Overview

URL 881daleperkinsnews.blogspot.com/2022/08/das-boot-besetzung-1981.html
IP142.250.74.161
ASNGOOGLE
Location United States
Report completed2022-09-16 11:20:49 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-16 2 effectiveperformanceformat.com Sinkholed
2022-09-16 2 effectiveperformanceformat.com Sinkholed
2022-09-16 2 reapinject.com Sinkholed
2022-09-16 2 reapinject.com Sinkholed
2022-09-16 2 varietiesplea.com Sinkholed
2022-09-16 2 varietiesplea.com Sinkholed


Files

No files detected



Passive DNS (40)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
mnemonic passive DNS simplewebanalysis.com (2) 0 2022-02-25 04:06:25 UTC 2022-09-16 09:43:20 UTC 35.158.39.64 Unknown ranking
mnemonic passive DNS static.cloudflareinsights.com (1) 1294 2019-09-24 14:34:56 UTC 2022-09-16 07:21:15 UTC 172.64.156.26
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-16 09:00:17 UTC 143.204.55.115
mnemonic passive DNS 881daleperkinsnews.blogspot.com (2) 0 No data No data 142.250.74.161 Unknown ranking
mnemonic passive DNS e1.o.lencr.org (2) 6159 2021-08-20 07:36:30 UTC 2022-09-16 05:40:35 UTC 23.36.76.226
mnemonic passive DNS www.blogger.com (3) 8975 2012-05-22 07:35:03 UTC 2022-09-16 06:45:13 UTC 216.58.207.201
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-16 11:09:52 UTC 142.250.74.10
mnemonic passive DNS ocsp.digicert.com (8) 86 2012-05-21 07:02:23 UTC 2022-09-16 11:03:39 UTC 93.184.220.29
mnemonic passive DNS assets.cdn.moviepilot.de (1) 361058 2015-03-11 10:17:38 UTC 2022-09-13 18:17:34 UTC 104.18.40.42
mnemonic passive DNS images.t-online.de (1) 891032 2021-12-15 02:33:42 UTC 2022-09-15 10:26:02 UTC 143.204.55.31
mnemonic passive DNS reapinject.com (2) 0 2022-08-25 13:04:49 UTC 2022-09-16 09:58:14 UTC 173.233.139.164 Unknown ranking
mnemonic passive DNS varietiesplea.com (2) 0 2022-09-05 01:10:59 UTC 2022-09-16 09:58:09 UTC 192.243.61.225 Unknown ranking
mnemonic passive DNS cdn.cloudimagesb.com (1) 23099 2021-02-12 16:15:41 UTC 2022-09-16 08:33:28 UTC 45.133.44.10
mnemonic passive DNS code.ionicframework.com (1) 14473 2014-02-05 17:09:16 UTC 2022-09-16 11:14:09 UTC 104.26.6.173
mnemonic passive DNS i.ytimg.com (1) 109 2019-09-28 06:57:57 UTC 2022-09-16 09:54:50 UTC 216.58.211.22
mnemonic passive DNS apis.google.com (1) 105 2013-05-30 23:17:44 UTC 2022-09-16 04:52:32 UTC 142.250.74.174
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-16 10:44:45 UTC 34.120.237.76
mnemonic passive DNS snapwidget.com (11) 52354 2012-07-20 15:48:14 UTC 2022-09-16 09:01:20 UTC 104.26.9.123
mnemonic passive DNS play.google.com (2) 34 2018-05-12 00:28:37 UTC 2022-09-16 04:30:00 UTC 216.58.207.206
mnemonic passive DNS s4.histats.com (1) 12782 2012-05-21 17:14:14 UTC 2022-09-16 04:39:39 UTC 192.99.8.28
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-16 05:11:10 UTC 54.187.146.10
mnemonic passive DNS ajax.googleapis.com (2) 12905 2019-10-15 17:52:08 UTC 2022-09-16 09:41:02 UTC 142.250.74.74
mnemonic passive DNS static.kino.de (1) 402531 2017-02-03 11:17:05 UTC 2022-09-16 07:48:16 UTC 178.19.70.100
mnemonic passive DNS 2.bp.blogspot.com (1) 11071 2013-07-04 03:01:31 UTC 2022-09-16 06:53:22 UTC 142.250.74.161
mnemonic passive DNS www.effectiveperformanceformat.com (2) 243394 2021-10-06 13:43:14 UTC 2022-09-16 04:04:34 UTC 192.243.59.20
mnemonic passive DNS js-agent.newrelic.com (1) 378 2017-01-30 05:00:15 UTC 2022-09-16 04:43:19 UTC 151.101.86.137
mnemonic passive DNS bam.nr-data.net (2) 630 2015-02-10 00:06:27 UTC 2022-09-16 04:33:06 UTC 162.247.241.14
mnemonic passive DNS scontent.cdninstagram.com (5) 1107 2015-03-24 22:31:41 UTC 2022-09-16 10:24:50 UTC 31.13.72.53
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-16 04:25:30 UTC 143.204.55.35
mnemonic passive DNS lh3.googleusercontent.com (3) 66 2013-05-30 23:27:19 UTC 2022-09-16 04:33:02 UTC 142.250.74.1
mnemonic passive DNS www.combinatronics.com (2) 0 2020-08-23 00:30:30 UTC 2022-09-12 09:50:27 UTC 104.26.10.202 Domain (combinatronics.com) ranked at: 757342
mnemonic passive DNS www.gstatic.com (4) 0 2016-07-26 09:37:06 UTC 2022-09-16 10:10:18 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS s10.histats.com (1) 15211 2012-05-21 17:14:14 UTC 2022-09-16 05:16:51 UTC 46.105.201.240
mnemonic passive DNS r3.o.lencr.org (10) 344 2020-12-02 08:52:13 UTC 2022-09-16 04:41:23 UTC 23.36.76.226
mnemonic passive DNS ocsp.pki.goog (26) 175 2017-06-14 07:23:31 UTC 2022-09-16 04:23:37 UTC 142.250.74.3
mnemonic passive DNS maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-09-16 08:16:58 UTC 104.18.10.207
mnemonic passive DNS fonts.gstatic.com (9) 0 2014-08-29 13:43:22 UTC 2022-09-16 04:23:38 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-16 04:23:36 UTC 34.117.237.239
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-16 05:11:39 UTC 142.250.74.164


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161

Date UQ / IDS / BL URL IP
2022-11-29 19:54:38 +0000
0 - 0 - 4 77581087.blogspot.com.br/search/label/new%20cummer 142.250.74.161
2022-11-29 19:03:16 +0000
0 - 0 - 1 xcvbcvxgsdfgcxvbcxvbsdfg.blogspot.co.id/?m=1 142.250.74.161
2022-11-29 19:02:17 +0000
0 - 0 - 3 xcvbcvxgsdfgcxvbcxvbsdfg.blogspot.rs/ 142.250.74.161
2022-11-29 19:01:47 +0000
0 - 0 - 3 xcvbcvxgsdfgcxvbcxvbsdfg.blogspot.ru/ 142.250.74.161
2022-11-29 19:01:15 +0000
0 - 0 - 3 xcvbxcvbsdfgsdfgcxzxcvbsdfgsdf.blogspot.jp/ 142.250.74.161

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-11-29 20:15:03 +0000
0 - 0 - 24 9ea7c835-4a67-4ec3-a4e5-3a76594c84b5.id.repl.co/ 34.149.204.188
2022-11-29 20:13:11 +0000
0 - 0 - 3 xxx-erotic-sex-story.blogspot.tw/ 172.217.21.161
2022-11-29 19:57:36 +0000
0 - 0 - 3 politikoimerologio.blogspot.com/search/label/ (...) 172.217.21.161
2022-11-29 19:55:06 +0000
0 - 0 - 11 www.2gaming.tk/ 142.250.74.147
2022-11-29 19:54:38 +0000
0 - 0 - 4 77581087.blogspot.com.br/search/label/new%20cummer 142.250.74.161

Last 1 reports on domain: 881daleperkinsnews.blogspot.com

Date UQ / IDS / BL URL IP
2022-09-16 11:20:49 +0000
0 - 0 - 6 881daleperkinsnews.blogspot.com/2022/08/das-b (...) 142.250.74.161

No other reports with similar screenshot



JavaScript

Executed Scripts (82)


Executed Evals (6)

#1 JavaScript::Eval (size: 19184, repeated: 1) - SHA256: 271e72a99fbef74fb68b77edc897c0d271a31559cf4c2e5a410358a30bb8b7c4

                                        (function() {
    var po = function(M, p, n, t) {
            return lf(p, ((t = A(p, 85), p).T && t < p.S ? (L(p, 85, p.S), MB(M, p)) : L(p, 85, M), n)), L(p, 85, t), A(p, 256)
        },
        tV = function(M, p) {
            if ((M = (p = B.trustedTypes, null), !p) || !p.createPolicy) return M;
            try {
                M = p.createPolicy("bg", {
                    createHTML: no,
                    createScript: no,
                    createScriptURL: no
                })
            } catch (n) {
                B.console && B.console.error(n.message)
            }
            return M
        },
        d0 = function(M, p, n, t, N) {
            for (N = (p = (t = p[2] | 0, p[3] | 0), 0); 14 > N; N++) n = n >>> 8 | n << 24, n += M | 0, p = p >>> 8 | p << 24, M = M << 3 | M >>> 29, n ^= t + 1890, M ^= n, p += t | 0, t = t << 3 | t >>> 29, p ^= N + 1890, t ^= p;
            return [M >>> 24 & 255, M >>> 16 & 255, M >>> 8 & 255, M >>> 0 & 255, n >>> 24 & 255, n >>> 16 & 255, n >>> 8 & 255, n >>> 0 & 255]
        },
        E = function(M, p, n, t) {
            for (n = (t = [], p | 0) - 1; 0 <= n; n--) t[(p | 0) - 1 - (n | 0)] = M >> 8 * n & 255;
            return t
        },
        va = function(M, p) {
            return r[p](r.prototype, {
                parent: M,
                pop: M,
                document: M,
                floor: M,
                console: M,
                call: M,
                stack: M,
                prototype: M,
                splice: M,
                replace: M,
                propertyIsEnumerable: M,
                length: M
            })
        },
        lf = function(M, p, n, t, N, l) {
            if (!M.K) {
                M.R++;
                try {
                    for (t = (n = 0, N = void 0, M.S); --p;) try {
                        if (l = void 0, M.h) N = Ha(M, M.h);
                        else {
                            if ((n = A(M, 85), n) >= t) break;
                            N = A(M, (l = (L(M, 32, n), y)(M), l))
                        }
                        h(false, false, M, (N && N[NB] & 2048 ? N(M, p) : Y(M, [b, 21, l], 0), p))
                    } catch (d) {
                        A(M, 494) ? Y(M, d, 22) : L(M, 494, d)
                    }
                    if (!p) {
                        if (M.zq) {
                            lf(M, (M.R--, 566831853126));
                            return
                        }
                        Y(M, [b, 33], 0)
                    }
                } catch (d) {
                    try {
                        Y(M, d, 22)
                    } catch (v) {
                        R(v, M)
                    }
                }
                M.R--
            }
        },
        qB = function(M, p) {
            return M(function(n) {
                n(p)
            }), [function() {
                return p
            }]
        },
        Lo = function(M, p, n, t) {
            function N() {}
            return t = AV(M, (n = void 0, function(l) {
                N && (p && Z(p), n = l, N(), N = void 0)
            }), !!p)[0], {
                invoke: function(l, d, v, H) {
                    function q() {
                        n(function(K) {
                            Z(function() {
                                l(K)
                            })
                        }, v)
                    }
                    if (!d) return d = t(v), l && l(d), d;
                    n ? q() : (H = N, N = function() {
                        Z((H(), q))
                    })
                }
            }
        },
        $M = function(M, p, n) {
            return p.G(function(t) {
                n = t
            }, false, M), n
        },
        E4 = function(M, p, n, t) {
            for (; M.W.length;) {
                n = (M.v = null, M.W.pop());
                try {
                    t = Ko(M, n)
                } catch (N) {
                    R(N, M)
                }
                if (p && M.v) {
                    (p = M.v, p)(function() {
                        f(true, true, M)
                    });
                    break
                }
            }
            return t
        },
        kM = function(M, p, n, t, N, l) {
            for (n = (p = y((l = ((N = (t = M[VK] || {}, y)(M), t).OS = y(M), t.o = [], M.A == M ? (c(M) | 0) - 1 : 1), M)), 0); n < l; n++) t.o.push(y(M));
            for (t.AA = A(M, p); l--;) t.o[l] = A(M, t.o[l]);
            return t.Z = A(M, N), t
        },
        g = function(M, p) {
            p.W.splice(0, 0, M)
        },
        no = function(M) {
            return M
        },
        JV = function(M, p, n, t) {
            Q((t = (n = y(M), y)(M), M), t, E(A(M, n), p))
        },
        Q = function(M, p, n, t, N, l) {
            if (M.A == M)
                for (N = A(M, p), 122 == p ? (p = function(d, v, H, q, K) {
                        if (v = ((K = N.length, K) | 0) - 4 >> 3, N.hA != v) {
                            q = (H = [0, (N.hA = v, 0), l[1], l[2]], (v << 3) - 4);
                            try {
                                N.tA = d0(jm(N, q), H, jm(N, (q | 0) + 4))
                            } catch (V) {
                                throw V;
                            }
                        }
                        N.push(N.tA[K & 7] ^ d)
                    }, l = A(M, 242)) : p = function(d) {
                        N.push(d)
                    }, t && p(t & 255), M = n.length, t = 0; t < M; t++) p(n[t])
        },
        h = function(M, p, n, t, N, l, d, v, H) {
            if (n.A = (n.u += (d = (v = (l = (N = (H = (p || n.C++, 0 < n.l && n.V && n.Kr && 1 >= n.R && !n.h && !n.v && (!p || 1 < n.L - t) && 0 == document.hidden), 4) == n.C) || H ? n.Y() : n.X, l - n.X), v) >> 14, n.I && (n.I ^= d * (v << 2)), d), d) || n.A, N || H) n.C = 0, n.X = l;
            if (!H || l - n.j < n.l - (M ? 255 : p ? 5 : 2)) return false;
            return L(n, 85, (M = A(n, (n.L = t, p ? 32 : 85)), n.S)), n.W.push([em, M, p ? t + 1 : t]), n.v = Z, true
        },
        r0 = function(M, p, n, t) {
            try {
                t = M[((p | 0) + 2) % 3], M[p] = (M[p] | 0) - (M[((p | 0) + 1) % 3] | 0) - (t | 0) ^ (1 == p ? t << n : t >>> n)
            } catch (N) {
                throw N;
            }
        },
        S, R = function(M, p) {
            p.K = ((p.K ? p.K + "~" : "E:") + M.message + ":" + M.stack).slice(0, 2048)
        },
        Ko = function(M, p, n, t, N) {
            if (t = p[0], t == w) M.D = 25, M.B(p);
            else if (t == W) {
                N = p[1];
                try {
                    n = M.K || M.B(p)
                } catch (l) {
                    R(l, M), n = M.K
                }
                N(n)
            } else if (t == em) M.B(p);
            else if (t == F) M.B(p);
            else if (t == yK) {
                try {
                    for (n = 0; n < M.U.length; n++) try {
                        N = M.U[n], N[0][N[1]](N[2])
                    } catch (l) {}
                } catch (l) {}(0, p[1])(function(l, d) {
                    M.G(l, true, d)
                }, (M.U = [], function(l) {
                    (g((l = !M.W.length, [NB]), M), l) && f(true, false, M)
                }))
            } else {
                if (t == u) return n = p[2], L(M, 490, p[6]), L(M, 256, n), M.B(p);
                t == NB ? (M.T = [], M.O = null, M.P = []) : t == O4 && "loading" === B.document.readyState && (M.v = function(l, d) {
                    function v() {
                        d || (d = true, l())
                    }(B.document.addEventListener("DOMContentLoaded", v, (d = false, P)), B).addEventListener("load", v, P)
                })
            }
        },
        f = function(M, p, n, t, N, l) {
            if (n.W.length) {
                n.V = !(n.V && 0(), n.Kr = M, 0);
                try {
                    t = n.Y(), n.X = t, n.C = 0, n.j = t, l = E4(n, M), N = n.Y() - n.j, n.N += N, N < (p ? 0 : 10) || 0 >= n.D-- || (N = Math.floor(N), n.P.push(254 >= N ? N : 254))
                } finally {
                    n.V = false
                }
                return l
            }
        },
        YM = function(M, p, n) {
            if ("object" == (n = typeof M, n))
                if (M) {
                    if (M instanceof Array) return "array";
                    if (M instanceof Object) return n;
                    if ("[object Window]" == (p = Object.prototype.toString.call(M), p)) return "object";
                    if ("[object Array]" == p || "number" == typeof M.length && "undefined" != typeof M.splice && "undefined" != typeof M.propertyIsEnumerable && !M.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == p || "undefined" != typeof M.call && "undefined" != typeof M.propertyIsEnumerable && !M.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == n && "undefined" == typeof M.call) return "object";
            return n
        },
        P = {
            passive: true,
            capture: true
        },
        jm = function(M, p) {
            return M[p] << 24 | M[(p | 0) + 1] << 16 | M[(p | 0) + 2] << 8 | M[(p | 0) + 3]
        },
        Dy = function(M, p, n, t, N) {
            Q(((t = (n = (t = (M &= (N = M & 3, 4), y(p)), y(p)), A)(p, t), M && (t = bf("" + t)), N) && Q(p, n, E(t.length, 2)), p), n, t)
        },
        aR = function(M, p, n, t, N, l) {
            function d() {
                if (n.A == n) {
                    if (n.O) {
                        var v = [u, p, t, void 0, N, l, arguments];
                        if (2 == M) var H = f(false, false, (g(v, n), n));
                        else if (1 == M) {
                            var q = !n.W.length;
                            (g(v, n), q) && f(false, false, n)
                        } else H = Ko(n, v);
                        return H
                    }
                    N && l && N.removeEventListener(l, d, P)
                }
            }
            return d
        },
        hV = function(M, p, n, t) {
            for (n = y(M), t = 0; 0 < p; p--) t = t << 8 | c(M);
            L(M, n, t)
        },
        T, G = function(M, p, n) {
            n = this;
            try {
                RR(this, M, p)
            } catch (t) {
                R(t, this), p(function(N) {
                    N(n.K)
                })
            }
        },
        y = function(M, p) {
            if (M.h) return Ha(M, M.i);
            return (p = x(true, 8, M), p & 128) && (p ^= 128, M = x(true, 2, M), p = (p << 2) + (M | 0)), p
        },
        Ha = function(M, p) {
            return (p = p.create().shift(), M.h.create()).length || M.i.create().length || (M.i = void 0, M.h = void 0), p
        },
        X = function(M, p, n) {
            n[L(M, p, n), O4] = 2796
        },
        Zy = function(M, p) {
            return p = c(M), p & 128 && (p = p & 127 | c(M) << 7), p
        },
        MB = function(M, p) {
            L(p, (p.rO.push(p.O.slice()), p.O[85] = void 0, 85), M)
        },
        L = function(M, p, n) {
            if (85 == p || 32 == p) M.O[p] ? M.O[p].concat(n) : M.O[p] = mZ(M, n);
            else {
                if (M.J && 80 != p) return;
                321 == p || 122 == p || 327 == p || 268 == p || 242 == p ? M.O[p] || (M.O[p] = fo(M, n, 62, p)) : M.O[p] = fo(M, n, 97, p)
            }
            80 == p && (M.I = x(false, 32, M), M.F = void 0)
        },
        mZ = function(M, p, n) {
            return n = r[M.g](M.gO), n[M.g] = function() {
                return p
            }, n.concat = function(t) {
                p = t
            }, n
        },
        bf = function(M, p, n, t, N) {
            for (n = (p = (M = M.replace(/\r\n/g, "\n"), 0), []), N = 0; N < M.length; N++) t = M.charCodeAt(N), 128 > t ? n[p++] = t : (2048 > t ? n[p++] = t >> 6 | 192 : (55296 == (t & 64512) && N + 1 < M.length && 56320 == (M.charCodeAt(N + 1) & 64512) ? (t = 65536 + ((t & 1023) << 10) + (M.charCodeAt(++N) & 1023), n[p++] = t >> 18 | 240, n[p++] = t >> 12 & 63 | 128) : n[p++] = t >> 12 | 224, n[p++] = t >> 6 & 63 | 128), n[p++] = t & 63 | 128);
            return n
        },
        B = this || self,
        ca = function(M, p, n) {
            if (3 == M.length) {
                for (n = 0; 3 > n; n++) p[n] += M[n];
                for (n = [13, 8, 13, 12, 16, 5, 3, (M = 0, 10), 15]; 9 > M; M++) p[3](p, M % 3, n[M])
            }
        },
        x = function(M, p, n, t, N, l, d, v, H, q, K, V, k, J) {
            if ((q = A(n, 85), q) >= n.S) throw [b, 31];
            for (v = (d = (H = 0, t = p, n.Sf.length), q); 0 < t;) J = v % 8, K = v >> 3, l = 8 - (J | 0), l = l < t ? l : t, V = n.T[K], M && (k = n, k.F != v >> 6 && (k.F = v >> 6, N = A(k, 80), k.H = d0(k.I, [0, 0, N[1], N[2]], k.F)), V ^= n.H[K & d]), v += l, H |= (V >> 8 - (J | 0) - (l | 0) & (1 << l) - 1) << (t | 0) - (l | 0), t -= l;
            return L(n, 85, (q | 0) + (p | (M = H, 0))), M
        },
        Y = function(M, p, n, t, N, l) {
            if (!M.J) {
                if (3 < (p = (n = (0 == (l = A(M, ((t = void 0, p && p[0] === b) && (n = p[1], t = p[2], p = void 0), 268)), l).length && (N = A(M, 32) >> 3, l.push(n, N >> 8 & 255, N & 255), void 0 != t && l.push(t & 255)), ""), p && (p.message && (n += p.message), p.stack && (n += ":" + p.stack)), A)(M, 120), p)) {
                    t = (n = bf((p -= (n = n.slice(0, (p | 0) - 3), (n.length | 0) + 3), n)), M).A, M.A = M;
                    try {
                        Q(M, 122, E(n.length, 2).concat(n), 9)
                    } finally {
                        M.A = t
                    }
                }
                L(M, 120, p)
            }
        },
        g0 = function(M, p) {
            (p.push(M[0] << 24 | M[1] << 16 | M[2] << 8 | M[3]), p.push(M[4] << 24 | M[5] << 16 | M[6] << 8 | M[7]), p).push(M[8] << 24 | M[9] << 16 | M[10] << 8 | M[11])
        },
        Z = B.requestIdleCallback ? function(M) {
            requestIdleCallback(function() {
                M()
            }, {
                timeout: 4
            })
        } : B.setImmediate ? function(M) {
            setImmediate(M)
        } : function(M) {
            setTimeout(M, 0)
        },
        fo = function(M, p, n, t, N, l, d, v) {
            return l = r[M.g]((p = [-41, 36, -83, -30, -66, -99, (N = (v = IR, n & 7), p), -100, -92, -34], M.QP)), l[M.g] = function(H) {
                d = (N += 6 + 7 * n, H), N &= 7
            }, l.concat = function(H) {
                return H = (d = (H = (H = t % 16 + 1, +(v() | 0) * H + 3 * t * t * H + 39 * d * d + N - 1404 * t * d - 117 * t * t * d - H * d - 585 * d + p[N + 27 & 7] * t * H), void 0), p[H]), p[(N + 21 & 7) + (n & 2)] = H, p[N + (n & 2)] = 36, H
            }, l
        },
        RR = function(M, p, n, t, N) {
            for (M.gO = (M.QP = va({get: function() {
                        return this.concat()
                    }
                }, (M.ot = (M.vH = QK, M.Sf = M[W], Sm), M.g)), r[M.g](M.QP, {
                    value: {
                        value: {}
                    }
                })), N = [], t = 0; 128 > t; t++) N[t] = String.fromCharCode(t);
            (g((g((X(M, 453, (X(M, (X(M, 374, ((X(M, 38, ((X(M, 125, (L(M, (X((X(M, (X(M, 299, (X(M, 482, ((X(M, (L(M, 242, [0, 0, (L(M, 93, ((X(M, 386, (X((X(M, 228, (X(M, 448, (X(M, (M.BH = (L(M, 455, (X(M, 168, (L(M, (X(M, (X(M, 286, (L(M, 327, (L(M, (L(((L(M, ((L(M, 122, (X(M, 253, ((X(M, (M.It = ((X((L(M, (L(M, (M.cH = (M.R = (M.O = [], (t = window.performance || {}, M).i = (M.H = void 0, void 0), M.U = [], 0), (M.h = void 0, M).I = (M.K = void 0, M.j = 0, M.rO = [], M.A = (M.L = 8001, M.S = 0, M), M.v = null, M.F = (M.ES = 0, void 0), (M.W = ((M.WH = function(l) {
                this.A = l
            }, M).J = false, []), M).N = (M.X = 0, M.D = 25, M.P = [], M.V = (M.T = (M.Kr = false, []), !(M.l = 0, 1)), 0), void 0), M.C = (M.u = 1, void 0), t.timeOrigin) || (t.timing || {}).navigationStart || 0, 85), 0), 32), 0), M), 390, function(l, d, v, H) {
                L(l, (H = A((d = A(l, (v = y((d = y((H = y(l), l)), l)), d)), l), H), v), H in d | 0)
            }), M).Tq = 0, 0), 161), function(l) {
                hV(l, 4)
            }), X)(M, 322, function(l, d, v, H) {
                L(l, (d = y((H = c((v = y(l), l)), l)), d), A(l, v) >>> H)
            }), function(l, d) {
                (d = A(l, y(l)), MB)(d, l.A)
            })), z(4))), X)(M, 304, function(l) {
                Dy(3, l)
            }), 321), [160, 0, 0]), X)(M, 345, function(l, d, v) {
                h(false, true, l, d) || (d = y(l), v = y(l), L(l, v, function(H) {
                    return eval(H)
                }(oR(A(l.A, d)))))
            }), M), 120, 2048), 494), 579), [])), function(l, d, v, H, q) {
                L(l, (d = (H = A(l, (q = A(l, (q = (H = (d = y((v = y(l), l)), y(l)), y(l)), q)), H)), A(l, d)), v), aR(q, d, l, H))
            })), 82), function(l, d, v) {
                L(l, (d = YM((d = (v = (d = y(l), y(l)), A(l, d)), d)), v), d)
            }), 268), []), function(l, d, v, H, q, K, V) {
                for (d = (K = (q = A(l, (H = Zy((v = y(l), l)), V = "", 368)), q.length), 0); H--;) d = ((d | 0) + (Zy(l) | 0)) % K, V += N[q[d]];
                L(l, v, V)
            })), M)), 0), L(M, 11, B), 451), function(l, d, v, H, q) {
                0 !== (d = (q = (v = (q = y((v = y((H = (d = y(l), y(l)), l)), l)), A(l, v)), H = A(l, H), A)(l, q), A)(l.A, d), d) && (v = aR(1, v, l, q, d, H), d.addEventListener(H, v, P), L(l, 93, [d, H, v]))
            }), function(l, d, v, H) {
                L(l, (H = A(l, (d = (v = y(l), H = y(l), y)(l), H)), v = A(l, v), d), v[H])
            })), function(l, d, v, H) {
                if (v = l.rO.pop()) {
                    for (H = c(l); 0 < H; H--) d = y(l), v[d] = l.O[d];
                    l.O = (v[268] = l.O[268], v[120] = l.O[120], v)
                } else L(l, 85, l.S)
            })), M), 124, function(l, d, v, H) {
                !h(false, true, l, d) && (d = kM(l), H = d.Z, v = d.AA, l.A == l || H == l.WH && v == l) && (L(l, d.OS, H.apply(v, d.o)), l.X = l.Y())
            }), function(l) {
                JV(l, 1)
            })), X)(M, 144, function(l, d, v) {
                (v = (d = y(l), y(l)), L)(l, v, "" + A(l, d))
            }), 0)), 0)]), 78), function(l) {
                JV(l, 4)
            }), X)(M, 366, function(l, d, v, H) {
                v = A(l, (d = A(l, (d = (v = y(l), y(l)), H = y(l), d)), v)) == d, L(l, H, +v)
            }), function(l, d, v, H) {
                (H = (v = (d = y(l), y)(l), y)(l), L)(l, H, A(l, d) || A(l, v))
            })), function(l, d, v, H, q, K, V, k, J, e, O, D) {
                function I(a, m) {
                    for (; V < a;) H |= c(l) << V, V += 8;
                    return H >>= (m = H & (1 << a) - (V -= a, 1), a), m
                }
                for (D = (O = (k = (q = (K = y(l), V = H = 0, I(3) | 0) + 1, I)(5), 0), []), J = 0; J < k; J++) e = I(1), D.push(e), O += e ? 0 : 1;
                for (J = (d = (O = ((O | 0) - 1).toString(2).length, []), 0); J < k; J++) D[J] || (d[J] = I(O));
                for (O = 0; O < k; O++) D[O] && (d[O] = y(l));
                for (v = []; q--;) v.push(A(l, y(l)));
                X(l, K, function(a, m, Ba, C, U) {
                    for (U = (Ba = (m = 0, []), []); m < k; m++) {
                        if (!(C = d[m], D)[m]) {
                            for (; C >= U.length;) U.push(y(a));
                            C = U[C]
                        }
                        Ba.push(C)
                    }(a.h = mZ(a, v.slice()), a).i = mZ(a, Ba)
                })
            })), 340), function(l, d, v, H) {
                L((d = (H = A(l, (v = y((H = y(l), l)), H)), A)(l, v), l), v, d + H)
            }), M), 472, function(l, d, v, H, q, K) {
                h(false, true, l, d) || (K = kM(l.A), v = K.Z, d = K.OS, H = K.o, K = K.AA, q = H.length, v = 0 == q ? new K[v] : 1 == q ? new K[v](H[0]) : 2 == q ? new K[v](H[0], H[1]) : 3 == q ? new K[v](H[0], H[1], H[2]) : 4 == q ? new K[v](H[0], H[1], H[2], H[3]) : 2(), L(l, d, v))
            }), 176), 0), function(l, d, v, H, q, K) {
                if (!h(true, true, l, d)) {
                    if ("object" == YM((l = (K = (d = (H = (K = y((v = y(l), d = y(l), l)), y(l)), A(l, d)), A(l, K)), v = A(l, v), A(l, H)), v))) {
                        for (q in H = [], v) H.push(q);
                        v = H
                    }
                    for (H = (K = (q = 0, 0 < K) ? K : 1, v.length); q < H; q += K) d(v.slice(q, (q | 0) + (K | 0)), l)
                }
            })), X)(M, 91, function(l) {
                Dy(4, l)
            }), function(l, d, v) {
                (d = A(l, (v = 0 != (v = y(l), d = y(l), A(l, v)), d)), v) && L(l, 85, d)
            })), X)(M, 90, function(l, d, v, H, q) {
                for (q = (H = (v = Zy((d = y(l), l)), []), 0); q < v; q++) H.push(c(l));
                L(l, d, H)
            }), function(l, d, v, H, q) {
                (H = y((v = y((q = y(l), l)), l)), l.A == l) && (d = A(l, q), v = A(l, v), H = A(l, H), d[v] = H, 80 == q && (l.F = void 0, 2 == v && (l.I = x(false, 32, l), l.F = void 0)))
            })), L(M, 256, {}), 328), function() {}), function(l, d) {
                l = A((d = y(l), l).A, d), l[0].removeEventListener(l[1], l[2], P)
            })), [O4]), M), [F, p]), M), g([yK, n], M), f)(true, true, M)
        },
        AV = function(M, p, n, t) {
            return (t = S[M.substring(0, 3) + "_"]) ? t(M.substring(3), p, n) : qB(p, M)
        },
        c = function(M) {
            return M.h ? Ha(M, M.i) : x(true, 8, M)
        },
        A = function(M, p) {
            if (void 0 === (M = M.O[p], M)) throw [b, 30, p];
            if (M.value) return M.create();
            return (M.create(3 * p * p + 36 * p + 15), M).prototype
        },
        z = function(M, p) {
            for (p = []; M--;) p.push(255 * Math.random() | 0);
            return p
        },
        VK = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        O4 = [],
        em = [],
        F = [],
        w = [],
        W = [],
        NB = [],
        yK = (G.prototype.Xv = void 0, G.prototype.zq = false, G.prototype.s = (G.prototype.jf = void 0, "toString"), []),
        b = {},
        u = [],
        r = (((((g0, function() {})(z), function() {})(r0), function() {})(ca), G.prototype).g = "create", b.constructor),
        IR = (((T = G.prototype, T.Fv = function() {
            return Math.floor(this.N + (this.Y() - this.j))
        }, T.nr = function(M, p, n, t, N) {
            for (N = t = 0; N < M.length; N++) t += M.charCodeAt(N), t += t << 10, t ^= t >> 6;
            return t = new Number((M = (t += t << 3, t ^= t >> 11, t + (t << 15) >>> 0), M) & (1 << p) - 1), t[0] = (M >>> p) % n, t
        }, T).iT = function(M, p, n, t, N, l) {
            for (l = t = (N = [], 0); t < M.length; t++)
                for (l += p, n = n << p | M[t]; 7 < l;) l -= 8, N.push(n >> l & 255);
            return N
        }, T.Y = (window.performance || {}).now ? function() {
            return this.cH + window.performance.now()
        } : function() {
            return +new Date
        }, T).yP = function() {
            return Math.floor(this.Y())
        }, T.bT = function(M, p, n) {
            return M ^ ((p = ((p ^= p << 13, p ^= p >> 17, p) ^ p << 5) & n) || (p = 1), p)
        }, void 0),
        Sm = (G.prototype.B = (T.G = function(M, p, n, t, N) {
            if (n = "array" === YM(n) ? n : [n], this.K) M(this.K);
            else try {
                N = [], t = !this.W.length, g([w, N, n], this), g([W, M, N], this), p && !t || f(p, true, this)
            } catch (l) {
                R(l, this), M(this.K)
            }
        }, function(M, p) {
            return M = (p = (IR = function() {
                    return M == p ? 15 : -36
                }, {}), {}),
                function(n, t, N, l, d, v, H, q, K, V, k, J, e, O, D) {
                    M = (N = M, p);
                    try {
                        if (V = n[0], V == F) {
                            O = n[1];
                            try {
                                for (H = (v = [], e = atob(O), q = 0); q < e.length; q++) J = e.charCodeAt(q), 255 < J && (v[H++] = J & 255, J >>= 8), v[H++] = J;
                                L(this, 80, (this.S = (this.T = v, this.T).length << 3, [0, 0, 0]))
                            } catch (I) {
                                Y(this, I, 17);
                                return
                            }
                            lf(this, 8001)
                        } else if (V == w) n[1].push(A(this, 122).length, A(this, 120), A(this, 321).length, A(this, 327).length), L(this, 256, n[2]), this.O[387] && po(A(this, 387), this, 8001);
                        else {
                            if (V == W) {
                                (l = (K = E(((v = n[2], A)(this, 321).length | 0) + 2, 2), this.A), this).A = this;
                                try {
                                    D = A(this, 268), 0 < D.length && Q(this, 321, E(D.length, 2).concat(D), 10), Q(this, 321, E(this.u, 1), 109), Q(this, 321, E(this[W].length, 1)), e = 0, t = A(this, 122), e -= (A(this, 321).length | 0) + 5, e += A(this, 176) & 2047, 4 < t.length && (e -= (t.length | 0) + 3), 0 < e && Q(this, 321, E(e, 2).concat(z(e)), 15), 4 < t.length && Q(this, 321, E(t.length, 2).concat(t), 156)
                                } finally {
                                    this.A = l
                                }
                                if (d = ((H = z(2).concat(A(this, 321)), H[1] = H[0] ^ 6, H)[3] = H[1] ^ K[0], H[4] = H[1] ^ K[1], this).dO(H)) d = "!" + d;
                                else
                                    for (d = "", e = 0; e < H.length; e++) k = H[e][this.s](16), 1 == k.length && (k = "0" + k), d += k;
                                return A(this, (A(this, (L(this, (A(this, (q = d, 122)).length = v.shift(), 120), v.shift()), 321)).length = v.shift(), 327)).length = v.shift(), q
                            }
                            if (V == em) po(n[1], this, n[2]);
                            else if (V == u) return po(n[1], this, 8001)
                        }
                    } finally {
                        M = N
                    }
                }
        }()), /./);
    (G.prototype.ef = (G.prototype.M4 = 0, 0), G.prototype).dO = function(M, p, n, t) {
        if (n = window.btoa) {
            for (p = (t = 0, ""); t < M.length; t += 8192) p += String.fromCharCode.apply(null, M.slice(t, t + 8192));
            M = n(p).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
        } else M = void 0;
        return M
    };
    var QK, w0 = F.pop.bind((G.prototype[yK] = [0, 0, 1, 1, 0, 1, 1], G.prototype)[w]),
        oR = (QK = (Sm[G.prototype.s] = w0, va)({get: w0
        }, G.prototype.g), G.prototype.Y2 = void 0, function(M, p) {
            return (p = tV()) && 1 === M.eval(p.createScript("1")) ? function(n) {
                return p.createScript(n)
            } : function(n) {
                return "" + n
            }
        }(B));
    (40 < (S = B.botguard || (B.botguard = {}), S.m) || (S.m = 41, S.bg = Lo, S.a = AV), S).SBO_ = function(M, p, n) {
        return n = new G(M, p), [function(t) {
            return $M(t, n)
        }]
    };
}).call(this);
                                    

#2 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 6de2e123ca804d9775b1d339e6943a7875eb1ae6f3c319a21f734e43975d8075

                                        0,
function(l) {
    hV(l, 1)
}
                                    

#3 JavaScript::Eval (size: 60, repeated: 1) - SHA256: f14087f86c8f75f1de4ac6d5e00c402b4373925278f00e414d35796feb0590c6

                                        0,
function(l, d, v) {
    L((d = y(l), v = y(l), d = l.O[d] && A(l, d), l), v, d)
}
                                    

#4 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 48d339162eba6e64c397221839d7c2d4b833474f909c367af1ad585b70bd29d2

                                        0,
function(l) {
    hV(l, 2)
}
                                    

#5 JavaScript::Eval (size: 15622, repeated: 1) - SHA256: 19bee094c7e8db08260ed5c3d2d90a6164830e78f8db1e5a8a1fc1a4e43b1d5a

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var d = function(M, l) {
            if ((M = (l = null, n.trustedTypes), !M) || !M.createPolicy) return l;
            try {
                l = M.createPolicy("bg", {
                    createHTML: t,
                    createScript: t,
                    createScriptURL: t
                })
            } catch (p) {
                n.console && n.console.error(p.message)
            }
            return l
        },
        t = function(M) {
            return M
        },
        n = this || self;
    (0, eval)(function(M, l) {
        return (l = d()) && 1 === M.eval(l.createScript("1")) ? function(p) {
            return l.createScript(p)
        } : function(p) {
            return "" + p
        }
    }(n)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var po=function(M,p,n,t){return lf(p,((t=A(p,85),p).T&&t<p.S?(L(p,85,p.S),MB(M,p)):L(p,85,M),n)),L(p,85,t),A(p,256)},tV=function(M,p){if((M=(p=B.trustedTypes,null),!p)||!p.createPolicy)return M;try{M=p.createPolicy("bg",{createHTML:no,createScript:no,createScriptURL:no})}catch(n){B.console&&B.console.error(n.message)}return M},d0=function(M,p,n,t,N){for(N=(p=(t=p[2]|0,p[3]|0),0);14>N;N++)n=n>>>8|n<<24,n+=M|0,p=p>>>8|p<<24,M=M<<3|M>>>29,n^=t+1890,M^=n,p+=t|0,t=t<<3|t>>>29,p^=N+1890,t^=p;return[M>>>24&255,M>>>16&255,M>>>8&255,M>>>0&255,n>>>24&255,n>>>16&255,n>>>8&255,n>>>0&255]},E=function(M,p,n,t){for(n=(t=[],p|0)-1;0<=n;n--)t[(p|0)-1-(n|0)]=M>>8*n&255;return t},va=function(M,p){return r[p](r.prototype,{parent:M,pop:M,document:M,floor:M,console:M,call:M,stack:M,prototype:M,splice:M,replace:M,propertyIsEnumerable:M,length:M})},lf=function(M,p,n,t,N,l){if(!M.K){M.R++;try{for(t=(n=0,N=void 0,M.S);--p;)try{if(l=void 0,M.h)N=Ha(M,M.h);else{if((n=A(M,85),n)>=t)break;N=A(M,(l=(L(M,32,n),y)(M),l))}h(false,false,M,(N&&N[NB]&2048?N(M,p):Y(M,[b,21,l],0),p))}catch(d){A(M,494)?Y(M,d,22):L(M,494,d)}if(!p){if(M.zq){lf(M,(M.R--,566831853126));return}Y(M,[b,33],0)}}catch(d){try{Y(M,d,22)}catch(v){R(v,M)}}M.R--}},qB=function(M,p){return M(function(n){n(p)}),[function(){return p}]},Lo=function(M,p,n,t){function N(){}return t=AV(M,(n=void 0,function(l){N&&(p&&Z(p),n=l,N(),N=void 0)}),!!p)[0],{invoke:function(l,d,v,H){function q(){n(function(K){Z(function(){l(K)})},v)}if(!d)return d=t(v),l&&l(d),d;n?q():(H=N,N=function(){Z((H(),q))})}}},$M=function(M,p,n){return p.G(function(t){n=t},false,M),n},E4=function(M,p,n,t){for(;M.W.length;){n=(M.v=null,M.W.pop());try{t=Ko(M,n)}catch(N){R(N,M)}if(p&&M.v){(p=M.v,p)(function(){f(true,true,M)});break}}return t},kM=function(M,p,n,t,N,l){for(n=(p=y((l=((N=(t=M[VK]||{},y)(M),t).OS=y(M),t.o=[],M.A==M?(c(M)|0)-1:1),M)),0);n<l;n++)t.o.push(y(M));for(t.AA=A(M,p);l--;)t.o[l]=A(M,t.o[l]);return t.Z=A(M,N),t},g=function(M,p){p.W.splice(0,0,M)},no=function(M){return M},JV=function(M,p,n,t){Q((t=(n=y(M),y)(M),M),t,E(A(M,n),p))},Q=function(M,p,n,t,N,l){if(M.A==M)for(N=A(M,p),122==p?(p=function(d,v,H,q,K){if(v=((K=N.length,K)|0)-4>>3,N.hA!=v){q=(H=[0,(N.hA=v,0),l[1],l[2]],(v<<3)-4);try{N.tA=d0(jm(N,q),H,jm(N,(q|0)+4))}catch(V){throw V;}}N.push(N.tA[K&7]^d)},l=A(M,242)):p=function(d){N.push(d)},t&&p(t&255),M=n.length,t=0;t<M;t++)p(n[t])},h=function(M,p,n,t,N,l,d,v,H){if(n.A=(n.u+=(d=(v=(l=(N=(H=(p||n.C++,0<n.l&&n.V&&n.Kr&&1>=n.R&&!n.h&&!n.v&&(!p||1<n.L-t)&&0==document.hidden),4)==n.C)||H?n.Y():n.X,l-n.X),v)>>14,n.I&&(n.I^=d*(v<<2)),d),d)||n.A,N||H)n.C=0,n.X=l;if(!H||l-n.j<n.l-(M?255:p?5:2))return false;return L(n,85,(M=A(n,(n.L=t,p?32:85)),n.S)),n.W.push([em,M,p?t+1:t]),n.v=Z,true},r0=function(M,p,n,t){try{t=M[((p|0)+2)%3],M[p]=(M[p]|0)-(M[((p|0)+1)%3]|0)-(t|0)^(1==p?t<<n:t>>>n)}catch(N){throw N;}},S,R=function(M,p){p.K=((p.K?p.K+"~":"E:")+M.message+":"+M.stack).slice(0,2048)},Ko=function(M,p,n,t,N){if(t=p[0],t==w)M.D=25,M.B(p);else if(t==W){N=p[1];try{n=M.K||M.B(p)}catch(l){R(l,M),n=M.K}N(n)}else if(t==em)M.B(p);else if(t==F)M.B(p);else if(t==yK){try{for(n=0;n<M.U.length;n++)try{N=M.U[n],N[0][N[1]](N[2])}catch(l){}}catch(l){}(0,p[1])(function(l,d){M.G(l,true,d)},(M.U=[],function(l){(g((l=!M.W.length,[NB]),M),l)&&f(true,false,M)}))}else{if(t==u)return n=p[2],L(M,490,p[6]),L(M,256,n),M.B(p);t==NB?(M.T=[],M.O=null,M.P=[]):t==O4&&"loading"===B.document.readyState&&(M.v=function(l,d){function v(){d||(d=true,l())}(B.document.addEventListener("DOMContentLoaded",v,(d=false,P)),B).addEventListener("load",v,P)})}},f=function(M,p,n,t,N,l){if(n.W.length){n.V=!(n.V&&0(),n.Kr=M,0);try{t=n.Y(),n.X=t,n.C=0,n.j=t,l=E4(n,M),N=n.Y()-n.j,n.N+=N,N<(p?0:10)||0>=n.D--||(N=Math.floor(N),n.P.push(254>=N?N:254))}finally{n.V=false}return l}},YM=function(M,p,n){if("object"==(n=typeof M,n))if(M){if(M instanceof Array)return"array";if(M instanceof Object)return n;if("[object Window]"==(p=Object.prototype.toString.call(M),p))return"object";if("[object Array]"==p||"number"==typeof M.length&&"undefined"!=typeof M.splice&&"undefined"!=typeof M.propertyIsEnumerable&&!M.propertyIsEnumerable("splice"))return"array";if("[object Function]"==p||"undefined"!=typeof M.call&&"undefined"!=typeof M.propertyIsEnumerable&&!M.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==n&&"undefined"==typeof M.call)return"object";return n},P={passive:true,capture:true},jm=function(M,p){return M[p]<<24|M[(p|0)+1]<<16|M[(p|0)+2]<<8|M[(p|0)+3]},Dy=function(M,p,n,t,N){Q(((t=(n=(t=(M&=(N=M&3,4),y(p)),y(p)),A)(p,t),M&&(t=bf(""+t)),N)&&Q(p,n,E(t.length,2)),p),n,t)},aR=function(M,p,n,t,N,l){function d(){if(n.A==n){if(n.O){var v=[u,p,t,void 0,N,l,arguments];if(2==M)var H=f(false,false,(g(v,n),n));else if(1==M){var q=!n.W.length;(g(v,n),q)&&f(false,false,n)}else H=Ko(n,v);return H}N&&l&&N.removeEventListener(l,d,P)}}return d},hV=function(M,p,n,t){for(n=y(M),t=0;0<p;p--)t=t<<8|c(M);L(M,n,t)},T,G=function(M,p,n){n=this;try{RR(this,M,p)}catch(t){R(t,this),p(function(N){N(n.K)})}},y=function(M,p){if(M.h)return Ha(M,M.i);return(p=x(true,8,M),p&128)&&(p^=128,M=x(true,2,M),p=(p<<2)+(M|0)),p},Ha=function(M,p){return(p=p.create().shift(),M.h.create()).length||M.i.create().length||(M.i=void 0,M.h=void 0),p},X=function(M,p,n){n[L(M,p,n),O4]=2796},Zy=function(M,p){return p=c(M),p&128&&(p=p&127|c(M)<<7),p},MB=function(M,p){L(p,(p.rO.push(p.O.slice()),p.O[85]=void 0,85),M)},L=function(M,p,n){if(85==p||32==p)M.O[p]?M.O[p].concat(n):M.O[p]=mZ(M,n);else{if(M.J&&80!=p)return;321==p||122==p||327==p||268==p||242==p?M.O[p]||(M.O[p]=fo(M,n,62,p)):M.O[p]=fo(M,n,97,p)}80==p&&(M.I=x(false,32,M),M.F=void 0)},mZ=function(M,p,n){return n=r[M.g](M.gO),n[M.g]=function(){return p},n.concat=function(t){p=t},n},bf=function(M,p,n,t,N){for(n=(p=(M=M.replace(/\\r\\n/g,"\\n"),0),[]),N=0;N<M.length;N++)t=M.charCodeAt(N),128>t?n[p++]=t:(2048>t?n[p++]=t>>6|192:(55296==(t&64512)&&N+1<M.length&&56320==(M.charCodeAt(N+1)&64512)?(t=65536+((t&1023)<<10)+(M.charCodeAt(++N)&1023),n[p++]=t>>18|240,n[p++]=t>>12&63|128):n[p++]=t>>12|224,n[p++]=t>>6&63|128),n[p++]=t&63|128);return n},B=this||self,ca=function(M,p,n){if(3==M.length){for(n=0;3>n;n++)p[n]+=M[n];for(n=[13,8,13,12,16,5,3,(M=0,10),15];9>M;M++)p[3](p,M%3,n[M])}},x=function(M,p,n,t,N,l,d,v,H,q,K,V,k,J){if((q=A(n,85),q)>=n.S)throw[b,31];for(v=(d=(H=0,t=p,n.Sf.length),q);0<t;)J=v%8,K=v>>3,l=8-(J|0),l=l<t?l:t,V=n.T[K],M&&(k=n,k.F!=v>>6&&(k.F=v>>6,N=A(k,80),k.H=d0(k.I,[0,0,N[1],N[2]],k.F)),V^=n.H[K&d]),v+=l,H|=(V>>8-(J|0)-(l|0)&(1<<l)-1)<<(t|0)-(l|0),t-=l;return L(n,85,(q|0)+(p|(M=H,0))),M},Y=function(M,p,n,t,N,l){if(!M.J){if(3<(p=(n=(0==(l=A(M,((t=void 0,p&&p[0]===b)&&(n=p[1],t=p[2],p=void 0),268)),l).length&&(N=A(M,32)>>3,l.push(n,N>>8&255,N&255),void 0!=t&&l.push(t&255)),""),p&&(p.message&&(n+=p.message),p.stack&&(n+=":"+p.stack)),A)(M,120),p)){t=(n=bf((p-=(n=n.slice(0,(p|0)-3),(n.length|0)+3),n)),M).A,M.A=M;try{Q(M,122,E(n.length,2).concat(n),9)}finally{M.A=t}}L(M,120,p)}},g0=function(M,p){(p.push(M[0]<<24|M[1]<<16|M[2]<<8|M[3]),p.push(M[4]<<24|M[5]<<16|M[6]<<8|M[7]),p).push(M[8]<<24|M[9]<<16|M[10]<<8|M[11])},Z=B.requestIdleCallback?function(M){requestIdleCallback(function(){M()},{timeout:4})}:B.setImmediate?function(M){setImmediate(M)}:function(M){setTimeout(M,0)},fo=function(M,p,n,t,N,l,d,v){return l=r[M.g]((p=[-41,36,-83,-30,-66,-99,(N=(v=IR,n&7),p),-100,-92,-34],M.QP)),l[M.g]=function(H){d=(N+=6+7*n,H),N&=7},l.concat=function(H){return H=(d=(H=(H=t%16+1,+(v()|0)*H+3*t*t*H+39*d*d+N-1404*t*d-117*t*t*d-H*d-585*d+p[N+27&7]*t*H),void 0),p[H]),p[(N+21&7)+(n&2)]=H,p[N+(n&2)]=36,H},l},RR=function(M,p,n,t,N){for(M.gO=(M.QP=va({get:function(){return this.concat()}},(M.ot=(M.vH=QK,M.Sf=M[W],Sm),M.g)),r[M.g](M.QP,{value:{value:{}}})),N=[],t=0;128>t;t++)N[t]=String.fromCharCode(t);(g((g((X(M,453,(X(M,(X(M,374,((X(M,38,((X(M,125,(L(M,(X((X(M,(X(M,299,(X(M,482,((X(M,(L(M,242,[0,0,(L(M,93,((X(M,386,(X((X(M,228,(X(M,448,(X(M,(M.BH=(L(M,455,(X(M,168,(L(M,(X(M,(X(M,286,(L(M,327,(L(M,(L(((L(M,((L(M,122,(X(M,253,((X(M,(M.It=((X((L(M,(L(M,(M.cH=(M.R=(M.O=[],(t=window.performance||{},M).i=(M.H=void 0,void 0),M.U=[],0),(M.h=void 0,M).I=(M.K=void 0,M.j=0,M.rO=[],M.A=(M.L=8001,M.S=0,M),M.v=null,M.F=(M.ES=0,void 0),(M.W=((M.WH=function(l){this.A=l},M).J=false,[]),M).N=(M.X=0,M.D=25,M.P=[],M.V=(M.T=(M.Kr=false,[]),!(M.l=0,1)),0),void 0),M.C=(M.u=1,void 0),t.timeOrigin)||(t.timing||{}).navigationStart||0,85),0),32),0),M),390,function(l,d,v,H){L(l,(H=A((d=A(l,(v=y((d=y((H=y(l),l)),l)),d)),l),H),v),H in d|0)}),M).Tq=0,0),161),function(l){hV(l,4)}),X)(M,322,function(l,d,v,H){L(l,(d=y((H=c((v=y(l),l)),l)),d),A(l,v)>>>H)}),function(l,d){(d=A(l,y(l)),MB)(d,l.A)})),z(4))),X)(M,304,function(l){Dy(3,l)}),321),[160,0,0]),X)(M,345,function(l,d,v){h(false,true,l,d)||(d=y(l),v=y(l),L(l,v,function(H){return eval(H)}(oR(A(l.A,d)))))}),M),120,2048),494),579),[])),function(l,d,v,H,q){L(l,(d=(H=A(l,(q=A(l,(q=(H=(d=y((v=y(l),l)),y(l)),y(l)),q)),H)),A(l,d)),v),aR(q,d,l,H))})),82),function(l,d,v){L(l,(d=YM((d=(v=(d=y(l),y(l)),A(l,d)),d)),v),d)}),268),[]),function(l,d,v,H,q,K,V){for(d=(K=(q=A(l,(H=Zy((v=y(l),l)),V="",368)),q.length),0);H--;)d=((d|0)+(Zy(l)|0))%K,V+=N[q[d]];L(l,v,V)})),M)),0),L(M,11,B),451),function(l,d,v,H,q){0!==(d=(q=(v=(q=y((v=y((H=(d=y(l),y(l)),l)),l)),A(l,v)),H=A(l,H),A)(l,q),A)(l.A,d),d)&&(v=aR(1,v,l,q,d,H),d.addEventListener(H,v,P),L(l,93,[d,H,v]))}),function(l,d,v,H){L(l,(H=A(l,(d=(v=y(l),H=y(l),y)(l),H)),v=A(l,v),d),v[H])})),function(l,d,v,H){if(v=l.rO.pop()){for(H=c(l);0<H;H--)d=y(l),v[d]=l.O[d];l.O=(v[268]=l.O[268],v[120]=l.O[120],v)}else L(l,85,l.S)})),M),124,function(l,d,v,H){!h(false,true,l,d)&&(d=kM(l),H=d.Z,v=d.AA,l.A==l||H==l.WH&&v==l)&&(L(l,d.OS,H.apply(v,d.o)),l.X=l.Y())}),function(l){JV(l,1)})),X)(M,144,function(l,d,v){(v=(d=y(l),y(l)),L)(l,v,""+A(l,d))}),0)),0)]),78),function(l){JV(l,4)}),X)(M,366,function(l,d,v,H){v=A(l,(d=A(l,(d=(v=y(l),y(l)),H=y(l),d)),v))==d,L(l,H,+v)}),function(l,d,v,H){(H=(v=(d=y(l),y)(l),y)(l),L)(l,H,A(l,d)||A(l,v))})),function(l,d,v,H,q,K,V,k,J,e,O,D){function I(a,m){for(;V<a;)H|=c(l)<<V,V+=8;return H>>=(m=H&(1<<a)-(V-=a,1),a),m}for(D=(O=(k=(q=(K=y(l),V=H=0,I(3)|0)+1,I)(5),0),[]),J=0;J<k;J++)e=I(1),D.push(e),O+=e?0:1;for(J=(d=(O=((O|0)-1).toString(2).length,[]),0);J<k;J++)D[J]||(d[J]=I(O));for(O=0;O<k;O++)D[O]&&(d[O]=y(l));for(v=[];q--;)v.push(A(l,y(l)));X(l,K,function(a,m,Ba,C,U){for(U=(Ba=(m=0,[]),[]);m<k;m++){if(!(C=d[m],D)[m]){for(;C>=U.length;)U.push(y(a));C=U[C]}Ba.push(C)}(a.h=mZ(a,v.slice()),a).i=mZ(a,Ba)})})),340),function(l,d,v,H){L((d=(H=A(l,(v=y((H=y(l),l)),H)),A)(l,v),l),v,d+H)}),M),472,function(l,d,v,H,q,K){h(false,true,l,d)||(K=kM(l.A),v=K.Z,d=K.OS,H=K.o,K=K.AA,q=H.length,v=0==q?new K[v]:1==q?new K[v](H[0]):2==q?new K[v](H[0],H[1]):3==q?new K[v](H[0],H[1],H[2]):4==q?new K[v](H[0],H[1],H[2],H[3]):2(),L(l,d,v))}),176),0),function(l,d,v,H,q,K){if(!h(true,true,l,d)){if("object"==YM((l=(K=(d=(H=(K=y((v=y(l),d=y(l),l)),y(l)),A(l,d)),A(l,K)),v=A(l,v),A(l,H)),v))){for(q in H=[],v)H.push(q);v=H}for(H=(K=(q=0,0<K)?K:1,v.length);q<H;q+=K)d(v.slice(q,(q|0)+(K|0)),l)}})),X)(M,91,function(l){Dy(4,l)}),function(l,d,v){(d=A(l,(v=0!=(v=y(l),d=y(l),A(l,v)),d)),v)&&L(l,85,d)})),X)(M,90,function(l,d,v,H,q){for(q=(H=(v=Zy((d=y(l),l)),[]),0);q<v;q++)H.push(c(l));L(l,d,H)}),function(l,d,v,H,q){(H=y((v=y((q=y(l),l)),l)),l.A==l)&&(d=A(l,q),v=A(l,v),H=A(l,H),d[v]=H,80==q&&(l.F=void 0,2==v&&(l.I=x(false,32,l),l.F=void 0)))})),L(M,256,{}),328),function(){}),function(l,d){l=A((d=y(l),l).A,d),l[0].removeEventListener(l[1],l[2],P)})),[O4]),M),[F,p]),M),g([yK,n],M),f)(true,true,M)},AV=function(M,p,n,t){return(t=S[M.substring(0,3)+"_"])?t(M.substring(3),p,n):qB(p,M)},c=function(M){return M.h?Ha(M,M.i):x(true,8,M)},A=function(M,p){if(void 0===(M=M.O[p],M))throw[b,30,p];if(M.value)return M.create();return(M.create(3*p*p+36*p+15),M).prototype},z=function(M,p){for(p=[];M--;)p.push(255*Math.random()|0);return p},VK=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),O4=[],em=[],F=[],w=[],W=[],NB=[],yK=(G.prototype.Xv=void 0,G.prototype.zq=false,G.prototype.s=(G.prototype.jf=void 0,"toString"),[]),b={},u=[],r=(((((g0,function(){})(z),function(){})(r0),function(){})(ca),G.prototype).g="create",b.constructor),IR=(((T=G.prototype,T.Fv=function(){return Math.floor(this.N+(this.Y()-this.j))},T.nr=function(M,p,n,t,N){for(N=t=0;N<M.length;N++)t+=M.charCodeAt(N),t+=t<<10,t^=t>>6;return t=new Number((M=(t+=t<<3,t^=t>>11,t+(t<<15)>>>0),M)&(1<<p)-1),t[0]=(M>>>p)%n,t},T).iT=function(M,p,n,t,N,l){for(l=t=(N=[],0);t<M.length;t++)for(l+=p,n=n<<p|M[t];7<l;)l-=8,N.push(n>>l&255);return N},T.Y=(window.performance||{}).now?function(){return this.cH+window.performance.now()}:function(){return+new Date},T).yP=function(){return Math.floor(this.Y())},T.bT=function(M,p,n){return M^((p=((p^=p<<13,p^=p>>17,p)^p<<5)&n)||(p=1),p)},void 0),Sm=(G.prototype.B=(T.G=function(M,p,n,t,N){if(n="array"===YM(n)?n:[n],this.K)M(this.K);else try{N=[],t=!this.W.length,g([w,N,n],this),g([W,M,N],this),p&&!t||f(p,true,this)}catch(l){R(l,this),M(this.K)}},function(M,p){return M=(p=(IR=function(){return M==p?15:-36},{}),{}),function(n,t,N,l,d,v,H,q,K,V,k,J,e,O,D){M=(N=M,p);try{if(V=n[0],V==F){O=n[1];try{for(H=(v=[],e=atob(O),q=0);q<e.length;q++)J=e.charCodeAt(q),255<J&&(v[H++]=J&255,J>>=8),v[H++]=J;L(this,80,(this.S=(this.T=v,this.T).length<<3,[0,0,0]))}catch(I){Y(this,I,17);return}lf(this,8001)}else if(V==w)n[1].push(A(this,122).length,A(this,120),A(this,321).length,A(this,327).length),L(this,256,n[2]),this.O[387]&&po(A(this,387),this,8001);else{if(V==W){(l=(K=E(((v=n[2],A)(this,321).length|0)+2,2),this.A),this).A=this;try{D=A(this,268),0<D.length&&Q(this,321,E(D.length,2).concat(D),10),Q(this,321,E(this.u,1),109),Q(this,321,E(this[W].length,1)),e=0,t=A(this,122),e-=(A(this,321).length|0)+5,e+=A(this,176)&2047,4<t.length&&(e-=(t.length|0)+3),0<e&&Q(this,321,E(e,2).concat(z(e)),15),4<t.length&&Q(this,321,E(t.length,2).concat(t),156)}finally{this.A=l}if(d=((H=z(2).concat(A(this,321)),H[1]=H[0]^6,H)[3]=H[1]^K[0],H[4]=H[1]^K[1],this).dO(H))d="!"+d;else for(d="",e=0;e<H.length;e++)k=H[e][this.s](16),1==k.length&&(k="0"+k),d+=k;return A(this,(A(this,(L(this,(A(this,(q=d,122)).length=v.shift(),120),v.shift()),321)).length=v.shift(),327)).length=v.shift(),q}if(V==em)po(n[1],this,n[2]);else if(V==u)return po(n[1],this,8001)}}finally{M=N}}}()),/./);(G.prototype.ef=(G.prototype.M4=0,0),G.prototype).dO=function(M,p,n,t){if(n=window.btoa){for(p=(t=0,"");t<M.length;t+=8192)p+=String.fromCharCode.apply(null,M.slice(t,t+8192));M=n(p).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else M=void 0;return M};var QK,w0=F.pop.bind((G.prototype[yK]=[0,0,1,1,0,1,1],G.prototype)[w]),oR=(QK=(Sm[G.prototype.s]=w0,va)({get:w0},G.prototype.g),G.prototype.Y2=void 0,function(M,p){return(p=tV())&&1===M.eval(p.createScript("1"))?function(n){return p.createScript(n)}:function(n){return""+n}}(B));(40<(S=B.botguard||(B.botguard={}),S.m)||(S.m=41,S.bg=Lo,S.a=AV),S).SBO_=function(M,p,n){return n=new G(M,p),[function(t){return $M(t,n)}]};}).call(this);'));
}).call(this);
                                    

#6 JavaScript::Eval (size: 2060, repeated: 1) - SHA256: 8407b8e5f619003bd53e7d8441b1c7d6588e112973f9bf50b9bb7ecf6901ff95

                                                       (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-63ab83c16989526b5e066846a849db42')) {
                       var callback = function() {
                           (new Image()).src = '//reapinject.com/clk.gif?landing_id=3569806&placement_id=16262693&sid=H4sIAAAAAAAC%2F1STzYsdRRfGq5PJC%2BFdvS8BEUTuIoqCM6nqrq7uMogY40gwJiFRdKFIfc6U07e7qeq%2BfTOrYECCCxmX7nrOzQdqCIprg9wJCGY119UsHPwfhOBS7nXw6tmc5znPWfzorvPpbnuIMLTi4Pzb1bYrCnEmXcODF94n5Ozgoivb8WCcs48YPTvwo5c5W8MvDt40aqs6E2OCMcFksO68sdX4zDwEV9%2FnZI3jNRqvkZTC2P%2FbhzaCICLQo0P0f3B6tvIoOgVOTaEcfnvehK2mql96Y9gWoqk8jPS9d8utsupKGC6l9RHY8t7RNlRhf%2F0hVOWdBS5Uo78XpZuh6KeHIMt7R5AgR7cXnLIAU4LU%2F4VuNAVTTMGJKajqJji9jwCUhkuXoRzevVT5Tlz%2FKxXzdIZWnvwOrpuhlV9PQTl8cK5w48G1qmgbV5UBxrYHN56C25hC3e5Bs30MXLcHqvkEnEZQDntw%2BuB0ShKKeaJWJePZKs2TfDXHTKwqlsQZiblVGi8%2BjHNTcHYKhdkBEY5BGyJoXQStjaCtIxjqg4EihGRYK4FzrlSiMyOZxkRklgiCWQ6tmrPvQFPvgCp2QPkbUPsbsOW%2B2D%2FxG%2Fj2RwibB1PLaCaJTZXEWqY6lhnBmaVZQqiUhgqNVWa4kiShJGMsM4RmcZJyHieZ4IllaW7yVBHLUxwblcdaS2Eli1lMdJpZLHiSxVlKBJfCamUoNiIVCafSMJYzi3MhrVVGG0NlIqmWlrNYx7HRWOGczrm4oJjjPBccc5vqJOMsNUKmNuNGQtARhAbBSPfQGQRdQNAJBJ1D0DUIulF%2FRxchDv1dXYRWkqMeH%2FWkn1TNxq64UzUbpkS79SH63%2BK3%2F%2FH8c7BlDgYsETJPFGE852nMZGowYzllIqdcSxpDcD24cAxEiGDbzdBT2x9C7WZo5fvHIMUehGIPlDsOoj0BopskGIPYnMQphu3yQbNpwlD4Zq0TjdoEXfVQNyvQXI92i0P09IKEjT8Hox6jowLle6h9Dx%2B7Rwg2iluTq1WHbl%2BtuoC%2Bu1w3bui2xfxxXmtEY%2F7z9Vvmeld5feF82PnqNTUP5vL%2BOyY0F0WpXbkR0DfnnNbGr1deGfTDhfCekVfasHmu9WVbX7zy%2BvqFYe1NCK4qpyDcvvkZlJuhk5%2B9sri6Z758As5Pwbc9DNslqav2QNU3INTLWagQ%2BGLpZY2ga%2FuJj%2BVyWDgEhVl6IXsI%2F%2FByqXfDLdjwz4Jobi6ObeR7GBU9iGIHQnt80tT%2B8au%2FJIsCWUQTWXh0WxZ%2BnruDAU1pymySKcp0rrM0wVxoQyzXNKGZtdCEmTr9wck%2FAQAA%2F%2F8BAAD%2F%2F7a6AKg7BQAA&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
                                    

Executed Writes (6)

#1 JavaScript::Write (size: 132, repeated: 1) - SHA256: 4c55255dc2effff8e2fe9fd01f990ce7d5b49de89fefc666c2e27e59d7a4c536

                                        < script type = "text/javascript"
src = "https://www.effectiveperformanceformat.com/63ab83c16989526b5e066846a849db42/invoke.js" > < /script>
                                    

#2 JavaScript::Write (size: 4, repeated: 1) - SHA256: b1ab1e892617f210425f658cf1d361b5489028c8771b56d845fe1c62c1fbc8b0

                                        2022
                                    

#3 JavaScript::Write (size: 1171, repeated: 1) - SHA256: 425f32fb5feff01328a84e460fa8547f8856b5f0c6d99f2fdca9b28bfdcf18bb

                                        < div class = "col-md-6" > < div class = "related-item" > < div class = "entry-media" > < div class = "tw-thumbnail" > < img src = "http://2.bp.blogspot.com/-ex3V86fj4dQ/UrCQQa4cLsI/AAAAAAAAFdA/j2FCTmGOrog/w600-h400-c/no-thumbnail.png"
alt = "3" > < div class = "image-overlay tw-middle" > < div class = "image-overlay-inner" > < a href = "https://881daleperkinsnews.blogspot.com/2022/09/matt-smith-star-wars-rolle.html"
title = "Matt Smith Star Wars Rolle"
class = "overlay-icon" > < /a></div > < /div></div > < /div><h2 class="entry-title"><a href="https:/ / 881 daleperkinsnews.blogspot.com / 2022 / 09 / matt - smith - star - wars - rolle.html ">Matt Smith Star Wars Rolle</a></h2><div class="
tw - meta "><span class="
entry - author ">by&nbsp;<a href="
https: //881daleperkinsnews.blogspot.com/2022/09/matt-smith-star-wars-rolle.html" title="Posts by DekaAfwikaHutchinson1269" rel="author">DekaAfwikaHutchinson1269</a></span><span class="entry-date"><a href="https://881daleperkinsnews.blogspot.com/2022/09/matt-smith-star-wars-rolle.html">1 days ago</a></span><span class="comment-count"><a href="https://881daleperkinsnews.blogspot.com/2022/09/matt-smith-star-wars-rolle.html#comments" title="0 Comments">0 Comments</a></span></div></div></div>
                                    

#4 JavaScript::Write (size: 1150, repeated: 1) - SHA256: ff25492f1e108d65f0c30dfbc3e861e4abc33899b2f1ab8ce19f1bb4f9ff730c

                                        < div class = "col-md-6" > < div class = "related-item" > < div class = "entry-media" > < div class = "tw-thumbnail" > < img src = "http://2.bp.blogspot.com/-ex3V86fj4dQ/UrCQQa4cLsI/AAAAAAAAFdA/j2FCTmGOrog/w600-h400-c/no-thumbnail.png"
alt = "3" > < div class = "image-overlay tw-middle" > < div class = "image-overlay-inner" > < a href = "https://881daleperkinsnews.blogspot.com/2022/09/classroom-poster-quotes.html"
title = "Classroom Poster Quotes"
class = "overlay-icon" > < /a></div > < /div></div > < /div><h2 class="entry-title"><a href="https:/ / 881 daleperkinsnews.blogspot.com / 2022 / 09 / classroom - poster - quotes.html ">Classroom Poster Quotes</a></h2><div class="
tw - meta "><span class="
entry - author ">by&nbsp;<a href="
https: //881daleperkinsnews.blogspot.com/2022/09/classroom-poster-quotes.html" title="Posts by DekaAfwikaHutchinson1269" rel="author">DekaAfwikaHutchinson1269</a></span><span class="entry-date"><a href="https://881daleperkinsnews.blogspot.com/2022/09/classroom-poster-quotes.html">1 days ago</a></span><span class="comment-count"><a href="https://881daleperkinsnews.blogspot.com/2022/09/classroom-poster-quotes.html#comments" title="0 Comments">0 Comments</a></span></div></div></div>
                                    

#5 JavaScript::Write (size: 1143, repeated: 1) - SHA256: bfd3ea035b330b433ec0dfce7c58694f62efa9a702aa49d60bd0e162b7e7c4d0

                                        < div class = "col-md-6" > < div class = "related-item" > < div class = "entry-media" > < div class = "tw-thumbnail" > < img src = "http://2.bp.blogspot.com/-ex3V86fj4dQ/UrCQQa4cLsI/AAAAAAAAFdA/j2FCTmGOrog/w600-h400-c/no-thumbnail.png"
alt = "3" > < div class = "image-overlay tw-middle" > < div class = "image-overlay-inner" > < a href = "https://881daleperkinsnews.blogspot.com/2022/09/prince-andrew-daughter.html"
title = "Prince Andrew Daughter"
class = "overlay-icon" > < /a></div > < /div></div > < /div><h2 class="entry-title"><a href="https:/ / 881 daleperkinsnews.blogspot.com / 2022 / 09 / prince - andrew - daughter.html ">Prince Andrew Daughter</a></h2><div class="
tw - meta "><span class="
entry - author ">by&nbsp;<a href="
https: //881daleperkinsnews.blogspot.com/2022/09/prince-andrew-daughter.html" title="Posts by DekaAfwikaHutchinson1269" rel="author">DekaAfwikaHutchinson1269</a></span><span class="entry-date"><a href="https://881daleperkinsnews.blogspot.com/2022/09/prince-andrew-daughter.html">1 days ago</a></span><span class="comment-count"><a href="https://881daleperkinsnews.blogspot.com/2022/09/prince-andrew-daughter.html#comments" title="0 Comments">0 Comments</a></span></div></div></div>
                                    

#6 JavaScript::Write (size: 1152, repeated: 1) - SHA256: 1ac056fa9b119c01bd11870b89ecb2e9b686054234ccdd0ef37419dd4906412f

                                        < div class = "col-md-6" > < div class = "related-item" > < div class = "entry-media" > < div class = "tw-thumbnail" > < img src = "http://2.bp.blogspot.com/-ex3V86fj4dQ/UrCQQa4cLsI/AAAAAAAAFdA/j2FCTmGOrog/w600-h400-c/no-thumbnail.png"
alt = "3" > < div class = "image-overlay tw-middle" > < div class = "image-overlay-inner" > < a href = "https://881daleperkinsnews.blogspot.com/2022/09/orlando-city-shirt-2022.html"
title = "Orlando City Shirt 2022"
class = "overlay-icon" > < /a></div > < /div></div > < /div><h2 class="entry-title"><a href="https:/ / 881 daleperkinsnews.blogspot.com / 2022 / 09 / orlando - city - shirt - 2022. html ">Orlando City Shirt 2022</a></h2><div class="
tw - meta "><span class="
entry - author ">by&nbsp;<a href="
https: //881daleperkinsnews.blogspot.com/2022/09/orlando-city-shirt-2022.html" title="Posts by DekaAfwikaHutchinson1269" rel="author">DekaAfwikaHutchinson1269</a></span><span class="entry-date"><a href="https://881daleperkinsnews.blogspot.com/2022/09/orlando-city-shirt-2022.html">13 hours ago</a></span><span class="comment-count"><a href="https://881daleperkinsnews.blogspot.com/2022/09/orlando-city-shirt-2022.html#comments" title="0 Comments">0 Comments</a></span></div></div></div>
                                    


HTTP Transactions (127)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 10:35:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _tXZ_pesw1dM1Qx8336BsQjHQcgZft6DzPeewG2DMvZ719opa5IyFQ==
Age: 2682


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            GET /2022/08/das-boot-besetzung-1981.html HTTP/1.1 
Host: 881daleperkinsnews.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         142.250.74.161
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: https://881daleperkinsnews.blogspot.com/2022/08/das-boot-besetzung-1981.html
Content-Encoding: gzip
Date: Fri, 16 Sep 2022 11:20:37 GMT
Expires: Fri, 16 Sep 2022 11:20:37 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 214
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   214
Md5:    a32b507e89da8f708fa50889034e4ce9
Sha1:   604916d168f50ce4f50cf8eea6e1a16ffeaaa7de
Sha256: bb966ae673ba61eb139d56a8256df565c94b253a39880cd48b377a9bedf19e32
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2652
Expires: Fri, 16 Sep 2022 12:04:49 GMT
Date: Fri, 16 Sep 2022 11:20:37 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -gLQd96FUo2BFK7OYFnd7VFAGbIgPFpoc1svUyr37Lv7LrcvpYECyg==
age: 24322
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 16 Sep 2022 11:20:37 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 11:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 11:16:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jMEYfTnM0IyntcKnH9vwET-OzdRYSV0z30gANir_sjQ0Fz0NmhO3Uw==
Age: 1036


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3216
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:38 GMT
Last-Modified: Fri, 16 Sep 2022 10:27:02 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PQ64n9y39KKeZJd/4Z8EZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.187.146.10
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NooKzvUyFzV26UOBOswgWkYXfZU=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /2022/08/das-boot-besetzung-1981.html HTTP/1.1 
Host: 881daleperkinsnews.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
expires: Fri, 16 Sep 2022 11:20:38 GMT
date: Fri, 16 Sep 2022 11:20:38 GMT
cache-control: private, max-age=0
last-modified: Thu, 15 Sep 2022 21:31:07 GMT
etag: W/"26ea01ef532fa3d28be2a0f86a091a9696d285a227710e5c2b9f1bca1ba9a021"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 51501
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (428)
Size:   51501
Md5:    03fc02514ff04658c14f5f90f413f72f
Sha1:   583aa24814266e364d447976a66dcff137d15b61
Sha256: 706bb75bd2327096c3dedf0d1e5a911003ca5f33a357d11f9dccfa3d43cc62b0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.74
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 11 Sep 2022 22:01:23 GMT
expires: Mon, 11 Sep 2023 22:01:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 393555
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   30306
Md5:    fc3fc31e5e7c0933dc18e562c1c071bf
Sha1:   a44c31323f6bd29e583cc585036e6eb39f7014a6
Sha256: ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
                                        
                                            GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.10.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Fri, 16 Sep 2022 11:20:38 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 2021-04-23 06:29:02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 6a91d2c867066733b6d92a7a528c5c2e
cdn-cache: HIT
cf-cache-status: HIT
age: 11437575
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74b936ca6ed9b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   107453
Md5:    7d6e6ad37b3ca89958baa2058b7d586b
Sha1:   8622cedfcc01a0c057b968c15818f950ac614c9c
Sha256: 9e82bd60ff7652c7f814e8aae12fe34bc0a653f3f4d195f4e824d0cddaf5eb10
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "DAE9DEF75389640F4E8AE2F9DE1AA37F1C0CA28C4DCBF5115FE8A396AF6B7C66"
Last-Modified: Thu, 15 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5293
Expires: Fri, 16 Sep 2022 12:48:51 GMT
Date: Fri, 16 Sep 2022 11:20:38 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "DAE9DEF75389640F4E8AE2F9DE1AA37F1C0CA28C4DCBF5115FE8A396AF6B7C66"
Last-Modified: Thu, 15 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5293
Expires: Fri, 16 Sep 2022 12:48:51 GMT
Date: Fri, 16 Sep 2022 11:20:38 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /vi/rln5FWAFFoo/maxresdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.22
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 51822
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 11:20:38 GMT
expires: Fri, 16 Sep 2022 13:20:38 GMT
cache-control: public, max-age=7200
etag: "1464924495"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size:   51822
Md5:    2777b308efacd4a68e826ba494f71291
Sha1:   5df3098f2311e3537346d768164d981c7c63df04
Sha256: 3c5d12dd4582f199ddfde2d8a654029feafeba3ac71fea82c483b711a67dc8d8
                                        
                                            GET /ajax/libs/webfont/1.5.3/webfont.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.74
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 6791
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 12:30:00 GMT
expires: Fri, 15 Sep 2023 12:30:00 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
age: 82238
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1322)
Size:   6791
Md5:    e50618b92776b0c2829143cad8f3659f
Sha1:   b90c156c67e5768cd7ccf5e7aad127385f5e2d78
Sha256: 4b3bc416d421c1eebce4174809a8620d6f933507c5fdbd9dd35443e1a28a04f3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/jsbin/3262169375-comment_from_post_iframe.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 14:54:37 GMT
expires: Sat, 09 Sep 2023 14:54:37 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Sep 2022 15:01:24 GMT
age: 591961
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1264)
Size:   6499
Md5:    30af015884191ce4fe52ce1e707baed9
Sha1:   faa1418efa036704d31eb90f4fbd82de456b81b7
Sha256: 0456cf81299c957c8e54dabb00b4d6d96b76be729b1e112d478b34ba56d8059d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/3753684042-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57039
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 01:53:41 GMT
expires: Fri, 15 Sep 2023 01:53:41 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Sep 2022 20:54:17 GMT
age: 120417
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   57039
Md5:    9310029f33929201831992bd74c13953
Sha1:   092fc9b60b0fcc7e24b80eb89f40178e91effb98
Sha256: ed0ad17efb3c922e7bc8feffa0a5718d2ad226c44f2bb183b6ad163684f3b982
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Fri, 16 Sep 2022 11:20:39 GMT
expires: Fri, 16 Sep 2022 11:20:39 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1277)
Size:   20361
Md5:    b5a31516be83fe4f962609045d824f88
Sha1:   939a49a9858bf23561279f9ca2d1941d3256c66f
Sha256: edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2025
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:39 GMT
Last-Modified: Fri, 16 Sep 2022 10:46:54 GMT
Server: ECS (amb/6BC4)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /dyn-css/authorization.css?targetBlogID=6157937554809929560&zx=b3e8bed7-8eb0-4bd7-af76-d3bf00bfbdaf HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 16 Sep 2022 11:20:39 GMT
last-modified: Fri, 16 Sep 2022 11:20:39 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    a62e4d501434033d5d177e67d3aafdd0
Sha1:   34f7300c9ed47334cf10826d57af785321e3138b
Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
                                        
                                            GET /wp-content/uploads/2015/08/das-boot-1981-film-rcm1200x627u.jpg HTTP/1.1 
Host: static.kino.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         178.19.70.100
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Fri, 16 Sep 2022 11:20:39 GMT
content-length: 134909
access-control-allow-origin: *
access-control-expose-headers: Content-Length
cache-control: public, max-age=31536000, no-transform, immutable
filer-attr: W1sxMjAwLDYyN10sInNodXR0bGUtdjEiLFsiRlJBLTEiXSxbIkZSQi0xIl1d
filer-source: e3a36db14d76982af5125fc33a147978b8abb899cb667695b4a28bf527e9774c
last-modified: Thu, 03 Feb 2022 15:15:21 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
strict-transport-security: max-age=300; includeSubDomains;
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 305x305, segment length 16, progressive, precision 8, 1200x627, components 3\012- data
Size:   134909
Md5:    597f90f7bd92ce2310dc3dc43c67ba53
Sha1:   4ec455ff816a3f8c88e98c98a3cae3d529d7613b
Sha256: 49cb180feb798835bf09ab1534e1208b2d19e05f74e801cedc0cc8fcd161e347
                                        
                                            GET /files/c046f1d62a440d6d453ea35478882852bc0e879ac3168daee41000c5c680/limit/1024/2000/MV5BMTM1NzMzODM0MV5BMl5BanBnXkFtZTcwOTg0MTkzNQ%40%40._V1_SY1000_CR0%2C0%2C1539%2C1000_AL_.jpg HTTP/1.1 
Host: assets.cdn.moviepilot.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.40.42
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 16 Sep 2022 11:20:39 GMT
content-length: 93001
content-disposition: inline
content-transfer-encoding: binary
x-request-id: 7c7372b6-af75-4a51-916e-3602525da47c
x-runtime: 0.080921
cache-control: s-maxage=2592000, max-age=2592000
x-varnish: 558275534 550545651
via: 1.1 varnish (Varnish/6.0)
last-modified: Fri, 16 Sep 2022 11:20:39 GMT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b936cbab1eb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x665, components 3\012- data
Size:   93001
Md5:    dd04dec370456e2f01e93d986ef16ebf
Sha1:   0121904c23863337fe60d27717d817b612175c72
Sha256: b50af6d45543de3912ad37469e51738b38562e8ef9123739d14b780b5f293c15
                                        
                                            GET /blogger_img_proxy/ANbyha0dlgKTiu-W_2YLmFmRnRhSKibkzqb2fhYXVaPFy5QaIwA5J1kWZkHf7nUQ_9mSaV29CrWYQ5loifiH0ezuSEWIkZZ98JDJldv1YozjSGzR35KU3L0L9hBCRPXxDHdcB1svfu8ESM71oCjCpJohI-AnwV9PYokA-asHyeTFqOeVtzaBNjtymP96LEyq_GL7-wzgqnlFMtBG2PC-4u3QW7E=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Sat, 17 Sep 2022 11:20:39 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Sep 2022 11:20:39 GMT
server: fife
content-length: 6226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   16481
Md5:    92d2ef7ee1d53700265efed6372ea963
Sha1:   41871247312c9a2d87b42b41a9d862bdbbb349bb
Sha256: acb6ec101e8cf9908deec6dc1dd5702fd640f1d91f53dcfb3c50f67ed3ecf308
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:30:59 GMT
expires: Thu, 14 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 143380
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size:   8000
Md5:    72993dddf88a63e8f226656f7de88e57
Sha1:   179f97ec0275f09603a8db94d4380eb584d81cd5
Sha256: f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 23:13:17 GMT
expires: Wed, 13 Sep 2023 23:13:17 GMT
cache-control: public, max-age=31536000
age: 216442
last-modified: Tue, 19 Apr 2022 18:04:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21224, version 1.0\012- data
Size:   21224
Md5:    13bdfb843f942ccd9f485eb6c0bc1934
Sha1:   2bad44362ff7569f24f2a3df2521b27a97ec1297
Sha256: 7a291479495fbb281655d5e870c6d118dc6b7ed18e8c235aef5974c1e9de4e6c
                                        
                                            GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:32:09 GMT
expires: Thu, 14 Sep 2023 19:32:09 GMT
cache-control: public, max-age=31536000
age: 143310
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size:   7884
Md5:    9212f6f9860f9fc6c69b02fedf6db8c3
Sha1:   ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
Sha256: 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:30:58 GMT
expires: Thu, 14 Sep 2023 19:30:58 GMT
cache-control: public, max-age=31536000
age: 143381
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size:   7816
Md5:    25b0e113ca7cce3770d542736db26368
Sha1:   cb726212d5d525021752a1d8470a0fb593e0c49e
Sha256: 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:30:59 GMT
expires: Thu, 14 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 143380
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size:   7748
Md5:    a09f2fccfee35b7247b08a1a266f0328
Sha1:   0da2d17e738f46d2a09e6fb7969da451719a9820
Sha256: cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
                                        
                                            GET /s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 02:03:44 GMT
expires: Sun, 10 Sep 2023 02:03:44 GMT
cache-control: public, max-age=31536000
age: 551815
last-modified: Tue, 19 Apr 2022 18:25:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22376, version 1.0\012- data
Size:   22376
Md5:    e6af16165f9bfda6aafd0088b8c01daa
Sha1:   c9c0ee8309619643e65ba1b22bfffcd1a7ca1e51
Sha256: e803cd8c5031ac6b0d099a2d96ba1c3ee44782649a7f7c6f0d09b6410d93e216
                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:31:02 GMT
expires: Thu, 14 Sep 2023 19:31:02 GMT
cache-control: public, max-age=31536000
age: 143377
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size:   7840
Md5:    8d91ec1ca2d8b56640a47117e313a3e9
Sha1:   a9e9bafe64666f4595051a0e895b47a5fa39e67e
Sha256: 78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /blogger_img_proxy/ANbyha06irmc1T_ef_Wi8HbqcVFfy1IqKYHKvk85O8c3gQ8LZ31ve_HY5WD5-CcFViqFLkPvCHTPzbhW-MnH51dsk9pZs8S9D5wMBDkd3eiW9Opqbf-GYAUTwDe--ZBJ0ymM0rWQkuHX6SI_9JCDD6WK9OiWaRPeKEY_D8Q=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Sat, 17 Sep 2022 11:20:39 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Sep 2022 11:20:39 GMT
server: fife
content-length: 3758
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   3758
Md5:    681da52d8f3f3ec1fb754fa4254a1d99
Sha1:   bd25bb3a0c974e26b24c2e8100513f8f6f7887a5
Sha256: df2733b6f91997bd90e4b29295cad44e26feecb528cafd8b0c2aef5d0bb62744
                                        
                                            GET /blogger_img_proxy/ANbyha2gTPVZfTzFH7FRcI9MO_LU_P3hiA9LZO7ztlDIE6OEyi4ejOqpYXetA6L11kNRVMl3GXthgYQ5BWGjFEdrXYxpTxmr04yeS-DL85BK9OfF1dZmdR2DEaFl_UMZ80BuhfXR-zcKCdDMvnk_lcRXMRQ=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Sat, 17 Sep 2022 11:20:39 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Sep 2022 11:20:39 GMT
server: fife
content-length: 3176
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   3176
Md5:    bd87b831ae2eced23c6f520787c909a9
Sha1:   0685577b7a4af7a8fe64eeaa1aaef78f9a3e1173
Sha256: bb95986bf294c5185ed1e159e2c14de13f3aefb9ae3792a624b20bfef144d082
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13039
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 11:20:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13039
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 11:20:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13039
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 11:20:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13039
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 11:20:39 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12425
x-amzn-requestid: 96b5f0d2-1327-4180-9d48-f915630c3de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDqHyooAMFqyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-7d89d2d7024f6a821a62c948;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1Y5uBMPJvxTDKGnc5Q0lzKZXDv4lwTByGDO8eRIwgauut0yfJz-8Lg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:35 GMT
age: 48604
etag: "abb5c719ec9341c6d4146297a2a1eca171df9c81"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12425
Md5:    da1bd18c37b83b0ef4641036dc208eec
Sha1:   abb5c719ec9341c6d4146297a2a1eca171df9c81
Sha256: 0085a66912a814c619a1257545d36610c7109ba32f1b097176102d3d3db2c8d0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9904
x-amzn-requestid: a23cb4b3-db6e-48ae-90b1-3ecf6478bf52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDpH_CIAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-15869210609a18587467d1e2;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RbKcO0CPRsex8VWdIVqctamGyJ7D1PHD04ry2wbrcDPDYL0Yy5vPPQ==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:35 GMT
etag: "8e1090346d90bc69e7a95384e6a7a01154e31567"
age: 48604
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9904
Md5:    e6d17788c7d2a1a91e68eff48df14bd1
Sha1:   8e1090346d90bc69e7a95384e6a7a01154e31567
Sha256: 1e1eefa02e4c55e73be87a309ad5c2335856125cb678cff6ebc42c5ff73a0e2b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032fbd06-806d-41e6-9160-3fdf480555ac.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9256
x-amzn-requestid: 19e81e48-6501-4938-906c-60aa7acdb33a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUj5EE5oAMFvwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ae5-3031e84f158e1ad94da4875b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7sWzfcxt9YWCOnMbanWOiZhhv5DXzHDq8vBqd1AhMfxewBBS0ZtidA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:48 GMT
age: 48891
etag: "afbe7dae2d65763a004b5bddc697131762da7bf2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9256
Md5:    d242ded8ac40a1eb617303256d5f34eb
Sha1:   afbe7dae2d65763a004b5bddc697131762da7bf2
Sha256: b4b08292f36acfca7df3710c29c184c5ff18592e6383eddc5582d302184fce59
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgjwYJ-ZzVF3bv7pl1l8TN8EAoENIcaSAXJU_YhFOSNRCzrCuPuKbQ==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:10 GMT
age: 48989
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8435
Md5:    b7d4ee58e0f26ec6817dbab72aa7db6d
Sha1:   b6e634ef27eba9da38c6472565e0fdca6898e4f0
Sha256: 07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12123
x-amzn-requestid: 2beedee9-cf7e-47d6-ac4d-3ca9251aa565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfSWEFAZoAMFd6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322ca8d-37688e4a23c3234a25becf57;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:47:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: H2ySDtSQZtsrCA99y1a2_fLQcRI8hvN_nvA9U_V_iCm6c3cq3DigXQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:11:59 GMT
age: 47320
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12123
Md5:    f876cdc19dca10c62d83d19303512c7f
Sha1:   9f812c7bc1b42b0cea3e42694e7d1f6738789770
Sha256: c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10163
x-amzn-requestid: 7c849e5d-468e-4f6a-ad44-c7995bfa81bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvuGFU5oAMF_Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202cc0-5376d2432c79a3146b6c29f4;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XGVoNQZeoG0AQ6LabPW2Zg7pAQqdl-bGTFAhbNpLlgTWNWx55-wEUQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:14 GMT
age: 48925
etag: "10262867cfb19d3ba8f618e235d1a98531048f34"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10163
Md5:    3a4ed510756efe784c4ca84c61c4b5ba
Sha1:   10262867cfb19d3ba8f618e235d1a98531048f34
Sha256: b5ba0de5ce381579e49e3e3c23244048fc8aac693ce0c977560f28b9a51f6a0b
                                        
                                            GET /-ex3V86fj4dQ/UrCQQa4cLsI/AAAAAAAAFdA/j2FCTmGOrog/w600-h400-c/no-thumbnail.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="no-thumbnail.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 50298
X-XSS-Protection: 0
Date: Fri, 16 Sep 2022 11:20:39 GMT
Expires: Tue, 13 Sep 2022 15:12:21 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v15d1"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 600 x 400, 8-bit/color RGB, non-interlaced\012- data
Size:   50298
Md5:    a485b8647c20aabf068d49d8c6a6caf6
Sha1:   b22e16e98e994c8c90749d84106b607d173fa371
Sha256: 45bac4baf0e64eb0c6c05c60ed5fc86c69b5f86ececea353c5538548f85aa62d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Fri, 16 Sep 2022 11:20:40 GMT
date: Fri, 16 Sep 2022 11:20:40 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 668
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1034), with no line terminators
Size:   668
Md5:    a885189cd9a522cfaaac98af1a03b512
Sha1:   a4045ce6f8d8e14582bb5245694d73b40da7f0f7
Sha256: 6afe80cbbc72285aa8f73e7d64bdeb755148410a8ec6c0eb13df255548ef17ad
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4E3128518E7367B60F7687E7B91E52180010C10BF52D88F86511472CB0F2127C"
Last-Modified: Thu, 15 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11540
Expires: Fri, 16 Sep 2022 14:33:00 GMT
Date: Fri, 16 Sep 2022 11:20:40 GMT
Connection: keep-alive

                                        
                                            GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
age: 193391
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (581)
Size:   157726
Md5:    6519c7c04cf32a57b1c5ee45a73c233e
Sha1:   4939bb921988e9eb13780cc2244f3099776e9bfb
Sha256: 8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
                                        
                                            GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/styles__ltr.css HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:19:12 GMT
expires: Thu, 14 Sep 2023 05:19:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
age: 194488
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (52762), with no line terminators
Size:   24251
Md5:    f2d649025c814be9c33f166a5e04fe88
Sha1:   26bf59de631415927ba2c6c9e44fe9c763f95313
Sha256: f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921
                                        
                                            GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
age: 193391
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (581)
Size:   157726
Md5:    6519c7c04cf32a57b1c5ee45a73c233e
Sha1:   4939bb921988e9eb13780cc2244f3099776e9bfb
Sha256: 8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
                                        
                                            GET /63ab83c16989526b5e066846a849db42/invoke.js HTTP/1.1 
Host: www.effectiveperformanceformat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.59.20
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.17.9
Date: Fri, 16 Sep 2022 11:20:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6db50144d3d2bd039e491e69ce32bc77
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26937), with no line terminators
Size:   9776
Md5:    8b3e5bfb8c37c7933d1b1ade18460532
Sha1:   858b87dd635a1dc8a1ec1258230e9cb47a785bd9
Sha256: 8f09b22d90eb6fbde7a7cd8db5585991e8f831cd4f7f889c6ec34ee8108657b5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:40 GMT
Last-Modified: Fri, 16 Sep 2022 09:51:16 GMT
Server: ECS (dcb/7F15)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tD1MHcVCqNqj37hjl65ZZVBb8E-99GzR646dCaIeqBgWCAV_3U5jBQ==
Age: 5364

                                        
                                            GET /2021/09/78253700v2/308x0:1264x1263/fit-in/1800x0/auf-tauchgang-die-crew-von-das-boot-1981-einem-der-erfolgreichsten-deutschen-filme.jpg HTTP/1.1 
Host: images.t-online.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.31
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 267054
date: Fri, 16 Sep 2022 11:20:40 GMT
x-amzn-requestid: 292442ba-5198-4784-b819-191bd79f5140
last-modified: Thu, 16 Sep 2021 08:45:16 GMT
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Authorization
cache-control: public, max-age=31536000, immutable
access-control-allow-methods: GET
etag: "b23406f6e6708ff858dc40ad2b127aa4"
x-amzn-trace-id: root=1-63245c07-12279d7c61af8b3c5a066588;sampled=1
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: w5edj6oz-wGE3ATIJ1Muvid3Wz7cpHGNayl_f1XiWZPX3FiwqjLJrQ==
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   267054
Md5:    733222d3abf3aa41f48bd82ace9e9d63
Sha1:   64123d80269f620c2b3c0b0e8de30d5d3a525282
Sha256: eae682ce9c1dacbac6854fb8135a8a8c5e4f2f9b842fe70f11b8b6523d9be2ba
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:40 GMT
Last-Modified: Fri, 16 Sep 2022 10:30:39 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XjDsgx2uZhuOt-Kv4NSxO3JdDczSHlJ5kz8y2akEI1Se5RGIo2RATg==
Age: 3001

                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.158.39.64
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 16 Sep 2022 11:20:40 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: https://881daleperkinsnews.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=5134093c-b697-4838-806a-c6327129fcd0:2:1; expires=Mon, 13 Sep 2032 11:20:40 GMT; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    868477737278ce9fa176f876aeff9dee
Sha1:   cf2d0ab46283ae890d8cc87642b2b6c13f635c54
Sha256: b1b3af65698ed653abe535fef7debfd19151f86334e4d37be19b047bf9b61f0c
                                        
                                            GET /63ab83c16989526b5e066846a849db42/invoke.js HTTP/1.1 
Host: www.effectiveperformanceformat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.59.20
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.17.9
Date: Fri, 16 Sep 2022 11:20:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e19ce01529b54a6d3c33ae9f38f2fd20
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26943), with no line terminators
Size:   9780
Md5:    4bfa128a950be555c8b17fb2dccc6d68
Sha1:   c5241891b7e25ba7bb4d83d063b34794c686001e
Sha256: 9ece507c63e1afe667de8c287703becdf2f02ffcf3761013aef85ce9a6426134

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api2/logo_48.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 20:02:15 GMT
expires: Mon, 19 Sep 2022 20:02:15 GMT
cache-control: public, max-age=604800
age: 314305
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   2228
Md5:    ef9941290c50cd3866e2ba6b793f010d
Sha1:   4736508c795667dcea21f8d864233031223b7832
Sha256: 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
                                        
                                            OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.206
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
date: Fri, 16 Sep 2022 11:20:40 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+147; expires=Sun, 15-Sep-2024 11:20:40 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 16 Sep 2022 11:20:40 GMT
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 12:31:58 GMT
expires: Sun, 10 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 514122
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 00:48:31 GMT
expires: Sat, 16 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 37929
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2974
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.206
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-encoding: gzip
date: Fri, 16 Sep 2022 11:20:40 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+231; expires=Sun, 15-Sep-2024 11:20:40 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 16 Sep 2022 11:20:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   131
Md5:    babb6f090aeebc6f421624475b4aefff
Sha1:   06079b7547949822c118224e51604f4c5ebf80c8
Sha256: b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Cookie: uid_id2=5134093c-b697-4838-806a-c6327129fcd0:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.158.39.64
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 16 Sep 2022 11:20:40 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: https://881daleperkinsnews.blogspot.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    868477737278ce9fa176f876aeff9dee
Sha1:   cf2d0ab46283ae890d8cc87642b2b6c13f635c54
Sha256: b1b3af65698ed653abe535fef7debfd19151f86334e4d37be19b047bf9b61f0c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0479FCE5E832C8A214CA28391571C265070861CAAFF6D6589614FC6B2D2EC418"
Last-Modified: Wed, 14 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7647
Expires: Fri, 16 Sep 2022 13:28:07 GMT
Date: Fri, 16 Sep 2022 11:20:40 GMT
Connection: keep-alive

                                        
                                            GET /embed/956730 HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 16 Sep 2022 11:20:40 GMT
vary: Accept-Encoding
cache-control: public, max-age=300
expires: Fri, 16 Sep 2022 11:21:21 GMT
x-robots-tag: all
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Fri, 16 Sep 2022 11:19:21 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OYIvq0iCMFXnPJk8kAiB2IpPt1x0mZ0MRBDPeZkzSFbb%2FqY53r0%2B6oqlagghP5WedC8Nwb3hZsGETCDfBS1Gy17UuP7Zbq6JUYu0tsXB%2BJSuqcWG0ymEAxxRdEMttjDh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 74b936d5b93cb518-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26629)
Size:   22348
Md5:    4f87cfc4e07caf8020d6aefdd8da6a9f
Sha1:   05ad11345120e75ec00cc65c2e813113fe4f5cee
Sha256: f1165e8a4781f059de71167bc771ce83f07a16c51b080b0d34650f7615a2fe57
                                        
                                            GET /js15_as.js HTTP/1.1 
Host: s10.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         46.105.201.240
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 16 Sep 2022 11:17:16 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 72387492
content-encoding: br
x-cdn-pop: rbx1
x-cdn-pop-ip: 51.254.41.128/25
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11440), with no line terminators
Size:   4364
Md5:    ed192092c129db6123a3397855f42619
Sha1:   067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
Sha256: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
                                        
                                            GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 
Host: static.cloudflareinsights.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.156.26
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Fri, 16 Sep 2022 11:20:41 GMT
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b936d85c8ab51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14076)
Size:   7953
Md5:    c811e9380d5c00037ef214da5e0e8227
Sha1:   c7412fb27092946c582587e601240d7317f0d511
Sha256: 7d0e6b69e25c74ccf7604bfbb96d391fa2777de80fe0bab6feac29110833bee8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 11:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/icons/facebook.png HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 16 Sep 2022 11:20:41 GMT
content-length: 648
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2222
content-disposition: inline; filename="facebook.webp"
vary: Accept
etag: "631ecb4c-8ae"
last-modified: Mon, 12 Sep 2022 06:01:48 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 117027
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=33Q5kzGsS08cF3MPpoSZsV8ATHwnIBo%2B4sydssiP4mdKjJNKt7tacdvIedStSe0ag2EktUwKjGA0VfONYGKQmE94ld8gnxYfctu%2B3GcNeE0LZHa3GM3ATqTVn7irXp2o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 74b936d94e04b518-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   648
Md5:    54e9168996419eada721e6ca83b9866e
Sha1:   9a98cbd3f57f7cb3017e0ed1a4c4356094c0c2fb
Sha256: 4d1a80126c4bacaa62d2c046fd95b1378b5b874582f0ac4a7c453ff5cd1d33d7
                                        
                                            GET /nr-1216.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 16 Sep 2022 11:20:41 GMT
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: HIT
x-cache-hits: 5303
x-timer: S1663327241.230130,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32022)
Size:   14391
Md5:    b7c09cc097b2847f9edc784adba62dcb
Sha1:   5aa648623cf5e3b4b215fe5d068a7904c59f2925
Sha256: 6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
                                        
                                            GET /1/a53393d12f?a=453137&v=1216.487a282&to=ZlNSMUNXWBcFW0FRCV8ZcQZFX1kKS3lFSDp5QkQVbXVZChBKWlQKVERDOXRbVAEAe1pWEkNZXAlURHYXDFdCbRVURHUIU1NS&rst=695&ck=1&ref=https://snapwidget.com/embed/956730&ap=40&be=427&fe=634&dc=548&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1663327224481,%22n%22:0,%22f%22:3,%22dn%22:6,%22dne%22:8,%22c%22:8,%22s%22:10,%22ce%22:30,%22rq%22:30,%22rp%22:147,%22rpe%22:156,%22dl%22:413,%22di%22:526,%22ds%22:547,%22de%22:548,%22dc%22:634,%22l%22:634,%22le%22:635%7D,%22navigation%22:%7B%7D%7D&fcp=631&at=ShRRRwtNSxk%3D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 16 Sep 2022 11:20:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 74b936d9fab1b509-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=8c0048286b2bd269; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   73
Md5:    516a128bb6000ca8154792678f4333fb
Sha1:   41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
Sha256: 9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
                                        
                                            GET /1/a53393d12f?a=453137&v=1216.487a282&to=ZlNSMUNXWBcFW0FRCV8ZcQZFX1kKS3lFSDp5QkQVbXVZChBKWlQKVERDOXRbVAEAe1pWEkNZXAlURHYXDFdCbRVURHUIU1NS&rst=608&ck=1&ref=https://snapwidget.com/embed/956730&ap=40&be=384&fe=515&dc=466&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1663327224564,%22n%22:0,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:65,%22rp%22:73,%22rpe%22:74,%22dl%22:333,%22di%22:436,%22ds%22:466,%22de%22:466,%22dc%22:514,%22l%22:514,%22le%22:515%7D,%22navigation%22:%7B%7D%7D&at=ShRRRwtNSxk%3D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 16 Sep 2022 11:20:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 74b936d9fe17b4eb-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=41e3676f01ae58de; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   73
Md5:    516a128bb6000ca8154792678f4333fb
Sha1:   41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
Sha256: 9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5403
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:41 GMT
Last-Modified: Fri, 16 Sep 2022 09:50:38 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5403
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:41 GMT
Last-Modified: Fri, 16 Sep 2022 09:50:38 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3630
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:41 GMT
Last-Modified: Fri, 16 Sep 2022 10:20:11 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2554
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:41 GMT
Last-Modified: Fri, 16 Sep 2022 10:38:07 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2198
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:41 GMT
Last-Modified: Fri, 16 Sep 2022 10:44:03 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v/t51.2885-15/306047190_605023417750987_2209349381291975566_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHiYApyAp7N7por4leFUdpus_aH00G9_byz9ofTQb39vNq9v1c-Esvn9_qL1joLCOs&_nc_ohc=etThWkiTTmcAX_K4z_t&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9InkK4QXJ1eOUO8I50Y5LaeGwJcmOp1Ip3x4DkmKnBNQ&oe=6328DF23 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 10 Sep 2022 16:29:40 GMT
x-haystack-needlechecksum: 2592134114
x-needle-checksum: 743166225
content-digest: adler32=743166225
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 226690
x-fb-trip-id: 1512268381
date: Fri, 16 Sep 2022 11:20:41 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size:   226690
Md5:    40c6e0f989fd04dd2557d54be26c72e2
Sha1:   d1b3521947de29d617ff397485232575481151c4
Sha256: 79f91b7c681a5dc2bcdd5ce9642dbe060cd390c3e539adff93a1f5e57429554b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5403
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 11:20:41 GMT
Last-Modified: Fri, 16 Sep 2022 09:50:38 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /stats/0.php?4571949&@f16&@g1&@h1&@i1&@j1663327224978&@k0&@l1&@mDas%20Boot%20Besetzung%201981%20-%20Dale%20Perkins%20News&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:145669314&@b3:1663327225&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2F881daleperkinsnews.blogspot.com%2F2022%2F08%2Fdas-boot-besetzung-1981.html&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.99.8.28
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 11:20:41 GMT
Content-Length: 51
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   51
Md5:    93d380df0365ece4c1406777c4be9760
Sha1:   bd0a8c9d2ad6257e5f1abea4d58b3b1bc6c76f4f
Sha256: 271ad23d154663436aef8077c64dd9908c111c178ced706242cb7d5d8dcdb826
                                        
                                            POST /cdn-cgi/rum? HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VQICUlZUGwcFV1BRAA==
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjE0NTMwNyIsImFwIjoiNDUzMTUwIiwiaWQiOiIwZTRkOGUwMjcyOTM3NTg2IiwidHIiOiI0NDFkN2ZhZTFlNjM2OWQ0Yzc4YmNmYzNkMjQ4MTU3OSIsInRpIjoxNjYzMzI3MjI1MDgzfX0=
traceparent: 00-441d7fae1e6369d4c78bcfc3d2481579-0e4d8e0272937586-01
tracestate: 145307@nr=0-1-145307-453150-0e4d8e0272937586----1663327225083
content-type: application/json
Content-Length: 2013
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: text/plain
                                        
date: Fri, 16 Sep 2022 11:20:41 GMT
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 74b936d95e13b518-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   201192
Md5:    6544719c474946e57b2901a28adad562
Sha1:   95626e427e5c648a1cc2beedfcb8272368f05933
Sha256: 9164a70ea1f285ae3e13f496af80191afb303d753b731732698b64d610050ce2
                                        
                                            GET /v/t51.2885-15/244052366_242723337818957_487001981621570713_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEtaTgkZ8wXBlu-YL4c8VuVEAx6B4XSJkcQDHoHhdImR3AAm9zgV6zDOYIzm9CiYu0&_nc_ohc=Vc3wrifNsmwAX_lCVAy&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9SM8yynCD_91KzYjx30v-X_Gjf3RTrcPoZAE_m7Ng6-A&oe=6328899F HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 01 Oct 2021 10:43:36 GMT
x-haystack-needlechecksum: 388708087
x-needle-checksum: 2911320566
accept-ranges: bytes
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-length: 172726
content-digest: adler32=2911320566
x-fb-trip-id: 1512268381
date: Fri, 16 Sep 2022 11:20:41 GMT
cache-control: max-age=1209600, no-transform
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size:   172726
Md5:    302dae2eb8ddcd13f322a4d485960049
Sha1:   f8e0419f41a234335029d49410dc7fc56524da2d
Sha256: b3f40f0428d938013319a075526d995822884ebb9bdb1c1368a9ab50cee29a5b
                                        
                                            GET /v/t51.2885-15/269751951_277845444315548_3618974636877083108_n.jpg?_nc_cat=105&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHwyf9ST6KTSa4NFnWyNwVjquLJe-1AOJ2q4sl77UA4nVhF9E7xOI5zWX0-2_sfUCY&_nc_ohc=IT5hUoPevfIAX-k2R2X&_nc_oc=AQnHEqutnCUf7uCJseIrD7JaiwUGe4uxbNAgvskbE-TXbmMLg2LRHqMuR8Qi5j2xRkY&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_HAQ7WKxSt1dd8bHcQ7puncHeRO1rxGCRNzY8HVN9tKQ&oe=632946A7 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 19 Dec 2021 15:39:33 GMT
x-haystack-needlechecksum: 549129686
x-needle-checksum: 3585315655
content-digest: adler32=3585315655
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 198291
x-fb-trip-id: 1512268381
date: Fri, 16 Sep 2022 11:20:41 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size:   198291
Md5:    864f7647d5439c9c330c9331ea94bf0c
Sha1:   fa6395a4b4fe5f92ffb999f3d801a650c3fe2c36
Sha256: 4cdaed13602d43c54018b0b91b75b33b48749d8ec92aa7c673337ce990815c56
                                        
                                            GET /v/t51.2885-15/242515716_212926190828592_5543576737853126124_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHZsDG-0aWT8t_80xh8gGAypx_KV9kitCinH8pX2SK0KJtssghaI_P0FjYgZTefqm8&_nc_ohc=oYO2wd59_k0AX--iclt&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8qJkvGL1hEpv5spzBFNJIvPJLQx1UuXpR0EoYP152Cmg&oe=632A45B4 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 24 Sep 2021 16:16:04 GMT
x-haystack-needlechecksum: 1709114294
x-needle-checksum: 3611653328
content-digest: adler32=3611653328
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 209216
x-fb-trip-id: 1512268381
date: Fri, 16 Sep 2022 11:20:41 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size:   209216
Md5:    fce6b4e4087b3104ff7d8c3538f5962a
Sha1:   50f7a861a2767702f7264ac9ca93362c1d3b2e99
Sha256: 5357077237594384cd703be0e1d14f88b23c18c05ea562a973a2870eb098b023
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F39D34CC00E36ED0B102355931C8856E1A7D4328701FF32CAC5786C2CA9CBA00"
Last-Modified: Wed, 14 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11571
Expires: Fri, 16 Sep 2022 14:33:32 GMT
Date: Fri, 16 Sep 2022 11:20:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "38204ED617D0643485E507AD438ECE48EF02D84E4B4E6ECD84E4ED64B319A7F9"
Last-Modified: Wed, 14 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11686
Expires: Fri, 16 Sep 2022 14:35:27 GMT
Date: Fri, 16 Sep 2022 11:20:41 GMT
Connection: keep-alive

                                        
                                            GET /watch.494542519939.js?key=63ab83c16989526b5e066846a849db42&kw=%5B%22das%22%2C%22boot%22%2C%22besetzung%22%2C%221981%22%2C%22-%22%2C%22dale%22%2C%22perkins%22%2C%22news%22%5D&refer=https%3A%2F%2F881daleperkinsnews.blogspot.com%2F2022%2F08%2Fdas-boot-besetzung-1981.html&tz=0&dev=r&res=12.31&uuid=5134093c-b697-4838-806a-c6327129fcd0%3A2%3A1 HTTP/1.1 
Host: reapinject.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         173.233.139.164
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 11:20:41 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://881daleperkinsnews.blogspot.com
Access-Control-Allow-Origin: https://881daleperkinsnews.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://reapinject.com/watch.494542519939.js?key=63ab83c16989526b5e066846a849db42&kw=%5B%22das%22%2C%22boot%22%2C%22besetzung%22%2C%221981%22%2C%22-%22%2C%22dale%22%2C%22perkins%22%2C%22news%22%5D&refer=https%3A%2F%2F881daleperkinsnews.blogspot.com%2F2022%2F08%2Fdas-boot-besetzung-1981.html&tz=0&dev=r&res=12.31&uuid=5134093c-b697-4838-806a-c6327129fcd0%3A2%3A1&shu=f647b1f5cb0db5d2b7107f47314bbe4ad0c7e9cb13417667e14723599237a93f658e85c1f9502ec82ddbafb62621d57f0a9372751a9bafdce40ea5a394be6686f08abffcedee4b3b4dbf962d22ed0c084b0db9a409088a909f5d37965eab5f79eb&pst=1663327301&rmtc=t
Set-Cookie: u_pl=16262693; expires=Sat, 17 Sep 2022 11:20:41 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjI2MjY5MywiayI6IjYzYWI4M2MxNjk4OTUyNmI1ZTA2Njg0NmE4NDlkYjQyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNTM4NjUzLCJwaWQiOjMwODE3MSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjUsInB0Ijo0LCJwayI6InFuamRybmRhaWsiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vODgxZGFsZXBlcmtpbnNuZXdzLmJsb2dzcG90LmNvbS8yMDIyLzA4L2Rhcy1ib290LWJlc2V0enVuZy0xOTgxLmh0bWwifX0.x8OPOwg5GC5H7NPPLRky7Wr0qQZP5Ay4ODB8vuR-Ovo; expires=Fri, 16 Sep 2022 11:21:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4202eccd2f5b83cfd4d56a0b24d416f5
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.494542519939.js?key=63ab83c16989526b5e066846a849db42&kw=%5B%22das%22%2C%22boot%22%2C%22besetzung%22%2C%221981%22%2C%22-%22%2C%22dale%22%2C%22perkins%22%2C%22news%22%5D&refer=https%3A%2F%2F881daleperkinsnews.blogspot.com%2F2022%2F08%2Fdas-boot-besetzung-1981.html&tz=0&dev=r&res=12.31&uuid=5134093c-b697-4838-806a-c6327129fcd0%3A2%3A1&shu=f647b1f5cb0db5d2b7107f47314bbe4ad0c7e9cb13417667e14723599237a93f658e85c1f9502ec82ddbafb62621d57f0a9372751a9bafdce40ea5a394be6686f08abffcedee4b3b4dbf962d22ed0c084b0db9a409088a909f5d37965eab5f79eb&pst=1663327301&rmtc=t HTTP/1.1 
Host: reapinject.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://881daleperkinsnews.blogspot.com
Referer: https://881daleperkinsnews.blogspot.com/
Connection: keep-alive
Cookie: u_pl=16262693; ain=eyJhbGciOiJIUzI1NiJ9.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.x8OPOwg5GC5H7NPPLRky7Wr0qQZP5Ay4ODB8vuR-Ovo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         173.233.139.164
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 11:20:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://881daleperkinsnews.blogspot.com
Access-Control-Allow-Origin: https://881daleperkinsnews.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=5134093c-b697-4838-806a-c6327129fcd0:2:1; expires=Fri, 23 Sep 2022 11:20:41 GMT; secure; SameSite=None iprcb239ce9bcd8e6ce9c752a997dd6c6d9c=3569806; expires=Fri, 16 Sep 2022 15:20:41 GMT; secure; SameSite=None pdhtkv=true; expires=Sat, 17 Sep 2022 11:20:41 GMT; secure; SameSite=None uncs=1; expires=Sat, 17 Sep 2022 11:20:41 GMT; secure; SameSite=None pdhtkv5=true; expires=Sat, 17 Sep 2022 11:20:41 GMT; secure; SameSite=None uncs5=1; expires=Sat, 17 Sep 2022 11:20:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6e278e989a1f011d51297db1db39551b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (2598)
Size:   2074
Md5:    f858b9cf004f6e4965700637f74693e8
Sha1:   4460a8ab0aad2873c027edff8c7a9df1bfdfd4f0
Sha256: ee8f23ae9ae4ec90fe4b5745df21c62c4644e7f06da388b4cc93eb06b47808a0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.397879149275.js?key=63ab83c16989526b5e066846a849db42&kw=%5B%22das%22%2C%22boot%22%2C%22besetzung%22%2C%221981%22%2C%22-%22%2C%22dale%22%2C%22perkins%22%2C%22news%22%5D&refer=https%3A%2F%2F881daleperkinsnews.blogspot.com%2F2022%2F08%2Fdas-boot-besetzung-1981.html&tz=0&dev=r&res=12.31&uuid=5134093c-b697-4838-806a-c6327129fcd0%3A2%3A1 HTTP/1.1 
Host: varietiesplea.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://881daleperkinsnews.blogspot.com
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.225
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Fri, 16 Sep 2022 11:20:41 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://881daleperkinsnews.blogspot.com
Access-Control-Allow-Origin: https://881daleperkinsnews.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://varietiesplea.com/watch.397879149275.js?key=63ab83c16989526b5e066846a849db42&kw=%5B%22das%22%2C%22boot%22%2C%22besetzung%22%2C%221981%22%2C%22-%22%2C%22dale%22%2C%22perkins%22%2C%22news%22%5D&refer=https%3A%2F%2F881daleperkinsnews.blogspot.com%2F2022%2F08%2Fdas-boot-besetzung-1981.html&tz=0&dev=r&res=12.31&uuid=5134093c-b697-4838-806a-c6327129fcd0%3A2%3A1&shu=32be4b4dd5765ef9838af61193920e1d71ccd37244bacb3e4c4ea75be21b7fe4a56fa75bcfe999b33b1b4d1a85538a4384cf0c2549e0a962a261abfd00487ba0b4e4c02470f9ace87fd4c5b543cb8c4abc2ebf&pst=1663327301&rmtc=t
Set-Cookie: u_pl=16262693; expires=Sat, 17 Sep 2022 11:20:41 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.x8OPOwg5GC5H7NPPLRky7Wr0qQZP5Ay4ODB8vuR-Ovo; expires=Fri, 16 Sep 2022 11:21:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2996b419fb179df19dd6ad48a3579c29
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F2ED2F495273196197F166D9B932C52EAAD079CBC12E010F8EA85922AC82F48C"
Last-Modified: Wed, 14 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8947
Expires: Fri, 16 Sep 2022 13:49:49 GMT
Date: Fri, 16 Sep 2022 11:20:42 GMT
Connection: keep-alive

                                        
                                            GET /watch.397879149275.js?key=63ab83c16989526b5e066846a849db42&kw=%5B%22das%22%2C%22boot%22%2C%22besetzung%22%2C%221981%22%2C%22-%22%2C%22dale%22%2C%22perkins%22%2C%22news%22%5D&refer=https%3A%2F%2F881daleperkinsnews.blogspot.com%2F2022%2F08%2Fdas-boot-besetzung-1981.html&tz=0&dev=r&res=12.31&uuid=5134093c-b697-4838-806a-c6327129fcd0%3A2%3A1&shu=32be4b4dd5765ef9838af61193920e1d71ccd37244bacb3e4c4ea75be21b7fe4a56fa75bcfe999b33b1b4d1a85538a4384cf0c2549e0a962a261abfd00487ba0b4e4c02470f9ace87fd4c5b543cb8c4abc2ebf&pst=1663327301&rmtc=t HTTP/1.1 
Host: varietiesplea.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://881daleperkinsnews.blogspot.com
Referer: https://881daleperkinsnews.blogspot.com/
Connection: keep-alive
Cookie: u_pl=16262693; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjI2MjY5MywiayI6IjYzYWI4M2MxNjk4OTUyNmI1ZTA2Njg0NmE4NDlkYjQyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNTM4NjUzLCJwaWQiOjMwODE3MSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjUsInB0Ijo0LCJwayI6InFuamRybmRhaWsiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vODgxZGFsZXBlcmtpbnNuZXdzLmJsb2dzcG90LmNvbS8yMDIyLzA4L2Rhcy1ib290LWJlc2V0enVuZy0xOTgxLmh0bWwifX0.x8OPOwg5GC5H7NPPLRky7Wr0qQZP5Ay4ODB8vuR-Ovo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Fri, 16 Sep 2022 11:20:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://881daleperkinsnews.blogspot.com
Access-Control-Allow-Origin: https://881daleperkinsnews.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=5134093c-b697-4838-806a-c6327129fcd0:2:1; expires=Fri, 23 Sep 2022 11:20:42 GMT; secure; SameSite=None pdhtkv=true; expires=Sat, 17 Sep 2022 11:20:42 GMT; secure; SameSite=None uncs=1; expires=Sat, 17 Sep 2022 11:20:42 GMT; secure; SameSite=None pdhtkv5=true; expires=Sat, 17 Sep 2022 11:20:42 GMT; secure; SameSite=None uncs5=1; expires=Sat, 17 Sep 2022 11:20:42 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0705fd367f642116e84b82a078f29a8f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2406)
Size:   1942
Md5:    abed66daa1ddc6b941b3a1a90919844d
Sha1:   bd9de2fbbe945951f05bbf6d2c37a2ad255af79b
Sha256: 3238f0dc80d0ecc46bac88d3087c0c229aaaf637ba7127e4df5bf2592cedc301

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1 
Host: cdn.cloudimagesb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         45.133.44.10
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 16 Sep 2022 11:20:42 GMT
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Sun, 18 Sep 2022 11:20:42 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size:   144379
Md5:    33c304429dc1a4408a96e6a74ffa2feb
Sha1:   c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
Sha256: dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
                                        
                                            GET /segopecelus/ngeads/main/banner300.js HTTP/1.1 
Host: www.combinatronics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.10.202
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Fri, 16 Sep 2022 11:20:39 GMT
cache-control: max-age=3600
cf-cache-status: MISS
last-modified: Fri, 16 Sep 2022 11:20:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P0jvNb65LFXg00sn%2BkFIaqInplEit1KYFU2bgn7qzXuC%2Bw51sCrgCR%2FsBQxvdMPR3ZdprRsLVVWRg4HKMd3xiSz2pXGD60R%2F6Kvp5Ry4OVZLG5w97qAXRr2Fa%2FS1g0L%2Bm%2FYT74P9c70%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b936cb98b2b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/embed.vendor.min.2f17f0b14ee46c5a.js HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Fri, 16 Sep 2022 11:20:41 GMT
cf-bgj: minify
etag: W/"62f0b6d6-9e1"
last-modified: Mon, 08 Aug 2022 07:10:14 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1516267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I%2FSdduZh4%2FJ6rO4LqsHRHcBoRGhK1vwERDkd8V3jD2IApKMs%2BqnWcWweG0kY2TjEwdzG0T9IVU8jqthG6OIg%2FNA5ZvseTX%2BUAjZmzUwCdlk4qmzcoOes7Gsv6aLqmizy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 74b936d83cd2b518-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /stylesheets/embed.style.min.307799cd3bc5b2ee.css HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 16 Sep 2022 11:20:41 GMT
cf-bgj: minify
cf-polished: origSize=15975
etag: W/"62f0b6a9-3e67"
last-modified: Mon, 08 Aug 2022 07:09:29 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1999763
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l4r9BsYLRQmd5aM0jWgCj7ePPigy9FMkmpTpido4EvNHbnuviMFJotajgishgZhvtL7kopoWBbTRcKaT5pdVcI0MfdM9lT%2BXzuhpR6FRXkWlaX1927A1AKeZ8XGxTW7U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 74b936d83cc8b518-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /cdn-cgi/rum? HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 392
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: text/plain
                                        
date: Fri, 16 Sep 2022 11:20:46 GMT
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 74b936fc3cb4b518-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /ionicons/2.0.1/css/ionicons.min.css HTTP/1.1 
Host: code.ionicframework.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.6.173
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Fri, 16 Sep 2022 11:20:38 GMT
x-origin-cache: HIT
last-modified: Tue, 28 Jun 2022 16:06:13 GMT
access-control-allow-origin: *
etag: W/"62bb26f5-c854"
expires: Mon, 12 Sep 2022 16:20:47 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: D49C:12B9D:5C0B95:5F3761:631F5A07
via: 1.1 varnish
age: 46635
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663280603.248860,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 9676659e03e4c5b7cd3db940f4757afcdc72b5f7
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=owelqEYcJ3cejKS2kSD2%2B%2BTEGA4T%2FMqak%2BvI3lMIo9FFZ94A%2FIv5WjTOJX3WP3Il7dXrOp8djjkIUQKLoP4zV8oXns67gWzz8m%2FrUbj8qGUaZx%2BzPpJ1HQyCF2ZpY3e42i%2Bjx4FUC3Ru"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74b936cad929b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /segopecelus/ngeads/main/stats-trending.js HTTP/1.1 
Host: www.combinatronics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.10.202
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Fri, 16 Sep 2022 11:20:39 GMT
cache-control: max-age=3600
cf-cache-status: EXPIRED
last-modified: Fri, 16 Sep 2022 07:02:18 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sBiREKayC91kNGekT%2B5xvsBJ57h%2BHJSJVlckpFRlJj66tXpqGgz6ZrD3J8ZBCIl%2Ft91%2B6Nspanf8snLoWTvD0TXR%2FhbmVkgrYnHr2hCKksNDeYd9oewHwR9PcVfi%2FYpRymJEHGXuYQc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b936cb98b8b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Droid+Sans:400,700%7CPoppins:300,400,500,600,700&subset=latin HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 11:20:39 GMT
date: Fri, 16 Sep 2022 11:20:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /v/t51.2885-15/242747775_3064430333842459_4612651904784165094_n.jpg?_nc_cat=105&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeFBZ5ESIyeseoH2yph60q0cnJFevsoTYX2ckV6-yhNhfVHy6TNabWjoJwutN8zGjVQ&_nc_ohc=Jh0eKGH3HgkAX-SttG3&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-mb7YWaUw-i4hjkE8J68bQmTOt_TcmHK-ZNH86b6_xEA&oe=6328577C HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sat, 25 Sep 2021 03:14:15 GMT
x-haystack-needlechecksum: 2803065861
x-needle-checksum: 2191033377
content-digest: adler32=2191033377
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 132332
x-fb-trip-id: 1512268381
date: Fri, 16 Sep 2022 11:20:41 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /cdn-cgi/rum? HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VQICUlZUGwcFV1BRAA==
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjE0NTMwNyIsImFwIjoiNDUzMTUwIiwiaWQiOiJmM2U1NmJjYjMwOGI5MzQwIiwidHIiOiJiZDY1YjZkMWIxYjQ4NTRiMmIyZDY1MTE1Njg5NTdkMSIsInRpIjoxNjYzMzI3MjI1MTQxfX0=
traceparent: 00-bd65b6d1b1b4854b2b2d6511568957d1-f3e56bcb308b9340-01
tracestate: 145307@nr=0-1-145307-453150-f3e56bcb308b9340----1663327225141
content-type: application/json
Content-Length: 2985
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: text/plain
                                        
date: Fri, 16 Sep 2022 11:20:41 GMT
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 74b936d9beb7b518-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /stylesheets/embed.grid.min.4069f6f840f9102b.css HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 16 Sep 2022 11:20:41 GMT
cf-bgj: minify
etag: W/"63034249-899"
last-modified: Mon, 22 Aug 2022 08:46:01 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1999742
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7GH0wEz0hVb4GqKfSQtdjqAD%2FlHo4Y0fzX%2BHsQZKA1Mx5vLYAj9r%2Bo9Ou3RYhKQr2gGxOydbFOSTUFn7xabptOrIS7UGOeF%2BR%2BoI9Gom3xtRVt1AUcaQAtm5r7LuUEvv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 74b936d83ccbb518-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/embed.main.min.b61fafc5de1ae792.js HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Fri, 16 Sep 2022 11:20:41 GMT
cf-bgj: minify
etag: W/"63034249-b2e"
last-modified: Mon, 22 Aug 2022 08:46:01 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1532875
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HviAWUB4Oqvoj47FYjcPj4qzyBkRYDv6OZKLzotsxn2pLX6zg0Vq5Qqh%2Fu8cw2o6ozNiPGJ9y2zDEdKea65tszTEKNkevFyLDu0rQTUHf7goiMb3xbarSdw9aisED7Eo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 74b936d83cd5b518-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /cdn-cgi/rum? HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 392
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: text/plain
                                        
date: Fri, 16 Sep 2022 11:20:46 GMT
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 74b936fc3cb5b518-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /embed/956730 HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://881daleperkinsnews.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.9.123
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 16 Sep 2022 11:20:40 GMT
vary: Accept-Encoding
cache-control: public, max-age=300
expires: Fri, 16 Sep 2022 11:21:21 GMT
x-robots-tag: all
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Fri, 16 Sep 2022 11:19:21 GMT
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ImZQFsHUdpf97fhhwYxb5pa5wNy8SE5gBhYqeFNaqoTp2HlWih7r166EvJTpYeOnFbCKugJ3J5IL3CF49VhMh69bwB5zdwapALQno74lO7Rg78Y5GkdE5jpUChT41dDI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 74b936d679f9b518-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---