETLHI/AAAAAAAABKM/Uhr9MvxhriQ/s640/11.png
142.250.74.161200 OK 204 kB URL HTTP/1.1 3.bp.blogspot.com/-ZsT3qG-znVg/UiWfjJETLHI/AAAAAAAABKM/Uhr9MvxhriQ/s640/11.png
IP 142.250.74.161:0
File type PNG image data, 640 x 305, 8-bit/color RGB, non-interlaced\012- data
Size 204 kB (204249 bytes)
Hash 6eb8d66f86954234834fb1d7a7383885
96daaa3a7e8abab7481b44c42061e378d2d7b0e8
4f3a91a4eebccc8093c17858a454fd8fcfac38cac513dd5bd90a1c67b12dc165
GET /-ZsT3qG-znVg/UiWfjJETLHI/AAAAAAAABKM/Uhr9MvxhriQ/s640/11.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4a4"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="11.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 204249
X-XSS-Protection: 0
1.bp.blogspot.com/-zME78_RTmpA/UiWgSaEHXsI/AAAAAAAABLU/MNPK4jM21wY/s640/18.png
142.250.74.161200 OK 179 kB URL HTTP/1.1 1.bp.blogspot.com/-zME78_RTmpA/UiWgSaEHXsI/AAAAAAAABLU/MNPK4jM21wY/s640/18.png
IP 142.250.74.161:0
File type PNG image data, 640 x 302, 8-bit/color RGB, non-interlaced\012- data
Size 179 kB (179098 bytes)
Hash e902ae9c175fadb7c3659c7caf1832e3
d7d00626bfa185962e0f5aab0b4c864e9a53a3d4
c43207141434624d8178ad1faadc61394b4040ca1b9a69339df86cb144e42032
GET /-zME78_RTmpA/UiWgSaEHXsI/AAAAAAAABLU/MNPK4jM21wY/s640/18.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4b6"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="18.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 179098
X-XSS-Protection: 0
themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
142.250.74.97200 OK 381 kB URL HTTP/2 themes.googleusercontent.com/image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Picasa], baseline, precision 8, 1800x1350, components 3\012- data
Size 381 kB (380966 bytes)
Hash 25f28c14231c292ea378827e6f5c24df
d421366c81560e3577e6f1378720ad7731237fda
6afcea5c82cdabdfeda856796c10189c4b8e9d1d2984f56db6e20622e049964a
GET /image?id=1i_daHMzkzBNcV-v7uOhVYquMt20FCMbbTFxcHAARidZ6PYKs5-KeUa4Gm0erJ5vHVpot HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://safehacking4mas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sat, 03 Dec 2022 03:46:04 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 03:46:04 GMT
server: fife
content-length: 380966
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-Je6jT9LcXMs/UjLYrCn_sXI/AAAAAAAABVs/aGYk7mBqkO0/s640/6.png
142.250.74.161200 OK 226 kB URL HTTP/1.1 1.bp.blogspot.com/-Je6jT9LcXMs/UjLYrCn_sXI/AAAAAAAABVs/aGYk7mBqkO0/s640/6.png
IP 142.250.74.161:0
File type PNG image data, 640 x 300, 8-bit/color RGB, non-interlaced\012- data
Size 226 kB (226211 bytes)
Hash 35890a42e96f21a17abc3cc07f1793b0
cb9143b961f8a8c21492cfe14fa6f277d63f24d5
eb2ec841b2a4b35538e31c1f16efb101e2ce2be1917d9375dcac423843bf222a
GET /-Je6jT9LcXMs/UjLYrCn_sXI/AAAAAAAABVs/aGYk7mBqkO0/s640/6.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v55c"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="6.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 226211
X-XSS-Protection: 0
www.widgeo.net/tcm_t_u.js
104.26.11.22200 OK 0 B URL HTTP/2 www.widgeo.net/tcm_t_u.js
IP 104.26.11.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tcm_t_u.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:04 GMT
content-type: application/javascript
content-length: 0
cf-bgj: minify
cf-polished: origSize=4360
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 03:46:03 GMT
last-modified: Sat, 01 Oct 2022 00:32:25 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sg6lDKUCld5yPMzaNoUOPC9NAM90ufHfSRqNmMu6yYn2H4I5K9QqovD%2F%2FzPsX9LZRxSIEZ9yh06F01OXonwPtOu8Xu2UaBw9SwejmDEca5pL7Cpt2twz9zwVw6k3j39K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773112c998a1b4ee-OSL
X-Firefox-Spdy: h2
3.bp.blogspot.com/-9gXsFAWxYkc/Uils8x6EiRI/AAAAAAAABNk/YVXbBlkmLpo/s640/3.png
142.250.74.161200 OK 183 kB URL HTTP/1.1 3.bp.blogspot.com/-9gXsFAWxYkc/Uils8x6EiRI/AAAAAAAABNk/YVXbBlkmLpo/s640/3.png
IP 142.250.74.161:0
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 183 kB (183431 bytes)
Hash 58a66194ff2852ae10c848cc633491ff
795953aabfcbaa08764e9899e908ef90f4964228
b495dae9cdaf98dc04c4e5e912ea68e27c7f6724799d36a0c58cb0e0a9c4a185
GET /-9gXsFAWxYkc/Uils8x6EiRI/AAAAAAAABNk/YVXbBlkmLpo/s640/3.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4da"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 183431
X-XSS-Protection: 0
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
104.26.11.22200 OK 4.4 kB URL HTTP/2 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP 104.26.11.22:0
Hash 3fb53b982e47ea6052eab1c3c1ab860f
d0b89c62ec49cb393441ca5687a2a89d793d27d5
eb9b4c6cec86052d5d65bb2f3234953f8f64417dfc6dbb81e32683858d3d698b
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/hitparade.php?pagexiti=geoiphone
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:04 GMT
content-type: application/javascript
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VU%2BkClsH4zpS3Yam4CyxCdxg4D66tqoSKVTZ4wcsco8v8NEccpwkLOVldUlq9O1KUAQpJ0ze1rglAYYMNb3ykXwLipmJf34cqJb4Ey5Wd18roG%2FADlIifAcu3AKNUUU4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773112cad929b4ee-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 04 Dec 2022 03:46:04 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84b8b1043a96c760a6b85bc0b3265b85
d9f0338ffcd6cfb3c96bc66966b898d33162f204
e24a64d19f091946caed011ebcf469be2d35168aa12f90b02d9c1c9326afd867
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E24A64D19F091946CAED011EBCF469BE2D35168AA12F90B02D9C1C9326AFD867"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18482
Expires: Fri, 02 Dec 2022 08:54:06 GMT
Date: Fri, 02 Dec 2022 03:46:04 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Open+Sans:400,700
142.250.74.106200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP 142.250.74.106:0
Hash 1a10398af66ff6d4544d280ac54073b7
3125c172e20069283978e3975e934d01710ef548
7ed92026a580c978056d6903970657ccf60f146a0f46d0f575a2728839fc6366
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 03:46:04 GMT
date: Fri, 02 Dec 2022 03:46:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-E-NvUffELCw/UiltYYYi71I/AAAAAAAABOE/KH2p3IgdXcs/s640/6.png
142.250.74.161200 OK 237 kB URL HTTP/1.1 2.bp.blogspot.com/-E-NvUffELCw/UiltYYYi71I/AAAAAAAABOE/KH2p3IgdXcs/s640/6.png
IP 142.250.74.161:0
File type PNG image data, 640 x 324, 8-bit/color RGB, non-interlaced\012- data
Size 237 kB (237100 bytes)
Hash 3a18c3ac99b5e3bbfe54873b6b92807a
bc15d32cf7d0abb2092742e6a26d4f341ea405ff
f3c1b50947562a438cbdea08292a37b7b03a60ec9a3556e4a0c39a97988dc87e
GET /-E-NvUffELCw/UiltYYYi71I/AAAAAAAABOE/KH2p3IgdXcs/s640/6.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e3"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="6.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 237100
X-XSS-Protection: 0
www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
IP 142.250.74.168:0
File type ASCII text, with very long lines (20080)
Hash 5384ae08c673a9d87d6e1b226dde5280
17d53e747cc5b12e358ae8e9f73cdb615df6532f
701c7c1efd2a564b9cdceef1159eafdd383dc93cb2513a770012fb30f034bc7d
GET /gtag/js?id=G-RP7FMTL79Y HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 03:46:04 GMT
expires: Fri, 02 Dec 2022 03:46:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76261
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-7fFta3g9MWs/UiltYQMiEnI/AAAAAAAABOI/q3DOWbFuDnM/s640/7.png
142.250.74.161200 OK 151 kB URL HTTP/1.1 2.bp.blogspot.com/-7fFta3g9MWs/UiltYQMiEnI/AAAAAAAABOI/q3DOWbFuDnM/s640/7.png
IP 142.250.74.161:0
File type PNG image data, 640 x 325, 8-bit/color RGB, non-interlaced\012- data
Size 151 kB (151408 bytes)
Hash d56d7017245a2a4607332719eb2765a6
0cd9831128b89d2470210f988d0c976341ee2af4
1d914ff04bfe4bf4027bf1eb307b35f22d0c98c4da4a111008cdf0c581a8d9d8
GET /-7fFta3g9MWs/UiltYQMiEnI/AAAAAAAABOI/q3DOWbFuDnM/s640/7.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e4"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 151408
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
142.250.74.170200 OK 25 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (820)
Hash cc24419c482370498f3c227ac73d666b
37fc103ace873f47102e0ca88eb4735bc6806750
152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 12:33:40 GMT
expires: Sun, 26 Nov 2023 12:33:40 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 486744
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
logv33.xiti.com/hit.xiti?s=281802&p=geoiphone&hl=3x46x2&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/
143.204.46.236302 Found 149 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=geoiphone&hl=3x46x2&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/
IP 143.204.46.236:0
File type HTML document, ASCII text
Hash fc8c86e8a9a903be081645c1d669e077
c40c1189eb9597cc9461cd166d4168f544b17afb
c7e767b766190a568d966ab54ab0fc6b28bb820cebae03aff383ac24d0e46046
GET /hit.xiti?s=281802&p=geoiphone&hl=3x46x2&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/ HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 149
date: Fri, 02 Dec 2022 03:46:04 GMT
cache-control: no-store
location: /hit.xiti?s=281802&p=geoiphone&hl=3x46x2&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: idrxvr=471A70C7-2B15-42D5-9297-E6F584092827; Path=/; Domain=xiti.com; Expires=Tue, 02 Jan 2024 03:46:04 GMT; HttpOnly
atidx=471A70C7-2B15-42D5-9297-E6F584092827; Path=/; Domain=xiti.com; Expires=Tue, 02 Jan 2024 03:46:04 GMT; HttpOnly; Secure
atid=471A70C7-2B15-42D5-9297-E6F584092827; Path=/; Domain=xiti.com; Expires=Tue, 02 Jan 2024 03:46:04 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4isyjHy59TpQOy2wJXBNiDlHXo3OVMdE9D2tGLwC1IXg2rkczGKXiQ==
X-Firefox-Spdy: h2
3.bp.blogspot.com/-49x0sh7267Q/UiltgomVfMI/AAAAAAAABOc/nPUmm-pzfxo/s640/9.png
142.250.74.161200 OK 111 kB URL HTTP/1.1 3.bp.blogspot.com/-49x0sh7267Q/UiltgomVfMI/AAAAAAAABOc/nPUmm-pzfxo/s640/9.png
IP 142.250.74.161:0
File type PNG image data, 640 x 293, 8-bit/color RGB, non-interlaced\012- data
Size 111 kB (110919 bytes)
Hash b73dfe687c3d99042c8d64ac12cfa081
204f4f72bb71723985c30810eaf2257795eed446
0aa12e984d2ab0f117ef10fcf9197e58754e8d2ef4ecba62709d54c4b5769e79
GET /-49x0sh7267Q/UiltgomVfMI/AAAAAAAABOc/nPUmm-pzfxo/s640/9.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e8"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 110919
X-XSS-Protection: 0
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.widgeo.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 291203
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-z-UTIQMExfo/UjLZGSGwtFI/AAAAAAAABWE/WgtyTGaRfIE/s640/9.png
142.250.74.161200 OK 241 kB URL HTTP/1.1 1.bp.blogspot.com/-z-UTIQMExfo/UjLZGSGwtFI/AAAAAAAABWE/WgtyTGaRfIE/s640/9.png
IP 142.250.74.161:0
File type PNG image data, 640 x 308, 8-bit/color RGB, non-interlaced\012- data
Size 241 kB (241413 bytes)
Hash 6dcf34107c4199902e2a5b227f3a6403
e139484a02e83bccfcb9d500bba424a5f5d9d6d2
6da71261976d41882266bdb215ba72bca9036c4a6d0921d95998e1c234c1e591
GET /-z-UTIQMExfo/UjLZGSGwtFI/AAAAAAAABWE/WgtyTGaRfIE/s640/9.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v562"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 241413
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-4U-FbbILoOI/UinHIB7EPNI/AAAAAAAABQE/UUFURGmNIoo/s640/4.png
142.250.74.161200 OK 168 kB URL HTTP/1.1 2.bp.blogspot.com/-4U-FbbILoOI/UinHIB7EPNI/AAAAAAAABQE/UUFURGmNIoo/s640/4.png
IP 142.250.74.161:0
File type PNG image data, 640 x 431, 8-bit/color RGB, non-interlaced\012- data
Size 168 kB (167722 bytes)
Hash 5e44270dd8ea20acc6311be875bb10b5
73868810c2cba2c40d9feb7847069bcf63445a1a
6b7c934cc16ecdefa0e590217ea40afe7ced6ef457082d86457444be5377d920
GET /-4U-FbbILoOI/UinHIB7EPNI/AAAAAAAABQE/UUFURGmNIoo/s640/4.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v502"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 167722
X-XSS-Protection: 0
2.bp.blogspot.com/-ANNlrfF9gVc/UjLYVbakcrI/AAAAAAAABVc/LlmzV8lNhKg/s640/4.png
142.250.74.161200 OK 319 kB URL HTTP/1.1 2.bp.blogspot.com/-ANNlrfF9gVc/UjLYVbakcrI/AAAAAAAABVc/LlmzV8lNhKg/s640/4.png
IP 142.250.74.161:0
File type PNG image data, 640 x 423, 8-bit/color RGB, non-interlaced\012- data
Size 319 kB (318818 bytes)
Hash fade41f2cb7a83c85282296628270fe2
9c305722edec60f94abfa5a78a3552cd55b1b847
670997abd5a1da5e54a141c53d5ba4695a7cf7b4caaeff0d3f56966214d5dd4b
GET /-ANNlrfF9gVc/UjLYVbakcrI/AAAAAAAABVc/LlmzV8lNhKg/s640/4.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v558"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 318818
X-XSS-Protection: 0
logv33.xiti.com/hit.xiti?s=281802&p=geoiphone&hl=3x46x2&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On
143.204.46.236200 OK 373 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=geoiphone&hl=3x46x2&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On
IP 143.204.46.236:0
File type GIF image data, version 89a, 39 x 25\012- data
Hash 29cb2a1e585dff1f4282449fdbbab2d7
075d147195f9dba1862a6f3990d219d7c4389225
86fd3be02ab9497ebb14a884fb226386cd0db257b234b005f0000326ae8c9081
GET /hit.xiti?s=281802&p=geoiphone&hl=3x46x2&r=1280x1024x24x24&ref=http://safehacking4mas.blogspot.com/&Rdt=On HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.widgeo.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 373
date: Fri, 02 Dec 2022 03:46:04 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3ZDtalqyxEHtL3Kr8t4Q-E1eCEtrin0rm6OCnjywjA6SIhg87UFAQw==
X-Firefox-Spdy: h2
1.bp.blogspot.com/-as3jkBDYtGQ/UjLY7Ndv0XI/AAAAAAAABV8/43Euw-PDiJw/s1600/7.png
142.250.74.161200 OK 484 kB URL HTTP/1.1 1.bp.blogspot.com/-as3jkBDYtGQ/UjLY7Ndv0XI/AAAAAAAABV8/43Euw-PDiJw/s1600/7.png
IP 142.250.74.161:0
File type PNG image data, 1052 x 511, 8-bit/color RGB, non-interlaced\012- data
Size 484 kB (484281 bytes)
Hash f5b761ccf09ff04be624d61a74518647
677edf49661a80dd27361f35d4967a7efebc69f3
2f7db9696946b66ad955050988d86b788fb3616daf2fd94e22407c5cd66be03b
GET /-as3jkBDYtGQ/UjLY7Ndv0XI/AAAAAAAABV8/43Euw-PDiJw/s1600/7.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v560"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 484281
X-XSS-Protection: 0
3.bp.blogspot.com/-jcOQzHpTRqI/UjLYkTGXEqI/AAAAAAAABVk/yzugJ2Wd2CE/s640/5.png
142.250.74.161200 OK 297 kB URL HTTP/1.1 3.bp.blogspot.com/-jcOQzHpTRqI/UjLYkTGXEqI/AAAAAAAABVk/yzugJ2Wd2CE/s640/5.png
IP 142.250.74.161:0
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 297 kB (297059 bytes)
Hash 9e0fa7dd55748049297493581c6cefe8
38332769a6d67d8246de55aee66b8ab1228d045f
92be499e78602b230352a26bc6e48972ce943e808c25f35afca7c074f672863b
GET /-jcOQzHpTRqI/UjLYkTGXEqI/AAAAAAAABVk/yzugJ2Wd2CE/s640/5.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v55a"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 297059
X-XSS-Protection: 0
3.bp.blogspot.com/-xn9Hrbor_Dc/UinGmXCQHjI/AAAAAAAABPE/Yv9ytXU1uW0/s640/10.png
142.250.74.161200 OK 65 kB URL HTTP/1.1 3.bp.blogspot.com/-xn9Hrbor_Dc/UinGmXCQHjI/AAAAAAAABPE/Yv9ytXU1uW0/s640/10.png
IP 142.250.74.161:0
File type PNG image data, 640 x 288, 8-bit/color RGB, non-interlaced\012- data
Hash db5e346d22292c92606fbc0f688ac393
98c78975984a599db6097974d6b61d08a23df7e2
d705b9e1bfcae394f26b25ed1f01fbf96e80397ee37d0fe5eb40a2b57a730025
GET /-xn9Hrbor_Dc/UinGmXCQHjI/AAAAAAAABPE/Yv9ytXU1uW0/s640/10.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4f2"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 65185
X-XSS-Protection: 0
www.widgeo.net/geocompteur/img/tmp/earth_blue.png
104.26.11.22200 OK 3.3 kB URL HTTP/2 www.widgeo.net/geocompteur/img/tmp/earth_blue.png
IP 104.26.11.22:0
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ac8b557149bf61580a1a91714b12217
3171e1bb6d3051e2ffe2bf9c5b688d167abe8c89
41e369eda7963024a2c921a3c36e594fc1994e91d873789bee1cecbbc429de9c
GET /geocompteur/img/tmp/earth_blue.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:05 GMT
content-type: image/png
content-length: 3276
cache-control: public, max-age=2592000
expires: Sun, 01 Jan 2023 03:46:03 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wFQ2rGEs7MMPUrlQmkuppGH7UUFBtq9k3YypmXvFQaNDWx7pcuVCY9f%2FAL%2FDWwppovUwdhmfs6URRIQ7hN5XnOo5t2JbbSdnfcXoWf8B2vPqOrTJ5WeteHaScE4SbP%2Bf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773112cbf998b4ee-OSL
X-Firefox-Spdy: h2
3.bp.blogspot.com/-BlctrEvzBHE/UinHTzMaUHI/AAAAAAAABQM/43X1ZxYRjpw/s640/7.png
142.250.74.161200 OK 162 kB URL HTTP/1.1 3.bp.blogspot.com/-BlctrEvzBHE/UinHTzMaUHI/AAAAAAAABQM/43X1ZxYRjpw/s640/7.png
IP 142.250.74.161:0
File type PNG image data, 640 x 365, 8-bit/color RGB, non-interlaced\012- data
Size 162 kB (162387 bytes)
Hash 0a967965356cdedbc846f93666b3f806
c2f24be849fd7b069336488af9a8c9c300f658a2
40e11da0b4382cfc3699f51602c7539f47cc71286c3b0bb1dd46cfd273344461
GET /-BlctrEvzBHE/UinHTzMaUHI/AAAAAAAABQM/43X1ZxYRjpw/s640/7.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v505"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 162387
X-XSS-Protection: 0
2.bp.blogspot.com/-nD4DYtrG5_Q/UjKsbyKgkwI/AAAAAAAABSQ/niXVlAdz3eQ/s640/3.png
142.250.74.161200 OK 294 kB URL HTTP/1.1 2.bp.blogspot.com/-nD4DYtrG5_Q/UjKsbyKgkwI/AAAAAAAABSQ/niXVlAdz3eQ/s640/3.png
IP 142.250.74.161:0
File type PNG image data, 640 x 429, 8-bit/color RGB, non-interlaced\012- data
Size 294 kB (294192 bytes)
Hash 1848d96923c82284bea1ddc969e855e5
a497f1bea81a6d02ac7ff0f10ea5ec07e2643e20
480c7ad5fb208bba1854487f1d6352df323c44f89bfae2be42f78d64a24e0a2e
GET /-nD4DYtrG5_Q/UjKsbyKgkwI/AAAAAAAABSQ/niXVlAdz3eQ/s640/3.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v524"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 294192
X-XSS-Protection: 0
1.bp.blogspot.com/-40Jmj6R4hgE/UiWgGzZFMWI/AAAAAAAABLE/5WtdheVHwHs/s640/15.png
142.250.74.161200 OK 122 kB URL HTTP/1.1 1.bp.blogspot.com/-40Jmj6R4hgE/UiWgGzZFMWI/AAAAAAAABLE/5WtdheVHwHs/s640/15.png
IP 142.250.74.161:0
File type PNG image data, 640 x 305, 8-bit/color RGB, non-interlaced\012- data
Size 122 kB (121957 bytes)
Hash a58fb998eca1e1d00516848b9c816fcd
0b649bff56f2008314b0315b310cbbed8875ee46
d887b0aa4fc79538a3caab93e68b51e64f3a0ee1f450dcf6c350d5485624f3b6
GET /-40Jmj6R4hgE/UiWgGzZFMWI/AAAAAAAABLE/5WtdheVHwHs/s640/15.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4b2"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="15.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 121957
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11589
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 03:46:05 GMT
Connection: keep-alive
1.bp.blogspot.com/-uuBeAS0fcYY/UilswILCX9I/AAAAAAAABNM/CzGGn1I2f5M/s640/12.png
142.250.74.161200 OK 233 kB URL HTTP/1.1 1.bp.blogspot.com/-uuBeAS0fcYY/UilswILCX9I/AAAAAAAABNM/CzGGn1I2f5M/s640/12.png
IP 142.250.74.161:0
File type PNG image data, 640 x 397, 8-bit/color RGB, non-interlaced\012- data
Size 233 kB (233171 bytes)
Hash 01609970402519eebce44ded9464f967
81032ffaa4613673be910654ff7bac4a9e322f1d
2048af36ee81d4a31b1de94806ecd89feaeb7656a8f311a4191a59d55748479b
GET /-uuBeAS0fcYY/UilswILCX9I/AAAAAAAABNM/CzGGn1I2f5M/s640/12.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4d4"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="12.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 233171
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11589
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 03:46:05 GMT
Connection: keep-alive
3.bp.blogspot.com/-c3Cz2P6fvms/UjKtSNcYZxI/AAAAAAAABTM/Hy7G9U883Ys/s640/8.png
142.250.74.161200 OK 99 kB URL HTTP/1.1 3.bp.blogspot.com/-c3Cz2P6fvms/UjKtSNcYZxI/AAAAAAAABTM/Hy7G9U883Ys/s640/8.png
IP 142.250.74.161:0
File type PNG image data, 640 x 453, 8-bit/color RGB, non-interlaced\012- data
Hash 8230b48d796f6df031cd7bcc3c3625bb
ca7ba38bf24eb2742aa220460c4e50ec89871ea4
449f04736e0f4e17d001cc20eb6a0d7a77500b29484a3e726d6d273c0cd9494b
GET /-c3Cz2P6fvms/UjKtSNcYZxI/AAAAAAAABTM/Hy7G9U883Ys/s640/8.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v533"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="8.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 99143
X-XSS-Protection: 0
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 73823
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11589
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 03:46:05 GMT
Connection: keep-alive
3.bp.blogspot.com/-NY3ERMdwTVg/UinHYD-ZNCI/AAAAAAAABQk/Fdzqh-Z6PRE/s640/9.png
142.250.74.161200 OK 120 kB URL HTTP/1.1 3.bp.blogspot.com/-NY3ERMdwTVg/UinHYD-ZNCI/AAAAAAAABQk/Fdzqh-Z6PRE/s640/9.png
IP 142.250.74.161:0
File type PNG image data, 640 x 437, 8-bit/color RGB, non-interlaced\012- data
Size 120 kB (119638 bytes)
Hash d1544e31f46070253bd265efa463ee9a
bb6ec8ec34bd7476a65d44a45b0324db6dc705b5
b6c7b0db4f75cb03ea03e3edd5ef7f81a09a447858ba77febd60b031b3039669
GET /-NY3ERMdwTVg/UinHYD-ZNCI/AAAAAAAABQk/Fdzqh-Z6PRE/s640/9.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v50a"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 119638
X-XSS-Protection: 0
2.bp.blogspot.com/-HEQ-IOhfajo/UilsvDvp_KI/AAAAAAAABNE/_PRWfphHf4M/s640/13.png
142.250.74.161200 OK 192 kB URL HTTP/1.1 2.bp.blogspot.com/-HEQ-IOhfajo/UilsvDvp_KI/AAAAAAAABNE/_PRWfphHf4M/s640/13.png
IP 142.250.74.161:0
File type PNG image data, 640 x 402, 8-bit/color RGB, non-interlaced\012- data
Size 192 kB (191603 bytes)
Hash e01d2bd77a2f448958f736105beacd84
cdad900953e5c7cba3263a821d0460c167dc34c4
ec052e27a268bb09e5b5e8ef78b50e3f95bc26983d4f67992d9cfe89cab8602c
GET /-HEQ-IOhfajo/UilsvDvp_KI/AAAAAAAABNE/_PRWfphHf4M/s640/13.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4d2"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="13.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 191603
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11589
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 03:46:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 17nFm7AQdmRYS_af-EJ4XBVw8l3YudcphlpcZMveuVjvjhhYdkAQsw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:33:10 GMT
age: 18775
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:08:56 GMT
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
age: 20229
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/img/tmp/geoiphone.png
104.26.11.22200 OK 18 kB URL HTTP/2 www.widgeo.net/geocompteur/img/tmp/geoiphone.png
IP 104.26.11.22:0
File type PNG image data, 185 x 378, 8-bit/color RGBA, non-interlaced\012- data
Hash a8b6fe5a173e5c3720f39431ffd0c657
bdc6f24376e79a49be1d95d1923ea1ed8ba4b501
840548b7b62e2052c9c566b86aedbd80e3917e2ed70191fde9467f1fa7e3a573
GET /geocompteur/img/tmp/geoiphone.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:05 GMT
content-type: image/png
content-length: 17826
cache-control: public, max-age=2592000
expires: Sun, 01 Jan 2023 03:46:03 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zf8L7X%2BlgCtz0ytwvF4mDvouNZ5Y10FCI64okbegA0TQFUng5MtdqdNd%2FIbP3UkJLQ13gDmFs9%2BWzqvSJk0H30TuSLvvtlPMRgXv%2Fst5sE9taYMj8vctOz1wahBpzlYA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773112cbf999b4ee-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 22278
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1.bp.blogspot.com/-hQ1raQwvRNM/UinG2BdgJ-I/AAAAAAAABPc/tM9iigM9AW4/s640/12.png
142.250.74.161200 OK 170 kB URL HTTP/1.1 1.bp.blogspot.com/-hQ1raQwvRNM/UinG2BdgJ-I/AAAAAAAABPc/tM9iigM9AW4/s640/12.png
IP 142.250.74.161:0
File type PNG image data, 640 x 366, 8-bit/color RGB, non-interlaced\012- data
Size 170 kB (170328 bytes)
Hash a284978618386bedd99cb57e6113d17b
4abf9026a90d7d977dc176d509405126a6e57ad3
3bc6f8ec40ce051c015343f07488918432696344eb257bdadd8e9652c5fa9a10
GET /-hQ1raQwvRNM/UinG2BdgJ-I/AAAAAAAABPc/tM9iigM9AW4/s640/12.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4f8"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="12.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 170328
X-XSS-Protection: 0
1.bp.blogspot.com/-SOkXT0Lau78/UjKsouN3XVI/AAAAAAAABSg/aQOssgNNnb4/s640/4.png
142.250.74.161200 OK 319 kB URL HTTP/1.1 1.bp.blogspot.com/-SOkXT0Lau78/UjKsouN3XVI/AAAAAAAABSg/aQOssgNNnb4/s640/4.png
IP 142.250.74.161:0
File type PNG image data, 640 x 428, 8-bit/color RGB, non-interlaced\012- data
Size 319 kB (318772 bytes)
Hash 146cb08e5363d8626627eb8560e82689
ba67b2bfabba11c4a7d7cd0be07ce6b31e1cf6fc
d01d1d79c36040b13a20c6f77d52f1bff1e01f2664c42f8bf3bf560535bff6fb
GET /-SOkXT0Lau78/UjKsouN3XVI/AAAAAAAABSg/aQOssgNNnb4/s640/4.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v528"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 318772
X-XSS-Protection: 0
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82ea44d6cb116fb1f5752ce9bb87e345
f799dfd89a4f5a452dc837b8616549f578fb4184
e9087e7fce332289d67d4d5646d0233c2f2d871cc88dc1c51d5ea1e9f2fb5abd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15495
x-amzn-requestid: 977cdbce-3a9c-4006-a5a1-5c4c82bd4a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDIFxzIAMFzEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-4b2cb3a16ca745537a8caf8c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nwKxQKsw8g5zCzfMFu_XpOac5rhImez29TKrycGJzozZyHTzoCHASw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:20:06 GMT
age: 19559
etag: "f799dfd89a4f5a452dc837b8616549f578fb4184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e1a735e16f55c78fa75ae434294029
6c56f4015305eff04a99cec9758cd40bf4e5f704
26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 21426
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
2.bp.blogspot.com/-bX6Wgg9YPew/UiWf5QuHA9I/AAAAAAAABKk/gDmMCr4cBac/s640/12.png
142.250.74.161200 OK 161 kB URL HTTP/1.1 2.bp.blogspot.com/-bX6Wgg9YPew/UiWf5QuHA9I/AAAAAAAABKk/gDmMCr4cBac/s640/12.png
IP 142.250.74.161:0
File type PNG image data, 640 x 306, 8-bit/color RGB, non-interlaced\012- data
Size 161 kB (161326 bytes)
Hash b9158de7cc6e0f9e64af4f1720ad893e
376d43226b9af1478b8faa1bfde3fb774c0d0e80
8e1001a9ff1899d3d183d08dc7254d4861cd3d8c7a66075ceb4d9c008c625c5e
GET /-bX6Wgg9YPew/UiWf5QuHA9I/AAAAAAAABKk/gDmMCr4cBac/s640/12.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4aa"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="12.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 161326
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f1a1d1c61902f782da72ad648ef0822e
a9f41722a3e5180ec4019998b5f0fdb464f2aafb
f75b6732b286ec9b4694cd53c6a33f64732412c336425c1091cd5316380e26d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a40e191e2c32caa23c7ec1abea39e991
b03456fefb0156a48fae623cdc3c444c44d2481e
23abf43db4e7fafcd42f2114b823179fa4119c04f317cd0ee8c395e0688778cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3905
Cache-Control: max-age=106678
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Etag: "63886372-117"
Expires: Sat, 03 Dec 2022 09:24:03 GMT
Last-Modified: Thu, 01 Dec 2022 08:18:58 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f1a1d1c61902f782da72ad648ef0822e
a9f41722a3e5180ec4019998b5f0fdb464f2aafb
f75b6732b286ec9b4694cd53c6a33f64732412c336425c1091cd5316380e26d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/s2/photos/public/AIbEiAIAAABDCI6flJGH6dSWJCILdmNhcmRfcGhvdG8qKDNjM2I1ZWJmZWVjYzdlMmZmZTM4ZDg5NTg3ZDkwYjY0MjVmNzY3MDUwAUvpWhqgFL13qHK1L_u1o5e7jylb
142.250.74.132302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCI6flJGH6dSWJCILdmNhcmRfcGhvdG8qKDNjM2I1ZWJmZWVjYzdlMmZmZTM4ZDg5NTg3ZDkwYjY0MjVmNzY3MDUwAUvpWhqgFL13qHK1L_u1o5e7jylb
IP 142.250.74.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCI6flJGH6dSWJCILdmNhcmRfcGhvdG8qKDNjM2I1ZWJmZWVjYzdlMmZmZTM4ZDg5NTg3ZDkwYjY0MjVmNzY3MDUwAUvpWhqgFL13qHK1L_u1o5e7jylb HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 03:46:05 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu9tQoyfmyL_LNyMV3FJ6iEzdA1qilxyHj7V89KJKw=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-LyJd3WAj87M3cN1z2jlOgQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=vPXp2Q8hW34OnwYGARU3zP9RIRxn9BowQacmGH3lh_aRofmNpO_4ck2h-1oD300Oa8Ss9dM2Cs0uImoGFtSjhzQO0xHFMy9qaQ5nBGchMA6RUHm1rhVY1zvIa3T0stCgb3m7_V6dz3SP2vpTuyGyufSVOeFvzecbKbNdSrMgmUE; expires=Sat, 03-Jun-2023 03:46:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECIj94_qVp7n8zgEiC3ZjYXJkX3Bob3RvKigyZWQ4YWNhZTUzYTNiMjdkYjA5OGIzOGQ0NDMwMWJkMzMwNmRhMDczMAF3VyYdnU3kBRPTVv-2LAZI6_EzeA
142.250.74.132302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECIj94_qVp7n8zgEiC3ZjYXJkX3Bob3RvKigyZWQ4YWNhZTUzYTNiMjdkYjA5OGIzOGQ0NDMwMWJkMzMwNmRhMDczMAF3VyYdnU3kBRPTVv-2LAZI6_EzeA
IP 142.250.74.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECIj94_qVp7n8zgEiC3ZjYXJkX3Bob3RvKigyZWQ4YWNhZTUzYTNiMjdkYjA5OGIzOGQ0NDMwMWJkMzMwNmRhMDczMAF3VyYdnU3kBRPTVv-2LAZI6_EzeA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 03:46:05 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-nY-eTth4_txyHmgDIl9vnVB7MoH-wgcQJ-_d9TA=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-ONHqZ6ahttyYNMc57K7smw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=FJfWw8RDzEVXkUn9YIPUyI5OvOp0z_oDIM_aTdiOsWisms5NSVe5M7ImTt8X1pgWk6W6NYroCw2TBOjC92PBK1NKKT6NqN-ij3qYnIHsNRSV5f9droIODKqnHY7PDcV6wUKSQ1DXMmlKb68xPWqys7TiejvBoeNQFpTEutXd8AE; expires=Sat, 03-Jun-2023 03:46:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECI6pyrOj4MLIqQEiC3ZjYXJkX3Bob3RvKihmOTg4ODAzZjk0OTJmOTIwM2FlYTNkOWFhMTMxZDZlNzQ0ZmExOTM4MAGUaHQup-TJOBQmWB8RSZAzMhba1g
142.250.74.132302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECI6pyrOj4MLIqQEiC3ZjYXJkX3Bob3RvKihmOTg4ODAzZjk0OTJmOTIwM2FlYTNkOWFhMTMxZDZlNzQ0ZmExOTM4MAGUaHQup-TJOBQmWB8RSZAzMhba1g
IP 142.250.74.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECI6pyrOj4MLIqQEiC3ZjYXJkX3Bob3RvKihmOTg4ODAzZjk0OTJmOTIwM2FlYTNkOWFhMTMxZDZlNzQ0ZmExOTM4MAGUaHQup-TJOBQmWB8RSZAzMhba1g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 03:46:05 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8jG3JlBpDJAyWjLCWZpQYvkM3JdaKgfbn5EEvwkw=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-z9kGrdYIToFVNSZzxscHAw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=AXGgnHhIeP5R-O1rbyninlJZ5tE1t0_3D3ohI14npW2PxGUG4T-E74lc9xsFm8BOcILY7Mv_y166UXuDyUVv7SN_QPgA18zPBFcZW2-4Lmwq43rbN6Z9TJnROl-sTrZBiXvomcp3vnH1iN66nV491HzvgGNBchj9yen9fpZLPdQ; expires=Sat, 03-Jun-2023 03:46:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-cAQ93YFiJ5E/UilskKbaf_I/AAAAAAAABM8/cw5L55hYVF8/s640/11.png
142.250.74.161200 OK 222 kB URL HTTP/1.1 2.bp.blogspot.com/-cAQ93YFiJ5E/UilskKbaf_I/AAAAAAAABM8/cw5L55hYVF8/s640/11.png
IP 142.250.74.161:0
File type PNG image data, 640 x 399, 8-bit/color RGB, non-interlaced\012- data
Size 222 kB (221666 bytes)
Hash ef487bd32771befe225e3aa6b4c17569
021ab87b5d26142e217e73c05f24402a2a268227
5e3f2a287853f5027e5edc8743cf840891f025abfa210ce7f9acc20f168bb34d
GET /-cAQ93YFiJ5E/UilskKbaf_I/AAAAAAAABM8/cw5L55hYVF8/s640/11.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4d0"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="11.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 221666
X-XSS-Protection: 0
www.google.com/s2/photos/public/AIbEiAIAAABECLDN1sL5obWi_gEiC3ZjYXJkX3Bob3RvKig4MGI3NmYzMGVlYTQ3Yzc1ZjA5MDI1ZDJiNjE5MGJjZDg2Y2FhZGM3MAE7KsZGhMsKGBRO1N0j_9vHOL5J2w
142.250.74.132302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECLDN1sL5obWi_gEiC3ZjYXJkX3Bob3RvKig4MGI3NmYzMGVlYTQ3Yzc1ZjA5MDI1ZDJiNjE5MGJjZDg2Y2FhZGM3MAE7KsZGhMsKGBRO1N0j_9vHOL5J2w
IP 142.250.74.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECLDN1sL5obWi_gEiC3ZjYXJkX3Bob3RvKig4MGI3NmYzMGVlYTQ3Yzc1ZjA5MDI1ZDJiNjE5MGJjZDg2Y2FhZGM3MAE7KsZGhMsKGBRO1N0j_9vHOL5J2w HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 03:46:05 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu9gVewP1TKVpegxcg8utQ0eBi7tMuPNP167EyGRWQ=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-OcuNo99x43mWMHBd4xBjZA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=DEsn1YfzuqYYoIOWMzdjgn7NQKaV9e1le34yOJFlBLKpgRZ7MFTeOLEwoOhdU-XjR9ZSk3Pt-1l0_9sfVkdxUBnM52mNeV0y6mKcWHySdR89HBy2lLLr6Qrr_NBZLWYUxYjlX0FgUnpgaJS7kzadkDNeF7e2GrwOUnkYr1W-U3U; expires=Sat, 03-Jun-2023 03:46:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a40e191e2c32caa23c7ec1abea39e991
b03456fefb0156a48fae623cdc3c444c44d2481e
23abf43db4e7fafcd42f2114b823179fa4119c04f317cd0ee8c395e0688778cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3905
Cache-Control: max-age=106678
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Etag: "63886372-117"
Expires: Sat, 03 Dec 2022 09:24:03 GMT
Last-Modified: Thu, 01 Dec 2022 08:18:58 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
www.google.com/s2/photos/public/AIbEiAIAAABECOrGgpP0leihygEiC3ZjYXJkX3Bob3RvKig3NTA5MjA0ZmFiYmMxMzIxMTBjMDcxOWZkMDc2MDcwMmY0NzlhY2E0MAELhtXBT4ohtMq8956dhX3C7rYtmQ
142.250.74.132302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECOrGgpP0leihygEiC3ZjYXJkX3Bob3RvKig3NTA5MjA0ZmFiYmMxMzIxMTBjMDcxOWZkMDc2MDcwMmY0NzlhY2E0MAELhtXBT4ohtMq8956dhX3C7rYtmQ
IP 142.250.74.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECOrGgpP0leihygEiC3ZjYXJkX3Bob3RvKig3NTA5MjA0ZmFiYmMxMzIxMTBjMDcxOWZkMDc2MDcwMmY0NzlhY2E0MAELhtXBT4ohtMq8956dhX3C7rYtmQ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 03:46:05 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-3XoEBRFRV1N37BxRp6RfUx6NagWc0DzqeghkMSg=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-uE_8K674SdxNxHfjbDUaGA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=mGncqi2KezVAhwdshZBLh5ERpmYkuUlPYS7KDCMXRgr1pKbKc2O-75MosFL_PKOESP9CCVWfxJIT0r5DtajG3yoLyQkyz4NMH2h7F1g5btNwmKusDzP_rVYaJoAz_zwFrbMEc4_Do1-sFfYnKYI_jn-S3zmp6I-V50fwtg4h180; expires=Sat, 03-Jun-2023 03:46:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9caeefc49be26de4b50c14df1aace81f
ef836496e49f843f0e4c2dc991c314aad13f0f2e
83203278dadec9319a72ccb142c413696d8bd09a25f1b6c8d1edef20405e90f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "83203278DADEC9319A72CCB142C413696D8BD09A25F1B6C8D1EDEF20405E90F0"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18872
Expires: Fri, 02 Dec 2022 09:00:37 GMT
Date: Fri, 02 Dec 2022 03:46:05 GMT
Connection: keep-alive
3.bp.blogspot.com/-8LvK0FhBplk/UinG8PrMUGI/AAAAAAAABPs/qxLzjtYnwSU/s640/2.png
142.250.74.161200 OK 149 kB URL HTTP/1.1 3.bp.blogspot.com/-8LvK0FhBplk/UinG8PrMUGI/AAAAAAAABPs/qxLzjtYnwSU/s640/2.png
IP 142.250.74.161:0
File type PNG image data, 640 x 433, 8-bit/color RGB, non-interlaced\012- data
Size 149 kB (148911 bytes)
Hash d52bac1581489db83d89fab8afbdfd71
a4e29bd407ec95913e27e0801cc36f9dfd09de45
0d8161dcda095f1bc8b795a687a8684a8846af748076efcd4a87db32539695ee
GET /-8LvK0FhBplk/UinG8PrMUGI/AAAAAAAABPs/qxLzjtYnwSU/s640/2.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4fc"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 148911
X-XSS-Protection: 0
1.bp.blogspot.com/-BjPu6b1wuL8/Uils9-XFAzI/AAAAAAAABNs/eTW_6wPR1is/s640/2.png
142.250.74.161200 OK 187 kB URL HTTP/1.1 1.bp.blogspot.com/-BjPu6b1wuL8/Uils9-XFAzI/AAAAAAAABNs/eTW_6wPR1is/s640/2.png
IP 142.250.74.161:0
File type PNG image data, 640 x 435, 8-bit/color RGB, non-interlaced\012- data
Size 187 kB (187146 bytes)
Hash e8315f60c4425e6d9ca046fa4bebd88c
20a055e417d101da41be89fea661c3621904104d
acde407972381530b14194970540a54c00ad97b67b4f35011900a6cffab10aaa
GET /-BjPu6b1wuL8/Uils9-XFAzI/AAAAAAAABNs/eTW_6wPR1is/s640/2.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4dc"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 187146
X-XSS-Protection: 0
my.rtmark.net/gid.js?userId=6c9aaf0336a54fbcbe1fc34dd08a2bbe
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=6c9aaf0336a54fbcbe1fc34dd08a2bbe
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 1277d4cca76a60ba74c8e65355801856
8f5c0268d631df75eac61f217eecc35131f5633b
82ef297743163128bf71cf64bb6f4fb6df1fbcea26bfe396f0f6f6ad4e8b8aff
GET /gid.js?userId=6c9aaf0336a54fbcbe1fc34dd08a2bbe HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:46:05 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://safehacking4mas.blogspot.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=6c9aaf0336a54fbcbe1fc34dd08a2bbe; expires=Sat, 02 Dec 2023 03:46:05 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
2.bp.blogspot.com/-Qxrq-XJQq_w/UZpq16Z6lFI/AAAAAAAAANE/B_PVS6qQamw/s45-c/untitled.JPG
142.250.74.161200 OK 1.7 kB URL HTTP/2 2.bp.blogspot.com/-Qxrq-XJQq_w/UZpq16Z6lFI/AAAAAAAAANE/B_PVS6qQamw/s45-c/untitled.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 418618f81b91331a1a100832f92527cc
71c664a26bf2e60cd080e925700061c7619df1a6
25164b2c7fa9f0877eb39457edd3a4eb147807875e2cd7fc474952766d028961
GET /-Qxrq-XJQq_w/UZpq16Z6lFI/AAAAAAAAANE/B_PVS6qQamw/s45-c/untitled.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vd2"
expires: Sat, 03 Dec 2022 03:46:05 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="untitled.JPG"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 03:46:05 GMT
server: fife
content-length: 1713
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 081f27e87b02fb79b3453a116e731959
03e52819d86a0fa523e77ed24126e76e5369bd21
10283df9fce094267720532246e9d80b3c2061425f657497652e71de4c95de06
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 01:33:19 GMT
Expires: Tue, 06 Dec 2022 01:33:18 GMT
Etag: "03e52819d86a0fa523e77ed24126e76e5369bd21"
Cache-Control: max-age=337032,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773112d099e60b31-OSL
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
37.48.68.71200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 37.48.68.71:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 932
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 02 Dec 2022 03:46:05 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://safehacking4mas.blogspot.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f1a1d1c61902f782da72ad648ef0822e
a9f41722a3e5180ec4019998b5f0fdb464f2aafb
f75b6732b286ec9b4694cd53c6a33f64732412c336425c1091cd5316380e26d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tzegilo.com/stattag.js
172.67.194.45200 OK 7.0 kB IP 172.67.194.45:0
File type ASCII text, with very long lines (12966), with no line terminators
Hash 81853dfc5c898d21128811deab469e1d
322ef38d077db434978f03b6091f1058d61766ca
3abffdfa0836da694ef63490f8b705d466804a69f14c594c3b9dbf06b484bb48
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:05 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5306
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JkHPUpI4s6121dDOBZy7ZJQIDd0z9J0%2F%2BGxV6BcSaT5Y18WlV0dJ56%2F73oSF6BFzUPWL4mGEeuvjAa9Bu9%2B%2BfJmT0STKBAE45l4mCD93DIds%2FiOSh%2FJPpxMCUHyvrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773112cf09ac0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
3.bp.blogspot.com/-c9RqMbBluxk/TqwAeNnkzhI/AAAAAAAAAfY/RNXDZYfR62g/s45-c/299322_184190378325708_100002042406320_398246_707100420_n.jpg
142.250.74.161200 OK 1.7 kB URL HTTP/2 3.bp.blogspot.com/-c9RqMbBluxk/TqwAeNnkzhI/AAAAAAAAAfY/RNXDZYfR62g/s45-c/299322_184190378325708_100002042406320_398246_707100420_n.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 9ddcfb9eb45fd09f00ae8c83b53b6dcf
be46eb17302241bae1e3aca24b13e1d2fde65253
db47a45b3debf5460d1735c97535eb0006baca63653e8b13db23a83f6174fdc3
GET /-c9RqMbBluxk/TqwAeNnkzhI/AAAAAAAAAfY/RNXDZYfR62g/s45-c/299322_184190378325708_100002042406320_398246_707100420_n.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f6"
expires: Sat, 03 Dec 2022 03:46:05 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="299322_184190378325708_100002042406320_398246_707100420_n.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 03:46:05 GMT
server: fife
content-length: 1731
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-6AZiJQ5Xbuc/TvYK214Vx8I/AAAAAAAAADI/uumMbMUsmvQ/s45-c/a.jpg
142.250.74.161200 OK 1.6 kB URL HTTP/2 1.bp.blogspot.com/-6AZiJQ5Xbuc/TvYK214Vx8I/AAAAAAAAADI/uumMbMUsmvQ/s45-c/a.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 4bacbae331523525d191d2dcf57f4dba
e84ea2572eeb15c04e0322499285932b75c48a71
4e3107fae2b50dc9959784ceefb156d83aa4f534df04c66b4dfc2a9d8c54403c
GET /-6AZiJQ5Xbuc/TvYK214Vx8I/AAAAAAAAADI/uumMbMUsmvQ/s45-c/a.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v32"
expires: Sat, 03 Dec 2022 03:46:05 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="a.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 03:46:05 GMT
server: fife
content-length: 1639
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-nGFfPEKLSC8/Tc5GbVhSqkI/AAAAAAAAAHQ/Lb6TGtBZNiY/s300/Favicon.png
142.250.74.161200 OK 1.2 kB URL HTTP/1.1 4.bp.blogspot.com/-nGFfPEKLSC8/Tc5GbVhSqkI/AAAAAAAAAHQ/Lb6TGtBZNiY/s300/Favicon.png
IP 142.250.74.161:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 1da5eda143506695c18215a9dfa5d6a5
dfd9f622576ee2593273133334f4038b4b80cfba
f6d6609cc138db307b9872e39ce22be8cca4c3f5f21af65edfc549065792a5bd
GET /-nGFfPEKLSC8/Tc5GbVhSqkI/AAAAAAAAAHQ/Lb6TGtBZNiY/s300/Favicon.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v74"
Expires: Sat, 03 Dec 2022 03:46:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Favicon.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:05 GMT
Server: fife
Content-Length: 1162
X-XSS-Protection: 0
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=8215
date: Fri, 02 Dec 2022 03:46:05 GMT
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js?hash=7ecd5989bc13ae74e6b57ff73120e310
157.240.240.1200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=7ecd5989bc13ae74e6b57ff73120e310
IP 157.240.240.1:0
File type ASCII text, with very long lines (18605)
Hash 319e286bbf892cdba1a5f767acc9c11e
577cbd860015cbe70b8f446cb19eec26efb1b49a
f8c29b5192c3a5c5bc4ba23c419461d78d6a813a920fef211048a9f1d554fc0d
GET /en_US/all.js?hash=7ecd5989bc13ae74e6b57ff73120e310 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 852ad348612dfda6d5c8d6bbaed73d05
etag: "5e30a014bda59414f23a8593efc5c3ca"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 01 Dec 2023 22:03:07 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: MZ4oa7+JLNuhpfdnrMnBHg==
x-fb-debug: EYu/krtmV8VVhqQdU10O+ejywj5HwRRpsIJbBI4N1SCHXsAYuvI6VGSR8jZHMpa5l+uFB9VBAQbyHVIuHWXyAA==
priority: u=3,i
content-length: 88226
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 03:46:05 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=638974f9a2fedbdb&bkl=0&bl=1&pdt=888&sid=638974f9a2fedbdb&pub=xa-51c85398355f5f8b&rev=v8.28.8-wp&ln=en&pc=blg&cb=0&ab=-&dp=safehacking4mas.blogspot.com&fp=search%2Flabel%2FSocial%2520Engineering&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=KEYWORD1%2CKEYWORD2%2C%2C%2C&colc=1669952762694&jsl=129&uvs=638974f9b3f1b052000&skipb=1&callback=addthis.cbs.jsonp__52884319705294770
23.38.200.123200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=638974f9a2fedbdb&bkl=0&bl=1&pdt=888&sid=638974f9a2fedbdb&pub=xa-51c85398355f5f8b&rev=v8.28.8-wp&ln=en&pc=blg&cb=0&ab=-&dp=safehacking4mas.blogspot.com&fp=search%2Flabel%2FSocial%2520Engineering&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=KEYWORD1%2CKEYWORD2%2C%2C%2C&colc=1669952762694&jsl=129&uvs=638974f9b3f1b052000&skipb=1&callback=addthis.cbs.jsonp__52884319705294770
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash f1c876a9a47d1c568f52ccf557f32c35
eed473305e98617df3f71960b287e158bb83e1ba
507c31852a9af510dc8beacab256f767eebff425b0cb6d791dce28d2634db63f
GET /live/red_lojson/300lo.json?si=638974f9a2fedbdb&bkl=0&bl=1&pdt=888&sid=638974f9a2fedbdb&pub=xa-51c85398355f5f8b&rev=v8.28.8-wp&ln=en&pc=blg&cb=0&ab=-&dp=safehacking4mas.blogspot.com&fp=search%2Flabel%2FSocial%2520Engineering&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=KEYWORD1%2CKEYWORD2%2C%2C%2C&colc=1669952762694&jsl=129&uvs=638974f9b3f1b052000&skipb=1&callback=addthis.cbs.jsonp__52884319705294770 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Fri, 02 Dec 2022 03:46:05 GMT
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/xa-51c85398355f5f8b/_ate.track.config_resp
23.38.200.123200 OK 47 B URL HTTP/2 v1.addthisedge.com/live/boost/xa-51c85398355f5f8b/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 24c668b115f75423506f2ea21d1b49c2
14f956ddb2d9e8b072cd5f605c3f39526490b391
b542daef470a9730029174f975ce3ce236b3e58bf9183b11956acce994b13a16
GET /live/boost/xa-51c85398355f5f8b/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-disposition: attachment; filename=1.txt
content-encoding: gzip
content-length: 47
cache-control: public, max-age=55, s-maxage=86400
date: Fri, 02 Dec 2022 03:46:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
s7.addthis.com/static/counter.d27508c102582d608697.js
23.38.200.123200 OK 8.3 kB URL HTTP/2 s7.addthis.com/static/counter.d27508c102582d608697.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (24530), with no line terminators
Hash 47fcfb824ad738c29e3195451d5c755e
8a955f27a30f4a8c9cde94567c041040e3c60d61
1508b4ae159e51231031ce58f3a5c31aca11a438f4ea3c12ea3581bbc97f4305
GET /static/counter.d27508c102582d608697.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5fd2"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 8265
date: Fri, 02 Dec 2022 03:46:05 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=d6sz228571td412385565w7r1nfeu184
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=d6sz228571td412385565w7r1nfeu184
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 1277d4cca76a60ba74c8e65355801856
8f5c0268d631df75eac61f217eecc35131f5633b
82ef297743163128bf71cf64bb6f4fb6df1fbcea26bfe396f0f6f6ad4e8b8aff
GET /gid.js?userId=d6sz228571td412385565w7r1nfeu184 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Cookie: ID=6c9aaf0336a54fbcbe1fc34dd08a2bbe
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:46:06 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://safehacking4mas.blogspot.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=6c9aaf0336a54fbcbe1fc34dd08a2bbe; expires=Sat, 02 Dec 2023 03:46:06 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=d6sz228571td412385565w7r1nfeu184
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=d6sz228571td412385565w7r1nfeu184
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 1277d4cca76a60ba74c8e65355801856
8f5c0268d631df75eac61f217eecc35131f5633b
82ef297743163128bf71cf64bb6f4fb6df1fbcea26bfe396f0f6f6ad4e8b8aff
GET /gid.js?userId=d6sz228571td412385565w7r1nfeu184 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Cookie: ID=6c9aaf0336a54fbcbe1fc34dd08a2bbe
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:46:06 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://safehacking4mas.blogspot.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=6c9aaf0336a54fbcbe1fc34dd08a2bbe; expires=Sat, 02 Dec 2023 03:46:06 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
onmarshtompor.com/?rb=3IKCFll-JSBkX9qtkYYpnhZMS1D1-TsYe79OQVwDuLhy2-35Qw6c-hqkb4QUhkscd-VAEkmE54hLTmoDeXUOO5hEINhqmu_m8xbFFnT3NzUYEg-PqOMhtb0RgIuXlxjOn0xlEqMpexMTBxaDjljMLMgaOKZeCCF3ghM1eQs8gd1vydPAaIs98VCDEhS6yrCDeyid9jzHM3OS4F-liNO_d-3ZPaBHArlz6Zy5SdKg0ja27QAmZs6lKvQ7RE82yG8k&request_ab2=96003&zoneid=3294720&js_build=iclick-v1.457.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=7&pl=http%3A%2F%2Fsafehacking4mas.blogspot.com%2Fsearch%2Flabel%2FSocial%2520Engineering%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.457.0&bs=76f358f9-dd26-48d5-94b5-88515b7e99d0&userId=d6sz228571td412385565w7r1nfeu184&m=link
139.45.197.243200 OK 1.4 kB URL HTTP/1.1 onmarshtompor.com/?rb=3IKCFll-JSBkX9qtkYYpnhZMS1D1-TsYe79OQVwDuLhy2-35Qw6c-hqkb4QUhkscd-VAEkmE54hLTmoDeXUOO5hEINhqmu_m8xbFFnT3NzUYEg-PqOMhtb0RgIuXlxjOn0xlEqMpexMTBxaDjljMLMgaOKZeCCF3ghM1eQs8gd1vydPAaIs98VCDEhS6yrCDeyid9jzHM3OS4F-liNO_d-3ZPaBHArlz6Zy5SdKg0ja27QAmZs6lKvQ7RE82yG8k&request_ab2=96003&zoneid=3294720&js_build=iclick-v1.457.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=7&pl=http%3A%2F%2Fsafehacking4mas.blogspot.com%2Fsearch%2Flabel%2FSocial%2520Engineering%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.457.0&bs=76f358f9-dd26-48d5-94b5-88515b7e99d0&userId=d6sz228571td412385565w7r1nfeu184&m=link
IP 139.45.197.243:0
File type JSON data\012- , ASCII text, with very long lines (1744), with no line terminators
Hash 5a6b8338bc1627246b687f8c2b287232
e8dab86a9d68e955edef173ad503b5f26060d142
f6532e0743b831b846ee73ff5ae2bac33c0944dcff890ff7e208c705a60c784f
GET /?rb=3IKCFll-JSBkX9qtkYYpnhZMS1D1-TsYe79OQVwDuLhy2-35Qw6c-hqkb4QUhkscd-VAEkmE54hLTmoDeXUOO5hEINhqmu_m8xbFFnT3NzUYEg-PqOMhtb0RgIuXlxjOn0xlEqMpexMTBxaDjljMLMgaOKZeCCF3ghM1eQs8gd1vydPAaIs98VCDEhS6yrCDeyid9jzHM3OS4F-liNO_d-3ZPaBHArlz6Zy5SdKg0ja27QAmZs6lKvQ7RE82yG8k&request_ab2=96003&zoneid=3294720&js_build=iclick-v1.457.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=7&pl=http%3A%2F%2Fsafehacking4mas.blogspot.com%2Fsearch%2Flabel%2FSocial%2520Engineering%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.457.0&bs=76f358f9-dd26-48d5-94b5-88515b7e99d0&userId=d6sz228571td412385565w7r1nfeu184&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://safehacking4mas.blogspot.com/
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 03:46:06 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 1365192839cbfa252464ed9730aa6dc1
Access-Control-Allow-Origin: http://safehacking4mas.blogspot.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=d6sz228571td412385565w7r1nfeu184; expires=Sat, 02 Dec 2023 03:46:06 GMT; path=/
oaidts=1669952766; expires=Sat, 02 Dec 2023 03:46:06 GMT; path=/
syncedCookie=true; expires=Fri, 09 Dec 2022 03:46:06 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fbypassing-antivirus-using-multi.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309bypassingantivirususingmultihtml0
23.38.200.123200 OK 107 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fbypassing-antivirus-using-multi.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309bypassingantivirususingmultihtml0
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash c164782498d53270ca5b4bb400c68724
91bf8ab2d4bc3f4de879acf0dfa209bc9b147c97
9ea0b2aadd9d4499cf2dcfa14e742a8d547b561bd791812804ad923a194daa90
GET /url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fbypassing-antivirus-using-multi.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309bypassingantivirususingmultihtml0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: safehacking4mas.blogspot.com/2013/09/bypassing-antivirus-using-multi.html
last-modified: Fri, 02 Dec 2022 03:46:06 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 107
date: Fri, 02 Dec 2022 03:46:06 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhack-windows-vista78-and-above-pc-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309hackwindowsvista78andabovepcusinghtml0
23.38.200.123200 OK 114 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhack-windows-vista78-and-above-pc-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309hackwindowsvista78andabovepcusinghtml0
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 665f11808528bfda30d1bf2f26f0ab4d
6527721285475b1308ed288b2f708416bdd63b4c
0837f3dde08accf6c691197c247bfad0b39346e1459b6b4c39c9689462e3d39d
GET /url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhack-windows-vista78-and-above-pc-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309hackwindowsvista78andabovepcusinghtml0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: safehacking4mas.blogspot.com/2013/09/hack-windows-vista78-and-above-pc-using.html
last-modified: Fri, 02 Dec 2022 03:46:06 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 114
date: Fri, 02 Dec 2022 03:46:06 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhack-any-windows-pc-using-usb-device.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309hackanywindowspcusingusbdevicehtml0
23.38.200.123200 OK 111 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhack-any-windows-pc-using-usb-device.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309hackanywindowspcusingusbdevicehtml0
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash f02b7d57caabe57f9c18f07f12acc78f
3a05c8a20ed903efd7082843828a31ccfb0289f3
af4a1d42bf705e941b3a6b3a2520937439a820b052b3f0caca1902bf066bd9ff
GET /url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhack-any-windows-pc-using-usb-device.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309hackanywindowspcusingusbdevicehtml0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: safehacking4mas.blogspot.com/2013/09/hack-any-windows-pc-using-usb-device.html
last-modified: Fri, 02 Dec 2022 03:46:06 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 111
date: Fri, 02 Dec 2022 03:46:06 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-gmail-facebook-with-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackgmailfacebookwithusinghtml0
23.38.200.123200 OK 108 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-gmail-facebook-with-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackgmailfacebookwithusinghtml0
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash b40fd321ea564ba6477a2925adc4d707
1619f056cdcb46ca84694756f2a113fe96fec454
73e73ac096ae06f3e0a487093579644e04cd1a26c7eb7a82f06ace33fc6dcd8d
GET /url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-gmail-facebook-with-using.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackgmailfacebookwithusinghtml0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: safehacking4mas.blogspot.com/2013/09/how-to-hack-gmail-facebook-with-using.html
last-modified: Fri, 02 Dec 2022 03:46:06 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 108
date: Fri, 02 Dec 2022 03:46:06 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-email-using-web-jacking.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackemailusingwebjackinghtml0
23.38.200.123200 OK 105 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-email-using-web-jacking.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackemailusingwebjackinghtml0
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 92a9e0868cbfbd028ba750d505ef2191
8e5a0fadac0c6ec6ca404dab6e847541a47fe333
5b63c4b127bc0e5e903609c47404069227f488231828e1e2eaf7fb2ff90f0c47
GET /url/shares.json?url=http%3A%2F%2Fsafehacking4mas.blogspot.com%2F2013%2F09%2Fhow-to-hack-email-using-web-jacking.html&callback=_ate.cbs.sc_httpsafehacking4masblogspotcom201309howtohackemailusingwebjackinghtml0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: safehacking4mas.blogspot.com/2013/09/how-to-hack-email-using-web-jacking.html
last-modified: Fri, 02 Dec 2022 03:46:06 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 105
date: Fri, 02 Dec 2022 03:46:06 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.widgeo.net/tcm.js
104.26.11.22200 OK 0 B IP 104.26.11.22:0
GET /tcm.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:04 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3693
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 06:42:01 GMT
last-modified: Wed, 12 Oct 2022 00:08:47 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 507842
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j9G3jZwKatVtndKCvUy9q9DV8dIGZWQYx%2F0VbQtcPZlTkC7LLBn5%2BcrpOhUjj76mLdG6XLsbL5l%2Fl%2BAeiqN6zQAanhOkQOrATYhtqhMaX8mUfRszXAzUHlzsZJEJdu7W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773112c97896b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
3.bp.blogspot.com/-iJ_S_4ZDaUg/UiWf5yRI6rI/AAAAAAAABKs/5gzZ55uKOFw/s640/13.png
142.250.74.161200 OK 0 B URL HTTP/1.1 3.bp.blogspot.com/-iJ_S_4ZDaUg/UiWf5yRI6rI/AAAAAAAABKs/5gzZ55uKOFw/s640/13.png
IP 142.250.74.161:0
GET /-iJ_S_4ZDaUg/UiWf5yRI6rI/AAAAAAAABKs/5gzZ55uKOFw/s640/13.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4ac"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="13.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 161872
X-XSS-Protection: 0
www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
104.26.11.22200 OK 0 B URL HTTP/2 www.widgeo.net/geocompteur/css/geo_css.php?c=geoiphone&size=
IP 104.26.11.22:0
GET /geocompteur/css/geo_css.php?c=geoiphone&size= HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:04 GMT
content-type: text/css;charset=UTF-8
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 03:46:03 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hfks4LERBysnVMazrjbvOTgDTFkebLXPPMoz10oGhqjNhoigidfMU91SLnR31gM2YMf3MTQLkDqGZb66rE0V3vsvYQ%2BPGjG5gXP%2FSzFEeIr3dBpEDOn%2FsUAveMn7kYjU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773112ca68ecb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.457.0
139.45.197.234200 OK 0 B URL HTTP/2 bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.457.0
IP 139.45.197.234:0
GET /5/3294720/?oo=1&js_build=iclick-v1.457.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://safehacking4mas.blogspot.com
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:46:04 GMT
content-type: application/json
x-trace-id: 45db632104b5a429752625929f854217
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: http://safehacking4mas.blogspot.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=6c9aaf0336a54fbcbe1fc34dd08a2bbe; expires=Sat, 02 Dec 2023 03:46:04 GMT; path=/; secure; SameSite=None
oaidts=1669952764; expires=Sat, 02 Dec 2023 03:46:04 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
3.bp.blogspot.com/-LIPJaW26snA/UjLXwnCNL8I/AAAAAAAABVE/erg-JlrMwLI/s640/1.png
142.250.74.161200 OK 0 B URL HTTP/1.1 3.bp.blogspot.com/-LIPJaW26snA/UjLXwnCNL8I/AAAAAAAABVE/erg-JlrMwLI/s640/1.png
IP 142.250.74.161:0
GET /-LIPJaW26snA/UjLXwnCNL8I/AAAAAAAABVE/erg-JlrMwLI/s640/1.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v552"
Expires: Sat, 03 Dec 2022 03:46:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 03:46:04 GMT
Server: fife
Content-Length: 299941
X-XSS-Protection: 0
www.widgeo.net/hitparade.php?pagexiti=geoiphone
104.26.11.22200 OK 0 B URL HTTP/2 www.widgeo.net/hitparade.php?pagexiti=geoiphone
IP 104.26.11.22:0
GET /hitparade.php?pagexiti=geoiphone HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:04 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=180
expires: Fri, 02 Dec 2022 03:49:03 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wSvw5ugNsaGPku%2B21kLgo8umU3iqQpq667XMeqIqn7i%2BStgvajrP8C9zdmGIPCDZH78os5UjeMWqcmeYfYnEQ0qxXKZZXnrjU8GMfvB%2FkSH7cl0LID3rIkOBcUy6RAqx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773112c93885b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/geowidget_js.js
104.26.11.22200 OK 0 B URL HTTP/2 www.widgeo.net/geocompteur/geowidget_js.js
IP 104.26.11.22:0
GET /geocompteur/geowidget_js.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:04 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2217
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 12:58:55 GMT
last-modified: Thu, 13 Feb 2020 12:35:42 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 226028
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0oEQA7k41VHWRXxqpBF4AQSWPONES9JMK6tZF%2FdKwF%2FUnNi4ELm9373hrCzvdfGBAe%2FdmVJ9ia4swFWsKAilecyLBRqSAyAXzYQMeEXFLiJby58HSYYaPUUrr6Zgly8K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773112cbf99ab4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
inklinkor.com/tag.min.js
104.21.91.63200 OK 0 B IP 104.21.91.63:0
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safehacking4mas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:04 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 29c41e9536ba4127ff5cf2898239e38c
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 14:00:16 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Sat, 03 Dec 2022 03:44:45 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 79
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UEgaCRin31%2BTbflCIpcXbLMikQkYB1njmHuOUyben48f8XcTya7kTjdKgwQWuPVeZ73mxjbL9bL6dgCMzMSxY1Z86tv5YlKKJdBCZy%2BuoR8e6UWPEyVWqMBXlZ1VqApS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773112c9d86c0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2