r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9461
Expires: Tue, 04 Oct 2022 17:05:59 GMT
Date: Tue, 04 Oct 2022 14:28:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 13:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pTEKJpojVAMsJWfyjQFsbKiIyG8-Ixk5pxD3Ga4aqRSWS6i7d8G3RQ==
Age: 2474
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PqoMW7uDTDRc-WbIpKyM9fe89JtVEGG-sbIcny4BExMLnRKXmLAbDg==
age: 32391
X-Firefox-Spdy: h2
233jeraldobrien.blogspot.com/2022/03/florence-pugh-filme-fernsehsendungen.html
142.250.74.161301 Moved Permanently 221 B URL HTTP/1.1 233jeraldobrien.blogspot.com/2022/03/florence-pugh-filme-fernsehsendungen.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6fe86e1e233206515f613ce7c0015a1e
c9dcd6e47fb1ea703a136fe1e86d2eb37fa012f8
fb4dc2428b8dcc8d8212a6eba8445847789150d6e8c999567eca61d470a11be6
GET /2022/03/florence-pugh-filme-fernsehsendungen.html HTTP/1.1
Host: 233jeraldobrien.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://233jeraldobrien.blogspot.com/2022/03/florence-pugh-filme-fernsehsendungen.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Tue, 04 Oct 2022 14:28:18 GMT
Expires: Tue, 04 Oct 2022 14:28:18 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 221
Server: GSE
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 14:28:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 938ca8d04dae51b68f67cb6b99851772
8a3956985c77128a745c8b50bf63ba9a1085d195
f5e23e685fda24bd65f31a39291ab9006074bf8c0b946de073297129515fe571
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 13:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 14:17:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5GDyDo_LrE5iJ6x683BaLMsY_yafX9dzTs-KZRkkV7oJeYKd6j2hKQ==
Age: 3526
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5348
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:19 GMT
Last-Modified: Tue, 04 Oct 2022 12:59:11 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.41.98.34101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.98.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zgBJw01VFD++SrLlBTJZIQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sQPwtovC2PHKN84o+Ac7bCaSlIA=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 938ca8d04dae51b68f67cb6b99851772
8a3956985c77128a745c8b50bf63ba9a1085d195
f5e23e685fda24bd65f31a39291ab9006074bf8c0b946de073297129515fe571
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (56656)
Hash 5c32368e2726220885c82f35b6fb4e78
bb3909d2aaca84d895296187aeaea024c76f46ec
53ceda316a9da4b956909214bb1bdaf76d2b2e3d2037614a13b6749e1e5c9e17
GET /ajax/libs/font-awesome/5.11.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:20 GMT
content-type: text/css; charset=utf-8
content-length: 10022
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-de0a"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1700970
expires: Sun, 24 Sep 2023 14:28:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v%2FX9PuacKRZkHfSnKxCrkOh0F0m5TrIy3CrSYHAG7WDOPKH%2FIQdex5%2Bp3vyq4OYXxLGkqpJoFaEVC2QRIscEyzXkZJW%2BSc2W1OjUGxi%2BO9o55C2gGrwMo2nKJw1c4r6nX%2FoSxfwM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 754e9a796b5db503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 589d830dbd20c3dcf601bf7a2fe7fd29
e6fc4f0062189aee4c8616949f86571db0a92ff5
10137bb52117be557fae9e1cf90fdf106786da04f6d799b19e2c3100aeafdd61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 589d830dbd20c3dcf601bf7a2fe7fd29
e6fc4f0062189aee4c8616949f86571db0a92ff5
10137bb52117be557fae9e1cf90fdf106786da04f6d799b19e2c3100aeafdd61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
216.58.207.201200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 02:06:45 GMT
expires: Sat, 30 Sep 2023 02:06:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 29 Sep 2022 23:51:35 GMT
content-type: text/javascript
age: 390095
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v9/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v9/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7968, version 1.0\012- data
Hash 1a280523d375e9358d5229df34fc8e94
eec7a97bc1319b123a7addb438fa8a231469b511
fab32ccef85408b763c899ad7c0b910c96c76dc9ed7158ce304fdcd3c0bf8388
GET /s/poppins/v9/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://233jeraldobrien.blogspot.com
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7968
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 05:36:39 GMT
expires: Wed, 04 Oct 2023 05:36:39 GMT
cache-control: public, max-age=31536000
age: 31901
last-modified: Tue, 08 Oct 2019 21:22:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v9/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v9/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7836, version 1.0\012- data
Hash aa4405ed937295296cf8510f437628e0
3b83f2e166868a65d6000c86a34dfbeb4cb1482b
07d2b7c2df967b7820b8ce99be3f7db1a1db5a82797826cd9a06e6489e89f71a
GET /s/poppins/v9/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://233jeraldobrien.blogspot.com
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:41:08 GMT
expires: Sat, 30 Sep 2023 00:41:08 GMT
cache-control: public, max-age=31536000
age: 395232
last-modified: Tue, 08 Oct 2019 21:22:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
233jeraldobrien.blogspot.com/2022/03/florence-pugh-filme-fernsehsendungen.html
142.250.74.161200 OK 76 kB URL HTTP/2 233jeraldobrien.blogspot.com/2022/03/florence-pugh-filme-fernsehsendungen.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (400)
Hash 5c5e471da383fe5e521df83b7da54fdd
865e8a0e9ed6715074cc6748cc7e1f06fd9df71c
598d1d27c6d70e6ddf7ae130318cd1cf388ca5499c59a1fb50483b69b8b6b1ed
GET /2022/03/florence-pugh-filme-fernsehsendungen.html HTTP/1.1
Host: 233jeraldobrien.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 04 Oct 2022 14:28:19 GMT
date: Tue, 04 Oct 2022 14:28:19 GMT
cache-control: private, max-age=0
last-modified: Tue, 04 Oct 2022 12:08:21 GMT
etag: W/"b97f4f9f3186bea974128e05c4d76e5dd3d66bee8619b4fef117a1c16cc9c148"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 76400
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6523519707a4e3d899716104beecadbe
e27e8f3be302aa1fbf8e67138fb672dad5c9cae4
96f29d69cc19e17aee2e43435aa63f0f04628d9475af3b990a784c49a6ff134d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:20 GMT
Server: ECS (amb/6B75)
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 589d830dbd20c3dcf601bf7a2fe7fd29
e6fc4f0062189aee4c8616949f86571db0a92ff5
10137bb52117be557fae9e1cf90fdf106786da04f6d799b19e2c3100aeafdd61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/792789798-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/792789798-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 02e6bf311e18828a522b4d3a4079084f
a63cd373fa23b4fe11f938d57737e6bfa1ebe789
25d469843aa09be2473931d33aaa37b65ac371874bd98ca84ec780bead3e33e4
GET /static/v1/widgets/792789798-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56804
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 02:15:20 GMT
expires: Tue, 03 Oct 2023 02:15:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 03 Oct 2022 00:49:27 GMT
content-type: text/javascript
age: 130380
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.cdn.moviepilot.de/files/43594d6b86137a921ff754edfc149cfa0902ae62f7fa55ec124ce73d9d53/fill/136/195/6976_12_Black_Widow_HP_A4_Kino_72dpi_RGB_rz_JETZT.jpg
172.64.147.214200 OK 9.6 kB URL HTTP/2 assets.cdn.moviepilot.de/files/43594d6b86137a921ff754edfc149cfa0902ae62f7fa55ec124ce73d9d53/fill/136/195/6976_12_Black_Widow_HP_A4_Kino_72dpi_RGB_rz_JETZT.jpg
IP 172.64.147.214:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 136x195, components 3\012- data
Hash dabc9945f89d2ee58e19af0d6d283945
1047ca53f1ffeb96867fcc059cc130f3c4bd8f88
b232d6c6293300d40c6783b95bbdf96bbc5f7d9a7967de708c4a0e168190a82b
GET /files/43594d6b86137a921ff754edfc149cfa0902ae62f7fa55ec124ce73d9d53/fill/136/195/6976_12_Black_Widow_HP_A4_Kino_72dpi_RGB_rz_JETZT.jpg HTTP/1.1
Host: assets.cdn.moviepilot.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:20 GMT
content-type: image/jpeg
content-length: 9567
content-disposition: inline
content-transfer-encoding: binary
x-request-id: 4c25a4b0-5112-490f-b5d1-75398a238fa9
x-runtime: 0.039691
cache-control: s-maxage=2592000, max-age=2592000
x-varnish: 717388328
via: 1.1 varnish (Varnish/6.0)
last-modified: Tue, 04 Oct 2022 14:28:20 GMT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754e9a7a6ec9b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
content3.promiflash.de/article-images/video_480/zach-braff-und-florence-pugh.jpg
104.17.54.53200 OK 48 kB URL HTTP/2 content3.promiflash.de/article-images/video_480/zach-braff-und-florence-pugh.jpg
IP 104.17.54.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 854x480, components 3\012- data
Hash a494c1cf715c0448610cd3decc20ec94
024f250a8c9d54e75337ce191b97abcf5d82062a
f1894745250b8451678da27bee4790806d8cf80006b75fd58b614e011f66fb85
GET /article-images/video_480/zach-braff-und-florence-pugh.jpg HTTP/1.1
Host: content3.promiflash.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:20 GMT
content-type: image/jpeg
content-length: 48496
last-modified: Sat, 10 Jul 2021 16:14:13 GMT
etag: "a494c1cf715c0448610cd3decc20ec94"
x-amz-version-id: .d5KqLloq9KdGqfXftoW96X2v_urPz.1
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7V5q3gvaYtjg3mk4rnWyDua0RCvpJfyIsry5Dhd_-AF8d2njIoOdGQ==
cf-cache-status: MISS
expires: Fri, 04 Nov 2022 14:28:20 GMT
cache-control: public, max-age=2678400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754e9a7a1c89b52d-OSL
X-Firefox-Spdy: h2
de.web.img2.acsta.net/pictures/17/02/09/14/37/354021.jpg
172.64.151.52200 OK 152 kB URL HTTP/2 de.web.img2.acsta.net/pictures/17/02/09/14/37/354021.jpg
IP 172.64.151.52:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, description=attends BAFTA Breakthrough Brits 2016 Unveiling on October 25, 2016 in London, United Kingdom., manufacturer=Canon, model=Canon EOS-1D X Mark II, software=PhotoScape], comment: "Generated by IJG JPEG Library", baseline, precision 8, 400x533, components 3\012- data
Size 152 kB (151979 bytes)
Hash 714de2448a95f6a8701324d74f5aa5f7
f3f2c10ebbc666081c03d4abc849cf5cb5f94a40
65eca9ac46c08b3a1852778f3454e2b62f74eda8b76e9ccdc5c2f597c40764f9
GET /pictures/17/02/09/14/37/354021.jpg HTTP/1.1
Host: de.web.img2.acsta.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:20 GMT
content-type: image/jpeg
content-length: 151979
cache-control: public
expires: Wed, 04 Oct 2023 14:27:59 GMT
last-modified: Thu, 09 Feb 2017 13:37:28 GMT
x-servername: WEBMEDIAS2
content-disposition: inline; filename=354021.jpg
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754e9a7b0f231c16-OSL
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=6574134282228081647&zx=3d10188c-0f26-4607-be02-ce905ff7edf3
216.58.207.201200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=6574134282228081647&zx=3d10188c-0f26-4607-be02-ce905ff7edf3
IP 216.58.207.201:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=6574134282228081647&zx=3d10188c-0f26-4607-be02-ce905ff7edf3 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 04 Oct 2022 14:28:20 GMT
last-modified: Tue, 04 Oct 2022 14:28:20 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.kino.de/wp-content/uploads/2015/04/Florence-Pugh-GettyImages-1132736135.jpg
178.19.70.100200 OK 9.2 MB URL HTTP/2 static.kino.de/wp-content/uploads/2015/04/Florence-Pugh-GettyImages-1132736135.jpg
IP 178.19.70.100:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=16, height=5568, bps=206, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D5, orientation=upper-left, width=3712], baseline, precision 8, 3126x4688, components 3\012- data
Size 9.2 MB (9160099 bytes)
Hash fffd810c86fb52de0d937f00cad0f81a
592ccc7b1849b47a8ee527c476f8fa1cc6ac979b
2c664ef15190c6be715ab0c1a21bd1ec19bfc0d48be34302a8b35ecae2a53b75
GET /wp-content/uploads/2015/04/Florence-Pugh-GettyImages-1132736135.jpg HTTP/1.1
Host: static.kino.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 14:28:20 GMT
content-type: image/jpeg
content-length: 9160099
access-control-allow-origin: *
access-control-expose-headers: Content-Length
cache-control: public, max-age=31536000, no-transform, immutable
filer-attr: W1szMTI2LDQ2ODhdLCJzaHV0dGxlLXYyIixbIkZSQS0xIl0sWyJGUkItMSJdXQ==
filer-source: 2c664ef15190c6be715ab0c1a21bd1ec19bfc0d48be34302a8b35ecae2a53b75
last-modified: Thu, 26 Sep 2019 07:30:26 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
strict-transport-security: max-age=300; includeSubDomains;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9938
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 14:28:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9938
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 14:28:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9938
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 14:28:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9938
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 14:28:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9938
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 14:28:21 GMT
Connection: keep-alive
combinatronics.io/apriasmoro/ngiklan/main/banner728.js
104.26.12.96200 OK 5.7 kB URL HTTP/2 combinatronics.io/apriasmoro/ngiklan/main/banner728.js
IP 104.26.12.96:0
Hash 92efdf21575034f4d119b8d0500b9b4d
a270188cac6adcf67ed8f2845485acfbbdabac7f
070878ba82c9c0c67d9d2f919c9962e2514ded87fceea16e8414af1d05ca994f
GET /apriasmoro/ngiklan/main/banner728.js HTTP/1.1
Host: combinatronics.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:20 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-store
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fEENKaOl9zqYcC36%2F%2FjSskjR%2F9cAyx4J4bZSoUn9euZRTzi%2FEU3ymK1pM0yKWzYAQw%2FQrUHeBWTEyxOssh%2FN4N2x3UEYJ%2BnnE3n4uZeDJlhqYWtZR1ZigowzuOoQbdZlo5Lh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754e9a79fff71c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:51 GMT
age: 35130
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SGeDEPoXxsTV5UwkZnn3MJPbjhHhrKSsueHPxVapV_7Icl6daFk3oA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 60241
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f62719b24a32198c6f462a0a0412ac98
d893d8035379e06e53e365b9f47f5da40bff932b
ca863affca1559e92e415a4de2e78e4b4c1ec4cf8e8549693499c6f79bd27975
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10878
x-amzn-requestid: a849d918-ec40-47d4-93cb-e938b010bd50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpJKGAPIAMFSiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556d-242a8d2208b6574c34063c1f;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7ZaoEBhn_F_zDvoalcEpb4PtdGMuU9stAktSCviy5SsaaBaxYUJ6Fg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 60241
etag: "d893d8035379e06e53e365b9f47f5da40bff932b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54b3ef7aa50273b78b59c24511b0c1f9
e2ea2ef6805e391c497e62e101e76a0bdecfce64
296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 44jC1Ww19YUJjZHw9_3cSSR5Y7nw5df412G-RxWFTcbRz1XDKaT3zQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:35 GMT
age: 60226
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DOS5kVEVqBrCVMKRw07fX-6HDgWVb9lJwkVM2pXs0PQHys6CBJUVfQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 60241
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ced860b150eb554bd86e2dbbd1e150fd
7e07da8edba6d0a75cbf3d05c6104b1bad24f3d5
2f555773dd4a1361ce1a3f416f4707a7d088be176e4ffb43f1b2b60cc5b0dcbb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2F555773DD4A1361CE1A3F416F4707A7D088BE176E4FFB43F1B2B60CC5B0DCBB"
Last-Modified: Mon, 03 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19807
Expires: Tue, 04 Oct 2022 19:58:28 GMT
Date: Tue, 04 Oct 2022 14:28:21 GMT
Connection: keep-alive
www.variouscreativeformats.com/9f0de11e5fd48835de6964cc4939507c/invoke.js
192.243.59.12200 OK 9.8 kB URL HTTP/1.1 www.variouscreativeformats.com/9f0de11e5fd48835de6964cc4939507c/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26963), with no line terminators
Hash d793832ee7ee65f36b1e396f287ba0b0
0bd78106d2addc24c9717db274d3433dea5b98a1
9debda0fd30484ec500a9742f156fd88b3d748c05185aac1860744fb88f15cea
Analyzer Verdict Alert quad9 Sinkholed
GET /9f0de11e5fd48835de6964cc4939507c/invoke.js HTTP/1.1
Host: www.variouscreativeformats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Tue, 04 Oct 2022 14:28:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 40281a2f3173d3bbe72921109ddac29b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.gstatic.com/s/poppins/v9/pxiGyp8kv8JHgFVrJJLucHtA.woff2
216.58.207.195200 OK 9.1 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v9/pxiGyp8kv8JHgFVrJJLucHtA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9120, version 1.0\012- data
Hash ac1612e21731e1a027139bd574ecf5e5
bbc6f6b4d20d218eea34fb3984f8832c31f1b394
7930f49c4da455b5c7dd46dd4aaa7260afedf32a341da9fa5f6867cdcf4acee4
GET /s/poppins/v9/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://233jeraldobrien.blogspot.com
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 06:04:17 GMT
expires: Wed, 04 Oct 2023 06:04:17 GMT
cache-control: public, max-age=31536000
age: 30244
last-modified: Tue, 08 Oct 2019 21:22:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v9/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v9/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7924, version 1.0\012- data
Hash e535f7856b24153e0f3146e8f90a45c5
e5da5f96d38b08cc6ed2973735b5a9b9af066458
56a522e79770e488da6015ed10f8c2bdafbcd87a7c6d443f7a293579bd0ef58d
GET /s/poppins/v9/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://233jeraldobrien.blogspot.com
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 00:09:35 GMT
expires: Mon, 02 Oct 2023 00:09:35 GMT
cache-control: public, max-age=31536000
age: 224326
last-modified: Tue, 08 Oct 2019 21:22:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash e01a9c3ae0c56e2a9a98e02c1ff404cf
b42412aa7fdd35c1b62cf58e0da237d3b0bde179
84b019815e38b6eba0ad7fb7827be8e49f0c69221901c92ef298776d750c3e9d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 14:28:21 GMT
Last-Modified: Tue, 04 Oct 2022 13:18:55 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Rg2EOQPoyPgAZdjIqpL_X_gvjzn7olw4rFD-7-dNb2-thTe9e2zUDA==
Age: 4166
simplewebanalysis.com/stats
52.29.95.124200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.29.95.124:0
File type ASCII text, with no line terminators
Hash fecb3258ae93719e9534884c41f98aaa
1fb15a4e8a91cd0baba0996dcdb063d2e3777747
5852b66a9ec28c2e21a82e43f02bb4eae9eb0f7a3f5eeb584789415d1d20eefa
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://233jeraldobrien.blogspot.com
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:21 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://233jeraldobrien.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=bd85f623-e121-4c98-a3c9-6726e2774056:2:1; expires=Fri, 01 Oct 2032 14:28:21 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5e89969841b429e3ca44b320d17ea98a
30486a886b793ad5431b73d983d091487e5709c6
2d08365a447343168153cf1178b3b847377c2923bce06d9f6485ad08d3a06d34
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5409
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Last-Modified: Tue, 04 Oct 2022 12:58:13 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash edec9323540293b99ece306037d35de7
e7540f9962a6c7ee91168eee1e0fe343d5f5406e
5cf16c168d74a28dc30c0edf93edd09366a8c8609ac36e352e056580f7b24a20
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5CF16C168D74A28DC30C0EDF93EDD09366A8C8609AC36E352E056580F7B24A20"
Last-Modified: Mon, 03 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9164
Expires: Tue, 04 Oct 2022 17:01:06 GMT
Date: Tue, 04 Oct 2022 14:28:22 GMT
Connection: keep-alive
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash ea7d34eb82685d2871dbbe491d7ded6d
c7aa8ded4d93f93345e20fc261a2b9a6b1da2990
6a5f2e9670eba3a73d3841b7672e4ce11010125008bba9f8f01f965a71ed1c84
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://233jeraldobrien.blogspot.com
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ae6e2d4ad1087802ef87dc03b63b13d1
etag: "653aca253942db331a25929f029624ae"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 04 Oct 2022 14:38:49 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 6n0064JoXShx275JHX3tbQ==
x-fb-debug: T32kUwqoSh+/HfK62BoBeh3IPckdzyq8U3FEztsFTRQsZIvsN6VJcy1WmjauaBDcvldPCawWbuW6uYizDjYa9A==
content-length: 1689
x-fb-trip-id: 1904183273
date: Tue, 04 Oct 2022 14:28:22 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.yimg.com/uu/api/res/1.2/0e.qOGy9_8Exkpr77IzPQw--~B/aD02NTA7dz02NTA7YXBwaWQ9eXRhY2h5b24-/https://media.zenfs.com/en/bang_showbiz_628/0a2a91d97cb1e09a7467592cbd5589a0
188.125.94.206200 OK 51 kB URL HTTP/2 s.yimg.com/uu/api/res/1.2/0e.qOGy9_8Exkpr77IzPQw--~B/aD02NTA7dz02NTA7YXBwaWQ9eXRhY2h5b24-/https://media.zenfs.com/en/bang_showbiz_628/0a2a91d97cb1e09a7467592cbd5589a0
IP 188.125.94.206:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 650x650, components 3\012- data
Hash 087436a4ceea34974715cb3a18663edb
3f71459630811ce66eef243725bdd101598c0662
34d48b7478ca639f37db6baa17e5075cc1d78378f19ff9b9928efa5fd2cccc81
GET /uu/api/res/1.2/0e.qOGy9_8Exkpr77IzPQw--~B/aD02NTA7dz02NTA7YXBwaWQ9eXRhY2h5b24-/https://media.zenfs.com/en/bang_showbiz_628/0a2a91d97cb1e09a7467592cbd5589a0 HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 51112
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=2592000
cache-tag: 233000995690627941865757341760210351238,468570043054012956125995206062178155129,ae7a14591aaf8d474cdb3f92111c923e
content-type: image/jpeg
edge-cache-tag: 233000995690627941865757341760210351238,468570043054012956125995206062178155129,ae7a14591aaf8d474cdb3f92111c923e
etag: "087436a4ceea34974715cb3a18663edb"
last-modified: Wed, 20 Oct 2021 17:47:38 GMT
server: ATS
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 09 Sep 2022 21:56:20 GMT
x-served-by: cache-iad-kiad7000030-IAD
x-cache: HIT
x-cache-hits: 1
x-timer: S1662760580.377840,VS0,VE7
age: 2133122
strict-transport-security: max-age=15552000
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
cld_cache: HIT
cld_hits: 1
cld_by: cache-iad-kiad7000030-IAD
cld_latency: 7
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:18:54 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 812779070
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5e89969841b429e3ca44b320d17ea98a
30486a886b793ad5431b73d983d091487e5709c6
2d08365a447343168153cf1178b3b847377c2923bce06d9f6485ad08d3a06d34
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6331
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Last-Modified: Tue, 04 Oct 2022 12:42:51 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
snapwidget.com/images/icons/facebook.png
172.67.75.33200 OK 648 B URL HTTP/2 snapwidget.com/images/icons/facebook.png
IP 172.67.75.33:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 54e9168996419eada721e6ca83b9866e
9a98cbd3f57f7cb3017e0ed1a4c4356094c0c2fb
4d1a80126c4bacaa62d2c046fd95b1378b5b874582f0ac4a7c453ff5cd1d33d7
GET /images/icons/facebook.png HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: image/webp
content-length: 648
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2222
content-disposition: inline; filename="facebook.webp"
vary: Accept
etag: "631ecb4c-8ae"
last-modified: Mon, 12 Sep 2022 06:01:48 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1683488
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TAiO7pKkXJ17PozrVzXuuoH8F3rrV10QXpY7Gsolek7HFwtt%2BRL9xQsyor4QiuSBVY1m%2FIey7rXoxqW1ml5wpFlsexuO6qlGw82Ksfr9GVtOm%2BFKme9UCGm0hzsakK5o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a86aa6ab511-OSL
X-Firefox-Spdy: h2
snapwidget.com/images/icons/twitter.png
172.67.75.33200 OK 716 B URL HTTP/2 snapwidget.com/images/icons/twitter.png
IP 172.67.75.33:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 557dcf13a6c64edb6327ca8092bfa6fe
1a6de39ca44d62562f6b41d4c11d93e6e600505f
2308c6bccc5ec728fb77bc14121b7d154206d45de5754875b60d1690dad2af07
GET /images/icons/twitter.png HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: image/webp
content-length: 716
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2371
content-disposition: inline; filename="twitter.webp"
vary: Accept
etag: "63171a66-943"
last-modified: Tue, 06 Sep 2022 10:01:10 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2223309
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7WFW78PbC4Npk%2B9py8Hf9Z861lsy0GMnDwb26H38GR4zihpU%2FS71f5zwO2MAohpA8VKQIZ5BJJNRR75vElGH1rO0YLSuyyL4RvEWrYfHpvq4qxs3x61Wp3h9nz9VzV6Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a86aa6fb511-OSL
X-Firefox-Spdy: h2
i.pinimg.com/564x/02/c7/11/02c711875fed52a8e54020500a574dde.jpg
184.31.15.147200 OK 84 kB URL HTTP/2 i.pinimg.com/564x/02/c7/11/02c711875fed52a8e54020500a574dde.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type gzip compressed data, max compression\012- data
Hash d6b2fc0189c76602cfb1beef614567d9
e03eda53c9739528217591d3cae8b53e7c944011
bf655f253cadcb3f7445be8b966babd716f275695f0b91ac68106713564f2ea3
GET /564x/02/c7/11/02c711875fed52a8e54020500a574dde.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fcf7684f7b07ea8817b459cdf946cc3b"
accept-ranges: bytes
content-type: image/jpeg
content-length: 70517
akamai-grn: 0.8f0f1fb8.1664893702.194657f5
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.pinimg.com/736x/c2/85/df/c285dff7cebb2cbb3deac1839c8cda52.jpg
184.31.15.147200 OK 97 kB URL HTTP/2 i.pinimg.com/736x/c2/85/df/c285dff7cebb2cbb3deac1839c8cda52.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 705x1000, components 3\012- data
Hash 044d842d8fa7c27429f2f7170dec16d8
5e8468a22d30a6888b1291f3d4a855aa6c72936a
91d60ee297d225bfcbec62ee2dc8b09d1f41aeec73347d469184f489bd11725d
GET /736x/c2/85/df/c285dff7cebb2cbb3deac1839c8cda52.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "044d842d8fa7c27429f2f7170dec16d8"
accept-ranges: bytes
content-type: image/jpeg
content-length: 96652
akamai-grn: 0.8f0f1fb8.1664893702.194657fa
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
snapwidget.com/embed/956730
172.67.75.33200 OK 140 kB URL HTTP/2 snapwidget.com/embed/956730
IP 172.67.75.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2844)
Size 140 kB (139761 bytes)
Hash d58cb5e13a98a06e323f4361a63a5b6a
9c7518aa48f5042760def8af0f4178a1e1b70414
3a7333fa53de248cce4ae83105de11f5d6ed01f6858fe526dc9115220fba5aab
GET /embed/956730 HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:21 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=300
expires: Tue, 04 Oct 2022 14:28:44 GMT
x-robots-tag: all
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 04 Oct 2022 14:26:44 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buAOel4%2B1vuInMhNTO0fcQHil%2FFWACeEs%2FNyEWoDS0xStZqhf92fIIH18OPDTLKd9KMnqzaTqrUTFzwLTK4LL7zpBo6QJsT6alXSSJE4SGWqgt%2F9fZAL4atsGNdqY2ZR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a83ee9ab511-OSL
content-encoding: br
X-Firefox-Spdy: h2
i.pinimg.com/564x/cc/df/3a/ccdf3aa37cb771472eeb4eea74d526e2.jpg
184.31.15.147200 OK 61 kB URL HTTP/2 i.pinimg.com/564x/cc/df/3a/ccdf3aa37cb771472eeb4eea74d526e2.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 540x790, components 3\012- data
Hash 464bc2e5a41433462bf913641f0e58db
3cba69b56dd28ca1cdc11a89fd72b31ac12ea935
2faee3f5e76bedd9fb820c93b13962eaabafbda53fbc08d761b3b95347d97a73
GET /564x/cc/df/3a/ccdf3aa37cb771472eeb4eea74d526e2.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "464bc2e5a41433462bf913641f0e58db"
accept-ranges: bytes
content-type: image/jpeg
content-length: 61086
akamai-grn: 0.8f0f1fb8.1664893702.1946581f
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
i.pinimg.com/564x/4c/bf/3d/4cbf3d3aba56a49daff9c0753878f805.jpg
184.31.15.147200 OK 35 kB URL HTTP/2 i.pinimg.com/564x/4c/bf/3d/4cbf3d3aba56a49daff9c0753878f805.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 408x612, components 3\012- data
Hash e11647c50a2f8f878a06f674811bb055
db918be4984fdfe3c3e5c23240b1ad9abe41e3aa
dc5400e3b07841942b77e1c2407aaaef2722b860999479cf675e211642c016d4
GET /564x/4c/bf/3d/4cbf3d3aba56a49daff9c0753878f805.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "e11647c50a2f8f878a06f674811bb055"
accept-ranges: bytes
content-type: image/jpeg
content-length: 35154
x-edgeconnect-midmile-rtt: 2
x-edgeconnect-origin-mex-latency: 57
akamai-grn: 0.8f0f1fb8.1664893702.1946586f
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
i.pinimg.com/originals/23/72/e4/2372e4181fe84337266d56de0136152d.jpg
184.31.15.147200 OK 242 kB URL HTTP/2 i.pinimg.com/originals/23/72/e4/2372e4181fe84337266d56de0136152d.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1200x1800, components 3\012- data
Size 242 kB (242024 bytes)
Hash 276a1be22b60c74c08aa9b2dfe451f68
ab719a5a810dacff534167afb6cb8b773c159188
9bc4e5a78b0c376359ceb0754f12e782c69f7ca001bbf5ff629e988545798181
GET /originals/23/72/e4/2372e4181fe84337266d56de0136152d.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "276a1be22b60c74c08aa9b2dfe451f68"
accept-ranges: bytes
content-type: image/jpeg
content-length: 242024
akamai-grn: 0.8f0f1fb8.1664893702.1946583c
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
172.67.75.33200 OK 24 kB URL HTTP/2 snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
IP 172.67.75.33:0
File type ASCII text, with very long lines (15866)
Hash 2d99c6fab36df6201712b7ff3ef2b1b9
bed1cf5454187f3370dca34bca982eb721d5029c
b3c074f05ed1c2df7427050c5d895163407e172b3c02d3b2fd869d19b5554306
GET /stylesheets/embed.style.min.307799cd3bc5b2ee.css HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=15975
etag: W/"6315b00e-3e67"
last-modified: Mon, 05 Sep 2022 08:15:10 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1147020
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MBeUu7PfW2QWnC6%2BMik2nTLhjMRBp3Z4Mn%2Bekm9e%2BaYUaSzV%2Ftj37pDlwZxzpnV0nbXjpeJhdQr2peEhp6XdolYQThd4W1dz7BaMe3aS9hcBfNB1G79tjEL2j5gWHFRY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a8619b3b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
i.pinimg.com/736x/48/17/ec/4817ecba86804f5c151881bae01608ea.jpg
184.31.15.147200 OK 74 kB URL HTTP/2 i.pinimg.com/736x/48/17/ec/4817ecba86804f5c151881bae01608ea.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 736x1052, components 3\012- data
Hash d342a7cbc2f8b87bfe9160796436c132
b3224cba5d18738babd485a0eaa664cd6636112d
a1834060dec50a2b62423ca57deb7143f1467df88b1507a0f051825122e89acd
GET /736x/48/17/ec/4817ecba86804f5c151881bae01608ea.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "d342a7cbc2f8b87bfe9160796436c132"
accept-ranges: bytes
content-type: image/jpeg
content-length: 73622
akamai-grn: 0.8f0f1fb8.1664893702.19465815
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
i.pinimg.com/736x/4c/29/c0/4c29c00fef4a52c5700db82d6e1dd2d9.jpg
184.31.15.147200 OK 60 kB URL HTTP/2 i.pinimg.com/736x/4c/29/c0/4c29c00fef4a52c5700db82d6e1dd2d9.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 735x980, components 3\012- data
Hash 561a2aab3813492d03986a395063b527
0ad9ac5e82629fd8cdc512453f6e96992d052a85
3c4c761470ed82e645c37d9158efc90f6f689591064a82ee5bf724c8b5bd76f3
GET /736x/4c/29/c0/4c29c00fef4a52c5700db82d6e1dd2d9.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "561a2aab3813492d03986a395063b527"
accept-ranges: bytes
content-type: image/jpeg
content-length: 60001
akamai-grn: 0.8f0f1fb8.1664893702.19465858
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
i.pinimg.com/736x/30/6e/bf/306ebf1af665fa7ceea385795632522f.jpg
184.31.15.147200 OK 94 kB URL HTTP/2 i.pinimg.com/736x/30/6e/bf/306ebf1af665fa7ceea385795632522f.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 736x1104, components 3\012- data
Hash aec875905f33ccab4c4c2c3379821a18
bbf9d6ec21acef190d826735d8a38a777a0a4d48
30dbda81a72cdc9d82b14806166e176495778d5d1aa03e10dc65efb31e8de8a0
GET /736x/30/6e/bf/306ebf1af665fa7ceea385795632522f.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "aec875905f33ccab4c4c2c3379821a18"
accept-ranges: bytes
content-type: image/jpeg
content-length: 94277
akamai-grn: 0.8f0f1fb8.1664893702.19465824
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js?hash=9e3672b513807a1d7545b58131b2b733
31.13.72.12200 OK 105 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=9e3672b513807a1d7545b58131b2b733
IP 31.13.72.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33820)
Size 105 kB (104648 bytes)
Hash 6c7d1c9267604b0dcf328c08b0dbfa49
313601e483c388d82358f2e341b216712af6339d
1e62023f413794e56d5ed4f20466816c4c801930345ada1b60642b4103a40a32
GET /en_US/sdk.js?hash=9e3672b513807a1d7545b58131b2b733 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://233jeraldobrien.blogspot.com
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: d8195bae5976f3fbb314585166fbe712
etag: "28b71ccd44682925cb0692965a9c9f9d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 04 Oct 2023 12:34:25 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: U/686pc20l+pIz56OsEgEQ==
x-fb-debug: kV279RCFpTYZ30aHwrEnGUUUpK9X3E4lsDu166MfyqXQM/tj5NsVIn9nlSmaUH30Da5Y2YMzaX+8zNdCX2hx0w==
priority: u=3,i
content-length: 88390
x-fb-trip-id: 1904183273
date: Tue, 04 Oct 2022 14:28:22 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.pinimg.com/736x/f0/6f/28/f06f28969c227dfe8e9d4ffce0ac4c6e.jpg
184.31.15.147200 OK 78 kB URL HTTP/2 i.pinimg.com/736x/f0/6f/28/f06f28969c227dfe8e9d4ffce0ac4c6e.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 735x916, components 3\012- data
Hash 2f3e505a6433e1701489d09e967e6966
65feadebab8631063aa10a5fc1297de60bda82c4
fde78f422d949280c39d158878a5083b92a733528ba731bebc35437d0076d4d0
GET /736x/f0/6f/28/f06f28969c227dfe8e9d4ffce0ac4c6e.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "2f3e505a6433e1701489d09e967e6966"
accept-ranges: bytes
content-type: image/jpeg
content-length: 78534
akamai-grn: 0.8f0f1fb8.1664893702.1946582c
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
i.pinimg.com/736x/9e/f7/76/9ef776ea3da52c448b03f46b2b2c9250.jpg
184.31.15.147200 OK 80 kB URL HTTP/2 i.pinimg.com/736x/9e/f7/76/9ef776ea3da52c448b03f46b2b2c9250.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 615x787, components 3\012- data
Hash b0c8d73323ee0beb40dc6553e8c9a255
80bb6988d8e403ea9eb74420fa79f73dbb11bd9b
8b2f1ddf2ac939e61322b2204ee69abe15cdac5be79b53241b3f9dd16bb19d6e
GET /736x/9e/f7/76/9ef776ea3da52c448b03f46b2b2c9250.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "b0c8d73323ee0beb40dc6553e8c9a255"
accept-ranges: bytes
content-type: image/jpeg
content-length: 80478
akamai-grn: 0.8f0f1fb8.1664893702.19465831
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
i.pinimg.com/originals/ca/aa/af/caaaaf730f15b0b85865cbb904947a10.jpg
184.31.15.147200 OK 172 kB URL HTTP/2 i.pinimg.com/originals/ca/aa/af/caaaaf730f15b0b85865cbb904947a10.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1280x1923, components 3\012- data
Size 172 kB (172455 bytes)
Hash 6526dbe09edb2368a842c0c88bfacbf4
e98e1bbcef71b977eadaf8b0a753e49b89392263
8cd65df9c6befde3f184cbc3f2f79d3c61e6c20710ce1c539fc491bc91431cde
GET /originals/ca/aa/af/caaaaf730f15b0b85865cbb904947a10.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "6526dbe09edb2368a842c0c88bfacbf4"
accept-ranges: bytes
content-type: image/jpeg
content-length: 172455
akamai-grn: 0.8f0f1fb8.1664893702.19465843
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
i.pinimg.com/originals/ef/d7/83/efd783fd31ea6636853023f4e75703c0.jpg
184.31.15.147200 OK 723 kB URL HTTP/2 i.pinimg.com/originals/ef/d7/83/efd783fd31ea6636853023f4e75703c0.jpg
IP 184.31.15.147:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 3000x2002, components 3\012- data
Size 723 kB (722834 bytes)
Hash 2a85d7a38a755cb3e12f48006a3ac542
0ebbea78558584325056c7903146beb1755bfb11
07ffcd8985f8063505d2da8c49539549442178e9b9de1f36ff47709ba8bbebb9
GET /originals/ef/d7/83/efd783fd31ea6636853023f4e75703c0.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "2a85d7a38a755cb3e12f48006a3ac542"
accept-ranges: bytes
content-type: image/jpeg
content-length: 722834
akamai-grn: 0.8f0f1fb8.1664893702.194657ed
vary: Origin
cache-control: immutable, max-age=31536000
x-cdn: akamai
X-Firefox-Spdy: h2
snapwidget.com/js/embed.vendor.min.2f17f0b14ee46c5a.js
172.67.75.33200 OK 1.6 kB URL HTTP/2 snapwidget.com/js/embed.vendor.min.2f17f0b14ee46c5a.js
IP 172.67.75.33:0
File type ASCII text, with very long lines (2529), with no line terminators
Hash 8680200b0283c237bd4fc5809466c05f
bf5a1bafd2d2b25973fac09269e043f2df65f283
a89a75ac8294747864877bd0b749152bdea877751c6210e0e19e226a7d645286
GET /js/embed.vendor.min.2f17f0b14ee46c5a.js HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
etag: W/"6315b044-9e1"
last-modified: Mon, 05 Sep 2022 08:16:04 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 663526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0jZfbsl8Aas8ZjRld0hPAhHgPB2qm00ugtuRHO%2BUroZdxMGrdFj5ESsE51oifQtWB3XKlRy%2B%2B1FBuV6uQptWl2KVOwsHLQ7A9NWCILGtOP1ubDQaN2qkqItVJrotqrp2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a8619b5b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.rtl.de/resizer/eqYRhVlKMiD5Ys6uGDprtvw3aF0=/arc-anglerfish-eu-central-1-prod-rtl/public/HKN72PKVZVOPPORSDFFXTWIQSU.jpg
2.21.240.235200 OK 85 kB URL HTTP/2 www.rtl.de/resizer/eqYRhVlKMiD5Ys6uGDprtvw3aF0=/arc-anglerfish-eu-central-1-prod-rtl/public/HKN72PKVZVOPPORSDFFXTWIQSU.jpg
IP 2.21.240.235:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x562, components 3\012- data
Hash fa9497bd321c464aa4696e0602d30951
b4ef4b6d8ebfaf0530701413db498102fb365638
c61383fb1f4d5eacf7e6ac18c3f723c4afdc47689022b2d3a5401a5706d64d3d
GET /resizer/eqYRhVlKMiD5Ys6uGDprtvw3aF0=/arc-anglerfish-eu-central-1-prod-rtl/public/HKN72PKVZVOPPORSDFFXTWIQSU.jpg HTTP/1.1
Host: www.rtl.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Akamai Image Server
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
etag: "b4ef4b6d8ebfaf0530701413db498102fb365638"
x-akamai-note: original-image
content-type: image/jpeg
content-length: 85186
cache-control: private, max-age=300
expires: Tue, 04 Oct 2022 14:33:22 GMT
date: Tue, 04 Oct 2022 14:28:22 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=180, origin; dur=2037
content-security-policy: upgrade-insecure-requests, upgrade-insecure-requests
strict-transport-security: max-age=31536000 ; preload
x-device: desktop
akamai-true-ttl: 300
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 667 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 82b8f5bab5ac40a212da17a4b0d35e37
e7e689b272a7857e19c6eee1e8ccdab4e41bbe23
56a0c27e76fceab964c875719ffdff753bcb13e9d48c8692f71605707c843d7d
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 04 Oct 2022 14:28:22 GMT
date: Tue, 04 Oct 2022 14:28:22 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 667
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15adcd50af2bd7720d11bfc77ac1811e
54241028fbd8cafa0eab5c3c9fe8e6dbc9897d6c
e40a6f077566583c2c7563e687ec286be05f070f41e7da6e3d526e7f76f36690
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 229
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Last-Modified: Tue, 04 Oct 2022 14:24:33 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15adcd50af2bd7720d11bfc77ac1811e
54241028fbd8cafa0eab5c3c9fe8e6dbc9897d6c
e40a6f077566583c2c7563e687ec286be05f070f41e7da6e3d526e7f76f36690
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4230
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Last-Modified: Tue, 04 Oct 2022 13:17:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15adcd50af2bd7720d11bfc77ac1811e
54241028fbd8cafa0eab5c3c9fe8e6dbc9897d6c
e40a6f077566583c2c7563e687ec286be05f070f41e7da6e3d526e7f76f36690
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 768
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Last-Modified: Tue, 04 Oct 2022 14:15:34 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15adcd50af2bd7720d11bfc77ac1811e
54241028fbd8cafa0eab5c3c9fe8e6dbc9897d6c
e40a6f077566583c2c7563e687ec286be05f070f41e7da6e3d526e7f76f36690
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1912
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Last-Modified: Tue, 04 Oct 2022 13:56:30 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15adcd50af2bd7720d11bfc77ac1811e
54241028fbd8cafa0eab5c3c9fe8e6dbc9897d6c
e40a6f077566583c2c7563e687ec286be05f070f41e7da6e3d526e7f76f36690
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5275
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Last-Modified: Tue, 04 Oct 2022 13:00:27 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
scontent.cdninstagram.com/v/t51.2885-15/244052366_242723337818957_487001981621570713_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=NwtBPEhYfsAAX8PovbC&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-xuI5Nxy3sPx6KSZD6UlvZNaRGkyM1pE-bV5Rd9Im5UQ&oe=6340449F
31.13.72.53200 OK 173 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/244052366_242723337818957_487001981621570713_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=NwtBPEhYfsAAX8PovbC&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-xuI5Nxy3sPx6KSZD6UlvZNaRGkyM1pE-bV5Rd9Im5UQ&oe=6340449F
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 173 kB (172726 bytes)
Hash 302dae2eb8ddcd13f322a4d485960049
f8e0419f41a234335029d49410dc7fc56524da2d
b3f40f0428d938013319a075526d995822884ebb9bdb1c1368a9ab50cee29a5b
GET /v/t51.2885-15/244052366_242723337818957_487001981621570713_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=NwtBPEhYfsAAX8PovbC&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-xuI5Nxy3sPx6KSZD6UlvZNaRGkyM1pE-bV5Rd9Im5UQ&oe=6340449F HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 01 Oct 2021 10:43:36 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 388708087
x-needle-checksum: 2911320566
content-digest: adler32=2911320566
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 172726
x-fb-trip-id: 1512268381
date: Tue, 04 Oct 2022 14:28:22 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0a06eeb735329c66e06b2f8f40ea9c03
ab3a995a753930e3f73b2c93b71707a24a980979
18762438c228367e92fd499083af81ee7e8773d94a76ed25c431e5d2b4bf134b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18762438C228367E92FD499083AF81EE7E8773D94A76ED25C431E5D2B4BF134B"
Last-Modified: Tue, 04 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18326
Expires: Tue, 04 Oct 2022 19:33:48 GMT
Date: Tue, 04 Oct 2022 14:28:22 GMT
Connection: keep-alive
scontent.cdninstagram.com/v/t51.2885-15/308267587_1281003269393015_7290580284912778718_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=jnTD3FYS5noAX_fJuAC&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT84-6-d4CmcDt86fGBVx-dXJy6D3k7mTEsKCTvR2HZ32g&oe=6341910C
31.13.72.53200 OK 204 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/308267587_1281003269393015_7290580284912778718_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=jnTD3FYS5noAX_fJuAC&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT84-6-d4CmcDt86fGBVx-dXJy6D3k7mTEsKCTvR2HZ32g&oe=6341910C
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 204 kB (204501 bytes)
Hash 45b55621e1551f8c09296be0ae3dfb42
d6b177f296013372ddf9cbe20f0faa4171c4fc40
619a654c895bbd3f87aaa1836f505d62ba538ce1e8c8cec224eb52e6f9b62e98
GET /v/t51.2885-15/308267587_1281003269393015_7290580284912778718_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=jnTD3FYS5noAX_fJuAC&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT84-6-d4CmcDt86fGBVx-dXJy6D3k7mTEsKCTvR2HZ32g&oe=6341910C HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 23 Sep 2022 11:37:04 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 1622451726
x-needle-checksum: 3473014402
content-digest: adler32=3473014402
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 204501
x-fb-trip-id: 1512268381
date: Tue, 04 Oct 2022 14:28:22 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scontent.cdninstagram.com/v/t51.2885-15/306772431_2173143222863449_7278280663831954741_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=6d6yjDUFsfwAX_cD-oo&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-SHKBGTHhZIRFEHGyUsAlk_zEegkdn2GDhpRJljFk0gA&oe=634191F2
31.13.72.53200 OK 201 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/306772431_2173143222863449_7278280663831954741_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=6d6yjDUFsfwAX_cD-oo&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-SHKBGTHhZIRFEHGyUsAlk_zEegkdn2GDhpRJljFk0gA&oe=634191F2
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 201 kB (201172 bytes)
Hash fed02588e27720fe9728e82af2048f69
257a51910e1536803fdea6c2a4ad58f89df9243e
9f6eb68aaff795ccd01dc5e0eb2d128321d763c7883c560b08728c7fea5e2d7f
GET /v/t51.2885-15/306772431_2173143222863449_7278280663831954741_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=6d6yjDUFsfwAX_cD-oo&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-SHKBGTHhZIRFEHGyUsAlk_zEegkdn2GDhpRJljFk0gA&oe=634191F2 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 14 Sep 2022 00:44:10 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 12436044
x-needle-checksum: 2397077507
content-digest: adler32=2397077507
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 201172
x-fb-trip-id: 1512268381
date: Tue, 04 Oct 2022 14:28:22 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15adcd50af2bd7720d11bfc77ac1811e
54241028fbd8cafa0eab5c3c9fe8e6dbc9897d6c
e40a6f077566583c2c7563e687ec286be05f070f41e7da6e3d526e7f76f36690
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 229
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Last-Modified: Tue, 04 Oct 2022 14:24:33 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
scontent.cdninstagram.com/v/t51.2885-15/306047190_605023417750987_2209349381291975566_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=BGdO4PkFaS4AX9UWpEk&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9p0UfXkzHXq6vL7FjAqQORcNN_ZkNdVbwytIloYdvI8A&oe=63409A23
31.13.72.53200 OK 227 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/306047190_605023417750987_2209349381291975566_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=BGdO4PkFaS4AX9UWpEk&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9p0UfXkzHXq6vL7FjAqQORcNN_ZkNdVbwytIloYdvI8A&oe=63409A23
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 227 kB (226690 bytes)
Hash 40c6e0f989fd04dd2557d54be26c72e2
d1b3521947de29d617ff397485232575481151c4
79f91b7c681a5dc2bcdd5ce9642dbe060cd390c3e539adff93a1f5e57429554b
GET /v/t51.2885-15/306047190_605023417750987_2209349381291975566_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=BGdO4PkFaS4AX9UWpEk&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9p0UfXkzHXq6vL7FjAqQORcNN_ZkNdVbwytIloYdvI8A&oe=63409A23 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 10 Sep 2022 16:29:40 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 2592134114
x-needle-checksum: 743166225
content-digest: adler32=743166225
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 226690
x-fb-trip-id: 1512268381
date: Tue, 04 Oct 2022 14:28:22 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t51.2885-15/307034507_134862639286265_5017407683172020676_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=KRCO-684SfoAX-q-g0q&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_NlAEU8Mr3sFV-WttiuLW1aDNF45TmPnbCfuyQZRgoNQ&oe=63413336
31.13.72.53200 OK 195 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/307034507_134862639286265_5017407683172020676_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=KRCO-684SfoAX-q-g0q&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_NlAEU8Mr3sFV-WttiuLW1aDNF45TmPnbCfuyQZRgoNQ&oe=63413336
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 195 kB (194568 bytes)
Hash 377b7319fe22c590f88f3ed5ba18a136
c209c2bc6fd0bc8a5d9f4cf64b7e45f5818ea59a
662ddaf2407b561c7765011d03f7aca57869bfdbe4ce74482ea7924859d541fd
GET /v/t51.2885-15/307034507_134862639286265_5017407683172020676_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=KRCO-684SfoAX-q-g0q&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_NlAEU8Mr3sFV-WttiuLW1aDNF45TmPnbCfuyQZRgoNQ&oe=63413336 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ESUCCESS
last-modified: Sat, 17 Sep 2022 08:48:52 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 2755561000
x-needle-checksum: 2488025995
content-digest: adler32=2488025995
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 194568
x-fb-trip-id: 1512268381
date: Tue, 04 Oct 2022 14:28:22 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
snapwidget.com/js/embed.main.min.b61fafc5de1ae792.js
172.67.75.33200 OK 199 kB URL HTTP/2 snapwidget.com/js/embed.main.min.b61fafc5de1ae792.js
IP 172.67.75.33:0
File type ASCII text, with very long lines (2862), with no line terminators
Size 199 kB (199341 bytes)
Hash ece38028544507f4f5fc92831a7d455c
f8d79f7e26717ee955a573c8be1e45e53d0873a4
a0c8022d63790eb531fecd0638714fb8c58e12d0e6c5380de8463f732fd5c3b8
GET /js/embed.main.min.b61fafc5de1ae792.js HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
etag: W/"6329c65a-b2e"
last-modified: Tue, 20 Sep 2022 13:55:38 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 680135
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xuRMh%2BnOK0X4CcIATU4t6WZFyGigQxYUKC0V77v2a3u9CMFNxzQDVUQn1mk5OeHW67damLtywFq7UKLhzQ%2FVKn1dck7gKmx7s0nxGmZDTInfWEm2Sehp2eKSNRQxMKf3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a8619b7b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:05:31 GMT
expires: Sun, 01 Oct 2023 01:05:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 307371
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
selfemployedbalconycane.com/watch.883255925253.js?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%22florence%22%2C%22pugh%22%2C%22filme%22%2C%22amp%22%2C%22fernsehsendungen%22%5D&refer=https%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&tz=0&dev=r&res=12.31&uuid=bd85f623-e121-4c98-a3c9-6726e2774056%3A2%3A1
173.233.137.52307 Temporary Redirect 0 B URL HTTP/1.1 selfemployedbalconycane.com/watch.883255925253.js?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%22florence%22%2C%22pugh%22%2C%22filme%22%2C%22amp%22%2C%22fernsehsendungen%22%5D&refer=https%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&tz=0&dev=r&res=12.31&uuid=bd85f623-e121-4c98-a3c9-6726e2774056%3A2%3A1
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.883255925253.js?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%22florence%22%2C%22pugh%22%2C%22filme%22%2C%22amp%22%2C%22fernsehsendungen%22%5D&refer=https%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&tz=0&dev=r&res=12.31&uuid=bd85f623-e121-4c98-a3c9-6726e2774056%3A2%3A1 HTTP/1.1
Host: selfemployedbalconycane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://233jeraldobrien.blogspot.com
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 14:28:22 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://233jeraldobrien.blogspot.com
Access-Control-Allow-Origin: https://233jeraldobrien.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://selfemployedbalconycane.com/watch.883255925253.js?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%22florence%22%2C%22pugh%22%2C%22filme%22%2C%22amp%22%2C%22fernsehsendungen%22%5D&refer=https%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&tz=0&dev=r&res=12.31&uuid=bd85f623-e121-4c98-a3c9-6726e2774056%3A2%3A1&shu=a0a853823176eb5805c21db18a1293f0e8be9b0e0e46e8c2dbe08a407e12603a3cac19f9fb62d5888e0675fb4347bcc4469e39ad2beee6b384c3aa30a8de29b9231e0fc208bf7f94ad13e1ea14ed2d99adb273e60c0d58f039421ff93e2e28d2&pst=1664893762&rmtc=t
Set-Cookie: u_pl=16266998; expires=Wed, 05 Oct 2022 14:28:22 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.h-JFpjYkZjccixRehP5B7DSf9Gs-9POCJdfXFcDTPHc; expires=Tue, 04 Oct 2022 14:29:22 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 623dc100d58b47aa2f8ae9bb24825342
Strict-Transport-Security: max-age=0; includeSubdomains
s4.histats.com/stats/0.php?4571949&@f16&@g1&@h1&@i1&@j1664893701638&@k0&@l1&@mFlorence%20Pugh%20Filme%20%26amp%3B%20Fernsehsendungen&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-132387102&@b3:1664893702&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&@w
192.99.8.27200 OK 50 B URL HTTP/1.1 s4.histats.com/stats/0.php?4571949&@f16&@g1&@h1&@i1&@j1664893701638&@k0&@l1&@mFlorence%20Pugh%20Filme%20%26amp%3B%20Fernsehsendungen&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-132387102&@b3:1664893702&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&@w
IP 192.99.8.27:0
File type ASCII text, with no line terminators
Hash 943178990ca338cdd452b78435afa17f
8da3c2ef04b761f98f19ce8278973954dddf1abf
c83cec71cc7e60bb797fc61b7d0ff6d571d6a2de30bd03ee4aa51cc2ea6f23af
GET /stats/0.php?4571949&@f16&@g1&@h1&@i1&@j1664893701638&@k0&@l1&@mFlorence%20Pugh%20Filme%20%26amp%3B%20Fernsehsendungen&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-132387102&@b3:1664893702&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 14:28:22 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 50
Connection: close
selfemployedbalconycane.com/watch.883255925253.js?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%22florence%22%2C%22pugh%22%2C%22filme%22%2C%22amp%22%2C%22fernsehsendungen%22%5D&refer=https%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&tz=0&dev=r&res=12.31&uuid=bd85f623-e121-4c98-a3c9-6726e2774056%3A2%3A1&shu=a0a853823176eb5805c21db18a1293f0e8be9b0e0e46e8c2dbe08a407e12603a3cac19f9fb62d5888e0675fb4347bcc4469e39ad2beee6b384c3aa30a8de29b9231e0fc208bf7f94ad13e1ea14ed2d99adb273e60c0d58f039421ff93e2e28d2&pst=1664893762&rmtc=t
173.233.137.52200 OK 2.1 kB URL HTTP/1.1 selfemployedbalconycane.com/watch.883255925253.js?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%22florence%22%2C%22pugh%22%2C%22filme%22%2C%22amp%22%2C%22fernsehsendungen%22%5D&refer=https%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&tz=0&dev=r&res=12.31&uuid=bd85f623-e121-4c98-a3c9-6726e2774056%3A2%3A1&shu=a0a853823176eb5805c21db18a1293f0e8be9b0e0e46e8c2dbe08a407e12603a3cac19f9fb62d5888e0675fb4347bcc4469e39ad2beee6b384c3aa30a8de29b9231e0fc208bf7f94ad13e1ea14ed2d99adb273e60c0d58f039421ff93e2e28d2&pst=1664893762&rmtc=t
IP 173.233.137.52:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (2649)
Hash d8bfaac0df28b69fa1965242f3d104e3
1f269851e1541173dd8ccf54a7889cad18aef5ba
52b9f38aba1c691bbd1841cc3630ef501ef27c590c0730b0f96317bce2c2db94
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.883255925253.js?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%22florence%22%2C%22pugh%22%2C%22filme%22%2C%22amp%22%2C%22fernsehsendungen%22%5D&refer=https%3A%2F%2F233jeraldobrien.blogspot.com%2F2022%2F03%2Fflorence-pugh-filme-fernsehsendungen.html&tz=0&dev=r&res=12.31&uuid=bd85f623-e121-4c98-a3c9-6726e2774056%3A2%3A1&shu=a0a853823176eb5805c21db18a1293f0e8be9b0e0e46e8c2dbe08a407e12603a3cac19f9fb62d5888e0675fb4347bcc4469e39ad2beee6b384c3aa30a8de29b9231e0fc208bf7f94ad13e1ea14ed2d99adb273e60c0d58f039421ff93e2e28d2&pst=1664893762&rmtc=t HTTP/1.1
Host: selfemployedbalconycane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://233jeraldobrien.blogspot.com
Referer: https://233jeraldobrien.blogspot.com/
Connection: keep-alive
Cookie: u_pl=16266998; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjI2Njk5OCwiayI6IjlmMGRlMTFlNWZkNDg4MzVkZTY5NjRjYzQ5Mzk1MDdjIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNTM4NjUzLCJwaWQiOjMwODE3MSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjIzLCJwdCI6NCwicGsiOiJ5Z2V0OW12bjdqIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovLzIzM2plcmFsZG9icmllbi5ibG9nc3BvdC5jb20vMjAyMi8wMy9mbG9yZW5jZS1wdWdoLWZpbG1lLWZlcm5zZWhzZW5kdW5nZW4uaHRtbCJ9fQ.h-JFpjYkZjccixRehP5B7DSf9Gs-9POCJdfXFcDTPHc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 14:28:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://233jeraldobrien.blogspot.com
Access-Control-Allow-Origin: https://233jeraldobrien.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=bd85f623-e121-4c98-a3c9-6726e2774056:2:1; expires=Tue, 11 Oct 2022 14:28:22 GMT; secure; SameSite=None
iprc00ba63e2c060b1726746615e9521ed62=3569808; expires=Tue, 04 Oct 2022 18:28:22 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 14:28:22 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 14:28:22 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 05 Oct 2022 14:28:22 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 05 Oct 2022 14:28:22 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 16f8d4badb815cdce550b718cd3922c7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 14:28:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 04 Oct 2022 14:28:22 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+589; expires=Thu, 03-Oct-2024 14:28:22 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 04 Oct 2022 14:28:22 GMT
cache-control: private
X-Firefox-Spdy: h2
snapwidget.com/cdn-cgi/rum?
172.67.75.33200 OK 151 B URL HTTP/2 snapwidget.com/cdn-cgi/rum?
IP 172.67.75.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5334d11e85cdb14e8ab6e7603d34c006
43b839023a02f11cb9ae61ba49832eabf3f6e0c2
0655bcb6a821782c8fb846be7a3c00dffde8673e40366a2a350e3e26518266a7
POST /cdn-cgi/rum? HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 3202
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: text/plain
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 754e9a88ad55b511-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a81efbd7f92e8ab877070b2f9cd6247
389efbc67268d7460da1c041ecd8bd3de503bced
08f20e6c48dc1f16fb405a6e21df212677b34c1dcaf75335d163a3d1e18c40bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08F20E6C48DC1F16FB405A6E21DF212677B34C1DCAF75335D163A3D1E18C40BC"
Last-Modified: Sun, 02 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19352
Expires: Tue, 04 Oct 2022 19:50:55 GMT
Date: Tue, 04 Oct 2022 14:28:23 GMT
Connection: keep-alive
cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
45.133.44.10200 OK 106 kB URL HTTP/2 cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105910 bytes)
Hash a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e
GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:23 GMT
content-type: image/png
content-length: 105910
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Thu, 06 Oct 2022 14:28:23 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
snapwidget.com/stylesheets/embed.vendor.min.760717b3f565c387.css
172.67.75.33200 OK 0 B URL HTTP/2 snapwidget.com/stylesheets/embed.vendor.min.760717b3f565c387.css
IP 172.67.75.33:0
GET /stylesheets/embed.vendor.min.760717b3f565c387.css HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: text/css
cf-bgj: minify
etag: W/"6315b02f-937"
last-modified: Mon, 05 Sep 2022 08:15:43 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1147020
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZzz9TcJnGO6xIG%2FOjtbCE6fnb8%2F%2Bh5gmEZwR5WPT3Kx%2FCg9a9hy1XOE7Z9iRZsrfbXNkpqk%2F3TTt9PYLwmy3qoBa4obDPobQqDnTjGCE74QMhv%2F97FAjG35uPts9Cvh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a8619b1b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
snapwidget.com/embed/956730
172.67.75.33200 OK 0 B URL HTTP/2 snapwidget.com/embed/956730
IP 172.67.75.33:0
GET /embed/956730 HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:21 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=300
expires: Tue, 04 Oct 2022 14:28:44 GMT
x-robots-tag: all
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 04 Oct 2022 14:26:44 GMT
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B77uJnnRAOuw60ROjvNkGjdwv9uVBqXZQS97x8nxvGbywnJ%2Ft%2BN2NpzhoZLJ0ErvSxw%2FxOGUenEnsuTjYCX52QCxo2yWl33sFxaQeJtseFAzh8X2qFA%2Bh6ZlkwM2e3y0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a85485eb511-OSL
content-encoding: br
X-Firefox-Spdy: h2
snapwidget.com/stylesheets/embed.grid.min.4069f6f840f9102b.css
172.67.75.33200 OK 0 B URL HTTP/2 snapwidget.com/stylesheets/embed.grid.min.4069f6f840f9102b.css
IP 172.67.75.33:0
GET /stylesheets/embed.grid.min.4069f6f840f9102b.css HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: text/css
cf-bgj: minify
etag: W/"6329c663-899"
last-modified: Tue, 20 Sep 2022 13:55:47 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1146997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RNQBwsU3kTmRvo1WIRQPy9zmHmPa94EU08VmJQ%2F42fxp5khn4dSqVMQTf6jYlh3cyrQspndDEXaMl6IngRFzxbFPEHxmNICmRlqwR9XS14m35%2BcMtG21%2FrhhYlfBqyOZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 754e9a8619b4b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
172.64.156.26200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP 172.64.156.26:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:22 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 754e9a865a55b517-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
snapwidget.com/cdn-cgi/rum?
172.67.75.33200 OK 0 B URL HTTP/2 snapwidget.com/cdn-cgi/rum?
IP 172.67.75.33:0
POST /cdn-cgi/rum? HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 389
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:27 GMT
content-type: text/plain
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 754e9aa97cf5b511-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
combinatronics.io/apriasmoro/ngiklan/main/stats-trending.js
104.26.12.96200 OK 0 B URL HTTP/2 combinatronics.io/apriasmoro/ngiklan/main/stats-trending.js
IP 104.26.12.96:0
GET /apriasmoro/ngiklan/main/stats-trending.js HTTP/1.1
Host: combinatronics.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://233jeraldobrien.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 14:28:20 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-store
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oP3PoNR5lpP43knSvbp4dPESGL8%2FeoY8Dq5BKCJCslLlVA1dzj8aPqOCGNJjVRVaYrPuv%2FfGnpFpa%2BjxKdKFO7Gni2mIMdgQT1H1nrxhbUDA4TDfZBtajSwhiXvESLzMrewc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754e9a7aa8ab1c02-OSL
content-encoding: br
X-Firefox-Spdy: h2