r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3537658770790ad6cf0d727f0c0acd2
8365cadda05ef27b2ebd627d545e31886b512bde
df992311f130f15459739841de925c7eec2604d5a68ca6b2a67b6dc8d229212c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF992311F130F15459739841DE925C7EEC2604D5A68CA6B2A67B6DC8D229212C"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2493
Expires: Wed, 26 Oct 2022 06:48:45 GMT
Date: Wed, 26 Oct 2022 06:07:12 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2bba4cad162918b17858b60e909e4d9
d9a1d4f7fb7635ab233ebbf776e6de1a2857032b
3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6174
Cache-Control: max-age=104813
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:12 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 11:14:05 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2bba4cad162918b17858b60e909e4d9
d9a1d4f7fb7635ab233ebbf776e6de1a2857032b
3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2285
Cache-Control: max-age=100924
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:12 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 10:09:16 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Wed, 26 Oct 2022 06:43:35 GMT
Date: Wed, 26 Oct 2022 06:07:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: As67gYWIWsr6Ks3iQqZihu/FQmHY+9VyGGE8R7dYTExE8q+LRimhAMR8mjZ9dTXYinRvJ2C4T2w=
x-amz-request-id: HSRHZBMV4TBDGS1G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 05:09:14 GMT
age: 3478
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/cara-guna-sd-ii.html%5Cx27%3E%3Cspan?m\x3d1%27,
142.250.74.161404 Not Found 16 kB URL HTTP/1.1 dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/cara-guna-sd-ii.html%5Cx27%3E%3Cspan?m\x3d1%27,
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4754)
Hash 0a61b7d5997cff6b90d84b06a3a78fcc
434f2f51b96dc4fadcdf3a5ac48a4ebd32c682b2
9d8851a496997e090d5734d03c7f8bd8507bccd919f78568f05b0fd59a2aa2da
GET /http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/cara-guna-sd-ii.html%5Cx27%3E%3Cspan?m\x3d1%27, HTTP/1.1
Host: dietproteinsd2.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 26 Oct 2022 06:07:12 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15649
Server: GSE
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 06:07:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dietproteinsd2.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 dietproteinsd2.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: dietproteinsd2.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/cara-guna-sd-ii.html%5Cx27%3E%3Cspan?m\x3d1%27,
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Wed, 02 Nov 2022 04:15:29 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 25 Oct 2022 20:55:25 GMT
Content-Type: text/javascript
Age: 6703
ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
142.250.74.42200 OK 30 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
IP 142.250.74.42:0
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash ebaa24930d6b905fe00c9457484b78a9
f97496ee81148e264b3735464b8bfced1a8b2fad
b9bd9830d7eceae230cfaa5105e8a3ec432392f270cee156637dac8d0684d614
GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30082
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 20 Oct 2022 09:35:09 GMT
Expires: Fri, 20 Oct 2023 09:35:09 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 505923
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.js
142.250.74.42200 OK 46 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (357)
Hash 6deb1c639a297c5c12550a274af0b79b
f71e5d55945010be68ce5bb8186059481d52330e
8da2f1c6fa2ce0addbbe7a171659987aaaa2bda4a1b0f53e0cb6e3ca937c6ff2
GET /ajax/libs/jquery/1.4.2/jquery.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 46120
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 20 Oct 2022 18:45:29 GMT
Expires: Fri, 20 Oct 2023 18:45:29 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 472903
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
btemplatescripts.googlecode.com/files/jquery.jcarousel.js
173.194.73.82404 Not Found 1.6 kB URL HTTP/1.1 btemplatescripts.googlecode.com/files/jquery.jcarousel.js
IP 173.194.73.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash ee8fad8a8c4c9cb7e9c7937629580273
430ffd0796b649050430d4411c141b4df2c57216
f6bc36a4a3e946c2283aebfa6bd68d48c65a7b82380ac79036876eab7be20ab1
GET /files/jquery.jcarousel.js HTTP/1.1
Host: btemplatescripts.googlecode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1586
Date: Wed, 26 Oct 2022 06:07:12 GMT
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3d56596917080475122c9bb51cc0c0b7
d0294ac77866e801f6c94862b39bc00b9735d72f
ae58a33a93b695e84e3cffd34c09c20ccb08f33b775f87dd849077d3fbdf36a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
142.250.74.105200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 06:44:47 GMT
expires: Sat, 21 Oct 2023 06:44:47 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 21 Oct 2022 00:50:45 GMT
content-type: text/css
age: 429745
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89f1adba05b1afa58865e2e8062294d8
625992e3b56d90a3544869363c1ba80b587438b8
26b4d7fcd5181b95baabbe690e57e5ec9e6a56cc91a3961a123861ae993b11ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-GTI5Hfqlli4/T_msQLltK5I/AAAAAAAAAZw/UXVzTyNWQKU/w72-h72-p-k-no-nu/4.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 1.bp.blogspot.com/-GTI5Hfqlli4/T_msQLltK5I/AAAAAAAAAZw/UXVzTyNWQKU/w72-h72-p-k-no-nu/4.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash edd5d925e3d37d0dc0ba10e37a5211ef
8947cd7b0938d627db90e0c5b0357b4447c2c09d
0a8f8ead89337ad1a8c5efaa63633bce73831d7260ab0cca4ba86794a9857fcb
GET /-GTI5Hfqlli4/T_msQLltK5I/AAAAAAAAAZw/UXVzTyNWQKU/w72-h72-p-k-no-nu/4.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="4.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4880
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v19c"
Content-Type: image/jpeg
Age: 6703
1.bp.blogspot.com/-t5S8OmrlDso/UAGvUTq2PwI/AAAAAAAAAas/UKd63L5KfmY/w72-h72-p-k-no-nu/pencen.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 1.bp.blogspot.com/-t5S8OmrlDso/UAGvUTq2PwI/AAAAAAAAAas/UKd63L5KfmY/w72-h72-p-k-no-nu/pencen.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash f8920b256ee3522db807c90784911706
6147bc8c54d8d40e28dae5d3918874a07ce3a437
0d256ed79f05d242eb1c5d76453bf1236745f3e443e732be030e6fdc4b9a628f
GET /-t5S8OmrlDso/UAGvUTq2PwI/AAAAAAAAAas/UKd63L5KfmY/w72-h72-p-k-no-nu/pencen.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="pencen.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4914
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1ab"
Content-Type: image/jpeg
Age: 6703
3.bp.blogspot.com/-fZAJ-61C1B0/T_hp4N-2DFI/AAAAAAAAAYk/ytvuL76hsCc/w72-h72-p-k-no-nu/pencen.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 3.bp.blogspot.com/-fZAJ-61C1B0/T_hp4N-2DFI/AAAAAAAAAYk/ytvuL76hsCc/w72-h72-p-k-no-nu/pencen.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash f8920b256ee3522db807c90784911706
6147bc8c54d8d40e28dae5d3918874a07ce3a437
0d256ed79f05d242eb1c5d76453bf1236745f3e443e732be030e6fdc4b9a628f
GET /-fZAJ-61C1B0/T_hp4N-2DFI/AAAAAAAAAYk/ytvuL76hsCc/w72-h72-p-k-no-nu/pencen.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="pencen.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4914
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v189"
Content-Type: image/jpeg
Age: 6703
www.widgeo.net/img/logopm.png
104.26.11.22200 OK 714 B URL HTTP/1.1 www.widgeo.net/img/logopm.png
IP 104.26.11.22:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3832d6b8d8c47a5cefe6561297b514f6
f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08
GET /img/logopm.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:12 GMT
Content-Type: image/webp
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 17:24:21 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 2378570
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HXNYIICI1oTOd%2B4nXQLUrH0jhpTt%2F4germLuBTPiUp50DoJO418zkjOrKzzVX9qfIfj%2FUJH0PND7U3%2By1RHBCffuEyoL%2FSkxSlTojHarmU%2BXw43NoSWMPBxPaZf2LTtU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 760102a8ac60b4f1-OSL
alt-svc: h2=":443"; ma=60
4.bp.blogspot.com/-gW83GjSQZEE/T_hr9w3gqII/AAAAAAAAAYs/ubI4N9z_5LY/w72-h72-p-k-no-nu/010_12.png
142.250.74.161200 OK 7.1 kB URL HTTP/1.1 4.bp.blogspot.com/-gW83GjSQZEE/T_hr9w3gqII/AAAAAAAAAYs/ubI4N9z_5LY/w72-h72-p-k-no-nu/010_12.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 0380bfa7656abc0e16b835a48109976d
543615d89d07b15c35e007ebc930e2486c79a276
d747fad5d246ba4c111684925a36295d5fa0fd2281a8395e8b92c1d18f759d4f
GET /-gW83GjSQZEE/T_hr9w3gqII/AAAAAAAAAYs/ubI4N9z_5LY/w72-h72-p-k-no-nu/010_12.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="010_12.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 7142
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v18b"
Content-Type: image/png
Age: 6703
1.bp.blogspot.com/-mQ5e5o_4s9Y/UAONve2yQRI/AAAAAAAAAa4/9iqrTKmWXsY/w72-h72-p-k-no-nu/Capture10.jpg
142.250.74.161200 OK 4.6 kB URL HTTP/1.1 1.bp.blogspot.com/-mQ5e5o_4s9Y/UAONve2yQRI/AAAAAAAAAa4/9iqrTKmWXsY/w72-h72-p-k-no-nu/Capture10.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 10918e97642f6a01859a16d130ce7ae3
958bc146c57d2499794bbfe0723cb78f003f1f73
c721d05c3f449bbdf51361c4c35a4f14deb642d0074df5f7fc37a8a8d56bbc96
GET /-mQ5e5o_4s9Y/UAONve2yQRI/AAAAAAAAAa4/9iqrTKmWXsY/w72-h72-p-k-no-nu/Capture10.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Capture10.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4634
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v4f2"
Content-Type: image/jpeg
Age: 6703
2.bp.blogspot.com/-RD36LD_oELQ/T1QPm5BTvmI/AAAAAAAAAXE/gCde_xOL9dY/w72-h72-p-k-no-nu/12.jpg
142.250.74.161200 OK 4.1 kB URL HTTP/1.1 2.bp.blogspot.com/-RD36LD_oELQ/T1QPm5BTvmI/AAAAAAAAAXE/gCde_xOL9dY/w72-h72-p-k-no-nu/12.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 0bc5f5c3a0aec7dde55a11011e2f73be
87e0d566f3b8f6458824abb7f34543ede64f457b
009cd7fe8abfbde47edc49e91085492f11d4ea084254f177895071494e176279
GET /-RD36LD_oELQ/T1QPm5BTvmI/AAAAAAAAAXE/gCde_xOL9dY/w72-h72-p-k-no-nu/12.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="12.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4121
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v171"
Content-Type: image/jpeg
Age: 6703
4.bp.blogspot.com/-E3dtOkxZql8/T8jtukyzBQI/AAAAAAAAAXU/CMi23xLKeUc/w72-h72-p-k-no-nu/531241_261226077309768_1737726916_n.jpg
142.250.74.161200 OK 3.9 kB URL HTTP/1.1 4.bp.blogspot.com/-E3dtOkxZql8/T8jtukyzBQI/AAAAAAAAAXU/CMi23xLKeUc/w72-h72-p-k-no-nu/531241_261226077309768_1737726916_n.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ce9ec06283a8530663df2322482672ad
bcce281a8c461c201dbbf9a0556f22839353f596
92c10a656ab50410880ea2a71839e7f5d9efc9c5df2f0a0a4acd7b4e71595d37
GET /-E3dtOkxZql8/T8jtukyzBQI/AAAAAAAAAXU/CMi23xLKeUc/w72-h72-p-k-no-nu/531241_261226077309768_1737726916_n.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="531241_261226077309768_1737726916_n.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3866
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v175"
Content-Type: image/jpeg
Age: 6703
4.bp.blogspot.com/-gc7MRAnCbl0/T_rvqsbHaNI/AAAAAAAAAaA/OIOs5jblvDE/w72-h72-p-k-no-nu/4.jpg
142.250.74.161200 OK 4.1 kB URL HTTP/1.1 4.bp.blogspot.com/-gc7MRAnCbl0/T_rvqsbHaNI/AAAAAAAAAaA/OIOs5jblvDE/w72-h72-p-k-no-nu/4.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d0851a2be7666de0cf3edaadb00aab43
f218384f9442e6fff1e3faf04ca548a1c8e93169
3a2194c1e13603ae8165862c05855b52cdf16de59114ed69f45d1b8c63e9072e
GET /-gc7MRAnCbl0/T_rvqsbHaNI/AAAAAAAAAaA/OIOs5jblvDE/w72-h72-p-k-no-nu/4.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="4.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4114
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1a0"
Content-Type: image/jpeg
Age: 6703
apis.google.com/js/platform.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 71e5222c0f9051545890bb00c38ca28d
3c2c124c2c60c827c1eaade9842a6fe23112c36e
998e9a7323f70813bf8d9a1dd15868cc990caa8952957edd6c7d2a3cc9d07b0b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20987
date: Wed, 26 Oct 2022 06:07:12 GMT
expires: Wed, 26 Oct 2022 06:07:12 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "6a8b8cb0a326eefc"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-GkdNUIQIEFE/T_hxVOFfcxI/AAAAAAAAAY4/0D85hEBYjhk/w72-h72-p-k-no-nu/stiforp.asia.jpg
142.250.74.161200 OK 5.5 kB URL HTTP/1.1 3.bp.blogspot.com/-GkdNUIQIEFE/T_hxVOFfcxI/AAAAAAAAAY4/0D85hEBYjhk/w72-h72-p-k-no-nu/stiforp.asia.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 216bbefc19237dfceecbdb6839cdd9a8
8b93504a20a3b6ef791d810b78abc2eaac86e1c3
70c4ae90d93da199b92f75562f5fd4a218621df4a6b06f9f05fd184a119638d2
GET /-GkdNUIQIEFE/T_hxVOFfcxI/AAAAAAAAAY4/0D85hEBYjhk/w72-h72-p-k-no-nu/stiforp.asia.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="stiforp.asia.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5533
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v506"
Content-Type: image/jpeg
Age: 6703
btemplatescripts.googlecode.com/files/jquery.jcarousel.js
173.194.73.82404 Not Found 1.6 kB URL HTTP/1.1 btemplatescripts.googlecode.com/files/jquery.jcarousel.js
IP 173.194.73.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash ee8fad8a8c4c9cb7e9c7937629580273
430ffd0796b649050430d4411c141b4df2c57216
f6bc36a4a3e946c2283aebfa6bd68d48c65a7b82380ac79036876eab7be20ab1
GET /files/jquery.jcarousel.js HTTP/1.1
Host: btemplatescripts.googlecode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1586
Date: Wed, 26 Oct 2022 06:07:12 GMT
1.bp.blogspot.com/-tnFysi-6jSY/T_k9P4xKmPI/AAAAAAAAAZk/3ibjI-0bPds/s1600/547157_395311200506403_2111104778_n.jpg
142.250.74.161200 OK 76 kB URL HTTP/1.1 1.bp.blogspot.com/-tnFysi-6jSY/T_k9P4xKmPI/AAAAAAAAAZk/3ibjI-0bPds/s1600/547157_395311200506403_2111104778_n.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 960x353, components 3\012- data
Hash cca4fe6e824e255f6e6ba4e767fe28cb
9a9480675c8fed6d530ed69dc5de4459c2f0d6fd
4aba78728c1c509ea3c98d48f54d9353f9daf10844b606ec48fb928d92c4210f
GET /-tnFysi-6jSY/T_k9P4xKmPI/AAAAAAAAAZk/3ibjI-0bPds/s1600/547157_395311200506403_2111104778_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="547157_395311200506403_2111104778_n.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 76441
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v199"
Content-Type: image/jpeg
Age: 6703
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1fQy4quNhgwzxNrxU0dfeD-uWpEtgvcV5RPgk3C5_Stdqkc7VYPcZel_kfVdviBtK2jZu0Iesp471um7Z56ZxC3-5ck31tWlIqRU_JwqbLUFPPvg=w72-h72-n-k-no-nu
142.250.74.33200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1fQy4quNhgwzxNrxU0dfeD-uWpEtgvcV5RPgk3C5_Stdqkc7VYPcZel_kfVdviBtK2jZu0Iesp471um7Z56ZxC3-5ck31tWlIqRU_JwqbLUFPPvg=w72-h72-n-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 90148f16da9f1cbac8363e3c99f5b3df
4cfc27a2ddb7e3cfabd1b14a24ea7983bf09822b
2470f0c0fbb9de64bd782a85a2af98448eb73776d7d9915a097cbd77024a1462
GET /blogger_img_proxy/ANbyha1fQy4quNhgwzxNrxU0dfeD-uWpEtgvcV5RPgk3C5_Stdqkc7VYPcZel_kfVdviBtK2jZu0Iesp471um7Z56ZxC3-5ck31tWlIqRU_JwqbLUFPPvg=w72-h72-n-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 27 Oct 2022 06:07:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 06:07:12 GMT
server: fife
content-length: 3271
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash 9ea8895b3fb6e5873f0bfd716806e63a
7e202dcb6ab039c4c7d2834654c1ca315ca877ea
339fa68761f532655be151a885e98f897c7689d77bcf9b585c267d6f9e2b83b7
GET /_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 58116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 16:40:06 GMT
expires: Tue, 24 Oct 2023 16:40:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 15:24:13 GMT
content-type: text/javascript; charset=UTF-8
age: 134826
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3d56596917080475122c9bb51cc0c0b7
d0294ac77866e801f6c94862b39bc00b9735d72f
ae58a33a93b695e84e3cffd34c09c20ccb08f33b775f87dd849077d3fbdf36a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
172.217.21.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 172.217.21.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Tue, 25 Oct 2022 11:58:00 GMT
Expires: Tue, 08 Nov 2022 11:58:00 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 65352
1.bp.blogspot.com/_v5IxGTiMTD8/S96y4Z-feKI/AAAAAAAABQk/5Vm7yThAlG4/s1600/bg-header.gif
142.250.74.161200 OK 526 B URL HTTP/1.1 1.bp.blogspot.com/_v5IxGTiMTD8/S96y4Z-feKI/AAAAAAAABQk/5Vm7yThAlG4/s1600/bg-header.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 1 x 194\012- data
Hash 5a0619fb5d8772248c9d1d3a110fdcdf
fce8d3711950f8b77cc29e6f997fe2d6c16bf28c
92d70a02d7c726b5c43a69081c8dc212c87b8ae615c781f26f58acc0768804c5
GET /_v5IxGTiMTD8/S96y4Z-feKI/AAAAAAAABQk/5Vm7yThAlG4/s1600/bg-header.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-header.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 526
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "ve8a"
Content-Type: image/gif
Age: 6703
3.bp.blogspot.com/_v5IxGTiMTD8/S965MqhYz8I/AAAAAAAABTc/ymwZK0PtWYo/s400/bg-navi-item-l.png
142.250.74.161200 OK 366 B URL HTTP/1.1 3.bp.blogspot.com/_v5IxGTiMTD8/S965MqhYz8I/AAAAAAAABTc/ymwZK0PtWYo/s400/bg-navi-item-l.png
IP 142.250.74.161:0
File type PNG image data, 15 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash bbf85d8b003d9b6135a38988b00e223d
acd9aea9c2e99558617189039bed7779085dbeeb
4f788e7b3e861fa25b880ba4e889e525eb0ff3be6d62d50b8889cd4c8acbfa9a
GET /_v5IxGTiMTD8/S965MqhYz8I/AAAAAAAABTc/ymwZK0PtWYo/s400/bg-navi-item-l.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-navi-item-l.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 366
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v537"
Content-Type: image/png
Age: 6703
1.bp.blogspot.com/_v5IxGTiMTD8/S965MVQnPkI/AAAAAAAABTU/Xhe2A73G1r0/s1600/bg-navi-item-c.png
142.250.74.161200 OK 200 B URL HTTP/1.1 1.bp.blogspot.com/_v5IxGTiMTD8/S965MVQnPkI/AAAAAAAABTU/Xhe2A73G1r0/s1600/bg-navi-item-c.png
IP 142.250.74.161:0
File type PNG image data, 1 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 95490965e9ab7c3e286a9601bdcc1c38
04577b0b8fb06a74d134150053bb3216df54af4f
21beb68dd358e80f701c56763dc0fbecaeb0ff1ec6bbf29b6a41666bb6b65177
GET /_v5IxGTiMTD8/S965MVQnPkI/AAAAAAAABTU/Xhe2A73G1r0/s1600/bg-navi-item-c.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-navi-item-c.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 200
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v535"
Content-Type: image/png
Age: 6703
1.bp.blogspot.com/_v5IxGTiMTD8/S964DWkra5I/AAAAAAAABS0/f5BfFwqTxmk/s1600/bg-cat-item-l.png
142.250.74.161200 OK 694 B URL HTTP/1.1 1.bp.blogspot.com/_v5IxGTiMTD8/S964DWkra5I/AAAAAAAABS0/f5BfFwqTxmk/s1600/bg-cat-item-l.png
IP 142.250.74.161:0
File type PNG image data, 25 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash cbf392acfa8f5d8083c6c411f09e7bd2
9d11a9813d3ed8a2e4ae538cef6ac71fa34adee4
ba64f117a20806deb2290bf9c6a3bc7ca9d8d16be8a157ef8a0df70472207d8e
GET /_v5IxGTiMTD8/S964DWkra5I/AAAAAAAABS0/f5BfFwqTxmk/s1600/bg-cat-item-l.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-cat-item-l.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 694
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v52d"
Content-Type: image/png
Age: 6703
1.bp.blogspot.com/_v5IxGTiMTD8/S964DqKKdcI/AAAAAAAABS8/8pOrMnQcldI/s1600/bg-cat-item-r.png
142.250.74.161200 OK 680 B URL HTTP/1.1 1.bp.blogspot.com/_v5IxGTiMTD8/S964DqKKdcI/AAAAAAAABS8/8pOrMnQcldI/s1600/bg-cat-item-r.png
IP 142.250.74.161:0
File type PNG image data, 25 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 75d33f6d1ce4a62a5aae9b191d7c5f7b
f6651a23f65416da0641f466a6d870d5a71da70b
4f28d85550ef7a5a0d988e98f19d043ba62a5e9a75e711f4824255a6a4f77176
GET /_v5IxGTiMTD8/S964DqKKdcI/AAAAAAAABS8/8pOrMnQcldI/s1600/bg-cat-item-r.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-cat-item-r.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 680
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v52f"
Content-Type: image/png
Age: 6703
3.bp.blogspot.com/_v5IxGTiMTD8/S965NIDeE-I/AAAAAAAABTk/0Ot6r6aR8RA/s400/bg-navi-item-r.png
142.250.74.161200 OK 348 B URL HTTP/1.1 3.bp.blogspot.com/_v5IxGTiMTD8/S965NIDeE-I/AAAAAAAABTk/0Ot6r6aR8RA/s400/bg-navi-item-r.png
IP 142.250.74.161:0
File type PNG image data, 15 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 247881593d7edd29b670216f8e69fb48
da36286dfd945b735ed72e19964715a4eed24522
caef17afb93af2d02ec10ebb70a2eb2700ad8c604839415abe7a6b749a04777f
GET /_v5IxGTiMTD8/S965NIDeE-I/AAAAAAAABTk/0Ot6r6aR8RA/s400/bg-navi-item-r.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-navi-item-r.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 348
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v539"
Content-Type: image/png
Age: 6703
2.bp.blogspot.com/_v5IxGTiMTD8/S964DNY9T8I/AAAAAAAABSs/1fh2VVlLPCU/s1600/bg-cat-item-c.png
142.250.74.161200 OK 257 B URL HTTP/1.1 2.bp.blogspot.com/_v5IxGTiMTD8/S964DNY9T8I/AAAAAAAABSs/1fh2VVlLPCU/s1600/bg-cat-item-c.png
IP 142.250.74.161:0
File type PNG image data, 1 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 54ad3627405ea1861e2e9d46f38449e2
a4bf6f0b827bb55b2f21b76ea30fc6ec9d97e386
3fb13fc946796cf5fad12a5c1a049fffd642b5f1a8aae41fdefe463eea4bb062
GET /_v5IxGTiMTD8/S964DNY9T8I/AAAAAAAABSs/1fh2VVlLPCU/s1600/bg-cat-item-c.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-cat-item-c.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 257
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v52b"
Content-Type: image/png
Age: 6703
3.bp.blogspot.com/_v5IxGTiMTD8/S96z13f_HaI/AAAAAAAABQ0/_I6JD-Eyb4I/s1600/bg-body-mid.gif
142.250.74.161200 OK 72 B URL HTTP/1.1 3.bp.blogspot.com/_v5IxGTiMTD8/S96z13f_HaI/AAAAAAAABQ0/_I6JD-Eyb4I/s1600/bg-body-mid.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 970 x 1\012- data
Hash 77ca1a64ea0b6eaef95fd2ebc5275881
f820a62905e39793bb13a61d6576a286a172b278
8f981087e351d0964b7659a583e10e2c8aea336b083dfa69773b3d4799c42f08
GET /_v5IxGTiMTD8/S96z13f_HaI/AAAAAAAABQ0/_I6JD-Eyb4I/s1600/bg-body-mid.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-body-mid.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 72
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "ve90"
Content-Type: image/gif
Age: 6703
3.bp.blogspot.com/_v5IxGTiMTD8/S96y495PeGI/AAAAAAAABQs/ihQ7GPYhtB8/s1600/bg-categories.jpg
142.250.74.161200 OK 23 kB URL HTTP/1.1 3.bp.blogspot.com/_v5IxGTiMTD8/S96y495PeGI/AAAAAAAABQs/ihQ7GPYhtB8/s1600/bg-categories.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 970x118, components 3\012- data
Hash 445b111a6750f370a1afc180af59b6e3
04f0758ebe2de6af31c63610f9c774262ec21587
25e926c3395db1efa7aa4b7ae6626c2b7fc274eceacb9a537e22d87f94091f68
GET /_v5IxGTiMTD8/S96y495PeGI/AAAAAAAABQs/ihQ7GPYhtB8/s1600/bg-categories.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-categories.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 22588
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v50b"
Content-Type: image/jpeg
Age: 6703
3.bp.blogspot.com/_v5IxGTiMTD8/S96z2JISe_I/AAAAAAAABRE/3eu0A_vEVwk/s1600/bg-body-top.gif
142.250.74.161200 OK 746 B URL HTTP/1.1 3.bp.blogspot.com/_v5IxGTiMTD8/S96z2JISe_I/AAAAAAAABRE/3eu0A_vEVwk/s1600/bg-body-top.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 970 x 36\012- data
Hash 0e16c840aec398cc89509e20d1c179c1
e8c33d28b036de8a2422cab907e6688283511785
8f5651ecb34d9745ea7721c5b2a6c8171ff6750585779eabf6f891525ee6c3cd
GET /_v5IxGTiMTD8/S96z2JISe_I/AAAAAAAABRE/3eu0A_vEVwk/s1600/bg-body-top.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-body-top.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 746
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "ved5"
Content-Type: image/gif
Age: 6703
www.widgeo.net/geocompteur/trackwidget.php
104.26.11.22200 OK 2.3 kB URL HTTP/1.1 www.widgeo.net/geocompteur/trackwidget.php
IP 104.26.11.22:0
File type ASCII text, with very long lines (2149)
Hash 8e33706163c29fe6b41b12cbce44bcb2
f9105fdf8b2068703cad1eed3eac1022ef2f4e29
0c8bc421689033a902d7e807789d0626f685d306f4d3f13ee7f3075a1f811b32
GET /geocompteur/trackwidget.php HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:12 GMT
Content-Type: application/javascript
Content-Length: 2335
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Tue, 01-Nov-2022 06:07:11 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 06:07:11 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EV87%2FnxdDgZvhpiQ9HRvCcKuH%2F4QTy5njFKxsuW0%2BdRKD5cZC8WJ8Que6mD0uxvBhrldP4VDryvAw36OQ4Fqgo5I9RFQF%2F%2BwUiH68snLFQymQltiyq2SCiomjCF4ASS%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 760102a8281f0b69-OSL
alt-svc: h2=":443"; ma=60
3.bp.blogspot.com/_v5IxGTiMTD8/S965Ncy5MOI/AAAAAAAABTs/eqpiWkABez4/s1600/bg-box-interior.gif
142.250.74.161200 OK 151 B URL HTTP/1.1 3.bp.blogspot.com/_v5IxGTiMTD8/S965Ncy5MOI/AAAAAAAABTs/eqpiWkABez4/s1600/bg-box-interior.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 277 x 13\012- data
Hash 19acfe9160eaacaeb81674952f1f0df7
6228d0acbfbc0c98714252ea05c6ee7713106428
3f4e6e43bcae4fb43a1b4d2d4b6e7184df74208aae1ff1649b6a246923db78a8
GET /_v5IxGTiMTD8/S965Ncy5MOI/AAAAAAAABTs/eqpiWkABez4/s1600/bg-box-interior.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-box-interior.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 151
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vde2"
Content-Type: image/gif
Age: 6703
4.bp.blogspot.com/_v5IxGTiMTD8/S964D7JctYI/AAAAAAAABTE/o6zb184FgYI/s1600/bg-box-title.gif
142.250.74.161200 OK 384 B URL HTTP/1.1 4.bp.blogspot.com/_v5IxGTiMTD8/S964D7JctYI/AAAAAAAABTE/o6zb184FgYI/s1600/bg-box-title.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 277 x 46\012- data
Hash 1c21f276f89bfbf66ea8c68227c85146
aefb8003e890fcd61b070c092f336ee77cb7fa48
c1dfac79490965dc507816f5f8a301f42eeaadff4b5c562a7c49ac7545900a0f
GET /_v5IxGTiMTD8/S964D7JctYI/AAAAAAAABTE/o6zb184FgYI/s1600/bg-box-title.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-box-title.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 384
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf03"
Content-Type: image/gif
Age: 6703
2.bp.blogspot.com/_v5IxGTiMTD8/S965Nv0jkQI/AAAAAAAABT0/_RYk8CqbAXg/s1600/border-box-list-item.gif
142.250.74.161200 OK 43 B URL HTTP/1.1 2.bp.blogspot.com/_v5IxGTiMTD8/S965Nv0jkQI/AAAAAAAABT0/_RYk8CqbAXg/s1600/border-box-list-item.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 1 x 2\012- data
Hash 0bcda739a0bbba59a2038519228a0b8f
01a041306a06ebf82a8d61186dc7741da9c2ecc1
e62cf7a484ecf67ab3d388aedde40e76abaa3a082a443e9a6b435e88ad73cf3d
GET /_v5IxGTiMTD8/S965Nv0jkQI/AAAAAAAABT0/_RYk8CqbAXg/s1600/border-box-list-item.gif HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="border-box-list-item.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 43
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vead"
Content-Type: image/gif
Age: 6703
bp0.blogger.com/_Zuzii37VUO4/Rj7ME-MBRJI/AAAAAAAAAwM/IOo-YUYR5aM/s1600/icono-feed.gif
142.250.74.174301 Moved Permanently 292 B URL HTTP/1.1 bp0.blogger.com/_Zuzii37VUO4/Rj7ME-MBRJI/AAAAAAAAAwM/IOo-YUYR5aM/s1600/icono-feed.gif
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 1174b06f6033fb8c34079e908e445e49
480b2da1f2144b0b8b2147784e1243b7760884db
6b6bf79962517d15e12b71dca8e9cb2717ceb71cfa66298b94a6c6fb86d87953
GET /_Zuzii37VUO4/Rj7ME-MBRJI/AAAAAAAAAwM/IOo-YUYR5aM/s1600/icono-feed.gif HTTP/1.1
Host: bp0.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://1.bp.blogspot.com/_Zuzii37VUO4/Rj7ME-MBRJI/AAAAAAAAAwM/IOo-YUYR5aM/s1600/icono-feed.gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 292
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 02:54:03 GMT
Expires: Fri, 25 Nov 2022 02:54:03 GMT
Cache-Control: public, max-age=2592000
Content-Type: text/html; charset=UTF-8
Age: 11589
4.bp.blogspot.com/_v5IxGTiMTD8/S9602-qYeTI/AAAAAAAABR8/hztglTqzPHc/s400/bg-footer.png
142.250.74.161200 OK 191 B URL HTTP/1.1 4.bp.blogspot.com/_v5IxGTiMTD8/S9602-qYeTI/AAAAAAAABR8/hztglTqzPHc/s400/bg-footer.png
IP 142.250.74.161:0
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash 834100f58c6a0e021f0a5be82a21b73e
6db35391bd292da6e06c826cdd4b3023577a8bd8
dbaddfbbadfd72f84cbda11c7f2ba4280fa57a429f6105c1f8139c59165364f4
GET /_v5IxGTiMTD8/S9602-qYeTI/AAAAAAAABR8/hztglTqzPHc/s400/bg-footer.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-footer.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 191
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v51f"
Content-Type: image/png
Age: 6703
4.bp.blogspot.com/_v5IxGTiMTD8/S9625o_xuMI/AAAAAAAABSE/fHHPrA1WpdY/s1600/bg-footer-boundary-side.png
142.250.74.161200 OK 250 B URL HTTP/1.1 4.bp.blogspot.com/_v5IxGTiMTD8/S9625o_xuMI/AAAAAAAABSE/fHHPrA1WpdY/s1600/bg-footer-boundary-side.png
IP 142.250.74.161:0
File type PNG image data, 3 x 190, 8-bit/color RGB, non-interlaced\012- data
Hash eeeeae10b3e45b99145a1e2fb3f4fe1b
708ff532a128662710d921e4b40897dee0e22069
565968dd3facfb51eca50769a47da04f718b23e2a9973a5918ef3c3abcd5c5a4
GET /_v5IxGTiMTD8/S9625o_xuMI/AAAAAAAABSE/fHHPrA1WpdY/s1600/bg-footer-boundary-side.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-footer-boundary-side.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 250
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v521"
Content-Type: image/png
Age: 6703
4.bp.blogspot.com/_v5IxGTiMTD8/S96z2Fn3I5I/AAAAAAAABQ8/GCuCLDU0XiE/s1600/bg-body-bot.gif
142.250.74.161200 OK 744 B URL HTTP/1.1 4.bp.blogspot.com/_v5IxGTiMTD8/S96z2Fn3I5I/AAAAAAAABQ8/GCuCLDU0XiE/s1600/bg-body-bot.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 970 x 36\012- data
Hash 881c4c8c4ad7a1e5b22deadc4f21f67f
3c45f36d740bbb595bb0f34c848545f1a24c645c
16c31bcb3eaadf0ac43754c2ed16c6bfec0ec619352f1c5a58cd00ffe0ad0129
GET /_v5IxGTiMTD8/S96z2Fn3I5I/AAAAAAAABQ8/GCuCLDU0XiE/s1600/bg-body-bot.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg-body-bot.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 744
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 04:15:29 GMT
Expires: Thu, 27 Oct 2022 04:15:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vdc6"
Content-Type: image/gif
Age: 6703
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
172.217.21.162200 OK 58 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 172.217.21.162:0
File type ASCII text, with very long lines (2776)
Hash ddcabe508d238360be4d049dc87a87bf
ac22ede3357f04ad36af5c97e2e36efb77119ddb
3a195d6f66b1b8e843d8e966196259c3d7af7ec849eaf70e23918eeab2087969
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 26 Oct 2022 06:07:12 GMT
Expires: Wed, 26 Oct 2022 06:07:12 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 10019625972636983969
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 58168
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4a6c9fc28b2c9ea7ffcf1fd193cf7c4a
8c3cd465831b6ac40e0b02466f2c265333564439
f19ae6555d2f30f86398a33f20f723c4aa38c85358c625d3dfbf4763713c943e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3670
Cache-Control: max-age=97612
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "63579a87-117"
Expires: Thu, 27 Oct 2022 09:14:05 GMT
Last-Modified: Tue, 25 Oct 2022 08:12:55 GMT
Server: ECS (amb/6BC8)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c0740a01291d1001b2ff4ff42747fe5b
c1c1c51d61a18c3342e6eaf8058aea2b19cbf8a9
2f8507bfc375f090b70ccb0cc35f54a88145d99f6e4da788eb86f827f6db70b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2139
Cache-Control: max-age=127754
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "63581640-117"
Expires: Thu, 27 Oct 2022 17:36:27 GMT
Last-Modified: Tue, 25 Oct 2022 17:00:48 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4a6c9fc28b2c9ea7ffcf1fd193cf7c4a
8c3cd465831b6ac40e0b02466f2c265333564439
f19ae6555d2f30f86398a33f20f723c4aa38c85358c625d3dfbf4763713c943e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=93942
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "63579a87-117"
Expires: Thu, 27 Oct 2022 08:12:55 GMT
Last-Modified: Tue, 25 Oct 2022 08:12:55 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4a6c9fc28b2c9ea7ffcf1fd193cf7c4a
8c3cd465831b6ac40e0b02466f2c265333564439
f19ae6555d2f30f86398a33f20f723c4aa38c85358c625d3dfbf4763713c943e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3849
Cache-Control: max-age=97791
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "63579a87-117"
Expires: Thu, 27 Oct 2022 09:17:04 GMT
Last-Modified: Tue, 25 Oct 2022 08:12:55 GMT
Server: ECS (amb/6B75)
X-Cache: HIT
Content-Length: 279
www.widgeo.net/tcm_t_u.js
104.26.11.22200 OK 0 B URL HTTP/2 www.widgeo.net/tcm_t_u.js
IP 104.26.11.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tcm_t_u.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: application/javascript
content-length: 0
cf-bgj: minify
cf-polished: origSize=4360
cache-control: public, max-age=604800
expires: Sat, 29 Oct 2022 03:11:25 GMT
last-modified: Sat, 01 Oct 2022 00:32:25 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 356147
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1AGRvCJNKZNpKid2%2B%2F2G5%2FgaWaXyRjAkU2uEdVgXfXHtD9LtGpGfd2jn96rJA741TMtMB2RGEDtF4e8vJw6YEzF%2B3ADGbKWSX7SJrcbq9V4l7THhDnapqQXnqBCKquFU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102aa8c50b505-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c0740a01291d1001b2ff4ff42747fe5b
c1c1c51d61a18c3342e6eaf8058aea2b19cbf8a9
2f8507bfc375f090b70ccb0cc35f54a88145d99f6e4da788eb86f827f6db70b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2139
Cache-Control: max-age=127754
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "63581640-117"
Expires: Thu, 27 Oct 2022 17:36:27 GMT
Last-Modified: Tue, 25 Oct 2022 17:00:48 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
www.widgeo.net/geocompteur/trackwidget_html.php?id=1997710&nostats=0&view=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C&title=Cara%20Kuruskan%20Badan%20Tanpa%20Berlapar%20SDII&ref=&colorborder=ddd&colorbg1=fff&colorbg2=f9f9f9&colortxt=666&colorlink1=666&colorlink2=0066ff&widget_w=160&widget_h=634¶m_Storage=yes
104.26.11.22200 OK 3.4 kB URL HTTP/1.1 www.widgeo.net/geocompteur/trackwidget_html.php?id=1997710&nostats=0&view=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C&title=Cara%20Kuruskan%20Badan%20Tanpa%20Berlapar%20SDII&ref=&colorborder=ddd&colorbg1=fff&colorbg2=f9f9f9&colortxt=666&colorlink1=666&colorlink2=0066ff&widget_w=160&widget_h=634¶m_Storage=yes
IP 104.26.11.22:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3588)
Hash babd93032d0e097d98f4ec516cdb9a5c
7eb7b3282b8f8c5553bd96d2e54f9ce7bc3e03b7
d9a7a0d394e9241ed7686c13bf81372bb8f52c75bc58cf8784048d5dd44df51d
GET /geocompteur/trackwidget_html.php?id=1997710&nostats=0&view=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C&title=Cara%20Kuruskan%20Badan%20Tanpa%20Berlapar%20SDII&ref=&colorborder=ddd&colorbg1=fff&colorbg2=f9f9f9&colortxt=666&colorlink1=666&colorlink2=0066ff&widget_w=160&widget_h=634¶m_Storage=yes HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:13 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="NOI ADM DEV COM NAV OUR STP"
set-cookie: monpays=NO; expires=Tue, 24-Jan-2023 06:07:12 GMT; Max-Age=7776000; path=/; domain=widgeo.net
country_name=Norway; expires=Tue, 24-Jan-2023 06:07:12 GMT; Max-Age=7776000; path=/; domain=widgeo.net
idcompteurcc_1997710=done; expires=Thu, 27-Oct-2022 06:07:12 GMT; Max-Age=86400; path=/
get_data_1997710=ok; expires=Wed, 26-Oct-2022 06:10:12 GMT; Max-Age=180; path=/; domain=widgeo.net
bonus_1997710=2; expires=Thu, 27-Oct-2022 06:07:12 GMT; Max-Age=86400; path=/
bonus_j_1997710=1; expires=Wed, 26-Oct-2022 06:10:12 GMT; Max-Age=180; path=/
cache-control: public, max-age=180
expires: Wed, 26 Oct 2022 06:10:12 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2Fewsi%2BuEsNRsqY6O%2FQWv7RiaVsAjV5PDrfWq2sfX9Ocq0CtQeFt4iBD55ZW%2FKYY12YugMv6Ez21%2BTtVsa48lX1CnrSCBxrdIM%2FXDf%2BzgMRQcXZ734fCDUTsBnZfMty3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 760102a9f9700b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.facebook.com/plugins/like.php?href=https://www.facebook.com/futurebarrelmalaysia&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
157.240.221.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=https://www.facebook.com/futurebarrelmalaysia&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=https://www.facebook.com/futurebarrelmalaysia&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=https://www.facebook.com/futurebarrelmalaysia&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
Content-Type: text/plain
Server: proxygen-bolt
Date: Wed, 26 Oct 2022 06:07:13 GMT
Connection: keep-alive
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 35ba93f7305eade9093c149ab8374c1f
29d352bf8c811674691a8d9bc737bc8bf27da37a
12c1af15ce9017b55fdd5e90a2206ff29d6ed1c0c2a35f9fad6e674bd56b5256
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mail.objectembed.info/header.swf?id=1160877_0
185.107.56.208404 Not Found 9 B URL HTTP/1.1 mail.objectembed.info/header.swf?id=1160877_0
IP 185.107.56.208:0
ASN #43350 NForce Entertainment B.V.
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /header.swf?id=1160877_0 HTTP/1.1
Host: mail.objectembed.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Wed, 26 Oct 2022 06:07:12 GMT
server: nginx
set-cookie: sid=6f1dcd36-54f4-11ed-9bff-7aef09e52dc7; path=/; domain=.objectembed.info; expires=Mon, 13 Nov 2090 09:21:20 GMT; max-age=2147483647; HttpOnly
1.bp.blogspot.com/_Zuzii37VUO4/Rj7ME-MBRJI/AAAAAAAAAwM/IOo-YUYR5aM/s1600/icono-feed.gif
142.250.74.161200 OK 1.8 kB URL HTTP/2 1.bp.blogspot.com/_Zuzii37VUO4/Rj7ME-MBRJI/AAAAAAAAAwM/IOo-YUYR5aM/s1600/icono-feed.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 71b5175b76f3ac480b6acddf07063484
23423f8ba2a11f779c7a6e8279d5a9de0ec041a1
e7ee73714102e09d6fc2d52a23fae15859058e9907b6a4ea49966c8d94253956
GET /_Zuzii37VUO4/Rj7ME-MBRJI/AAAAAAAAAwM/IOo-YUYR5aM/s1600/icono-feed.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dietproteinsd2.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="icono-feed.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1806
x-xss-protection: 0
date: Wed, 26 Oct 2022 04:15:29 GMT
expires: Thu, 06 Oct 2022 13:09:09 GMT
cache-control: public, max-age=86400, no-transform
age: 6704
etag: "v2034"
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/index.php
142.250.74.161405 Method Not Allowed 127 B URL HTTP/1.1 dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/index.php
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash bc40a73dffbe2998400e03b16e56aa30
4216a9b344fe85dbebee8bd3b5368ca5c34b2cca
6f71669c5bb26e20f2016606c2438a7d7c4fa1172ccc01da99b97279080aaa0a
Analyzer Verdict Alert fortinet Malware
POST /http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/index.php HTTP/1.1
Host: dietproteinsd2.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 42
Origin: http://dietproteinsd2.blogspot.com
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/cara-guna-sd-ii.html%5Cx27%3E%3Cspan?m\x3d1%27,
Cookie: ck_TCM_pop=1
HTTP/1.1 405 Method Not Allowed
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 06:07:13 GMT
Expires: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 127
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
104.26.11.22200 OK 3.9 kB URL HTTP/1.1 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP 104.26.11.22:0
File type ASCII text, with very long lines (12331)
Hash 54c87b7a9007d256c837e382cab4170d
6c8f44204021f68596af9ae5a742c3ad1b76a6ec
3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/trackwidget_html.php?id=1997710&nostats=0&view=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C&title=Cara%20Kuruskan%20Badan%20Tanpa%20Berlapar%20SDII&ref=&colorborder=ddd&colorbg1=fff&colorbg2=f9f9f9&colortxt=666&colorlink1=666&colorlink2=0066ff&widget_w=160&widget_h=634¶m_Storage=yes
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 15:26:52 GMT
ETag: W/"634ec5bc-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tgp8Xe8L7WP%2Fdyb%2B%2FphEmh%2BaB1b1hwRT9n14haftgwvoH7hmOrTHAdbBQsB4d0RODsLVZsZs2MlHm%2FTeuJ71jUHA0Xwr2J%2BcYmlmeGFVUHPZ8RQaNKYSPB5Lh9ssxnIu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 760102abcf32b4f1-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Fri, 28 Oct 2022 06:07:13 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
www.widgeo.net/geocompteur/css/tipTip.css
104.26.11.22200 OK 593 B URL HTTP/1.1 www.widgeo.net/geocompteur/css/tipTip.css
IP 104.26.11.22:0
File type ASCII text, with very long lines (2057), with no line terminators
Hash a747347fbc4841ea98b69cc6b9e82340
9ff90c2abcbd22df2a8f618400421dc0c87ee3f2
181311b58305877b33a71d8f6b968783df4a5be2fbc51e6e2439c6272050626d
GET /geocompteur/css/tipTip.css HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/trackwidget_html.php?id=1997710&nostats=0&view=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C&title=Cara%20Kuruskan%20Badan%20Tanpa%20Berlapar%20SDII&ref=&colorborder=ddd&colorbg1=fff&colorbg2=f9f9f9&colortxt=666&colorlink1=666&colorlink2=0066ff&widget_w=160&widget_h=634¶m_Storage=yes
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:13 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=2441
cache-control: public, max-age=604800
expires: Tue, 01 Nov 2022 20:12:12 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 35700
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QpGzGcQIIJwaISzT7X8lV4W2pAPfvf6FrMncKsRmkhpMKs%2FgYz3wGwjVg4gZc106WFpRl5xlrlehcm%2FQAIcl8B4PMF%2BkpTHaE9DxEEieosg%2F2fvBtJQAOi%2Bf75SOP%2BT3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 760102abcae80b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0b21021a9952aee1a74f3bd0a3dab020
df8dd2d33f9505ecdf4b57372050ffe264ea34ca
5fb04e8d818840ea60d750ec6a1230a3318202fc25790f0c45cac8fe8302a1f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 35ba93f7305eade9093c149ab8374c1f
29d352bf8c811674691a8d9bc737bc8bf27da37a
12c1af15ce9017b55fdd5e90a2206ff29d6ed1c0c2a35f9fad6e674bd56b5256
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221020/r20190131/zrt_lookup.html
142.250.74.162200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221020/r20190131/zrt_lookup.html
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20221020/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Tue, 25 Oct 2022 20:27:41 GMT
expires: Tue, 08 Nov 2022 20:27:41 GMT
cache-control: public, max-age=1209600
age: 34772
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5202
Cache-Control: max-age=134040
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 19:21:13 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7016845604907473316%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://dietproteinsd2.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.P0B2vZm_jJk.O/d%253D1/rs%253DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7016845604907473316%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://dietproteinsd2.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.P0B2vZm_jJk.O/d%253D1/rs%253DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/m%253D__features__%26bpli%3D1&go=true
216.58.207.237302 Found 457 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7016845604907473316%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://dietproteinsd2.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.P0B2vZm_jJk.O/d%253D1/rs%253DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7016845604907473316%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://dietproteinsd2.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.P0B2vZm_jJk.O/d%253D1/rs%253DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/m%253D__features__%26bpli%3D1&go=true
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (506)
Hash de7add9aaf5ce6c41ce466667a88dac9
483ffc18c3357aef886fdb2a64b3833f45835136
81650e4a1ff03c6ef84244d748148bde7ac5f85a3af5b1e166086c84c66c9f1c
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7016845604907473316%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://dietproteinsd2.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.P0B2vZm_jJk.O/d%253D1/rs%253DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7016845604907473316%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://dietproteinsd2.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.P0B2vZm_jJk.O/d%253D1/rs%253DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dietproteinsd2.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 26 Oct 2022 06:07:13 GMT
location: https://www.blogger.com/followers.g?blogID=7016845604907473316&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fdietproteinsd2.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-VhBBTQpttxqu9kVSI2kfow' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 457
server: GSE
set-cookie: __Host-GAPS=1:Gd_k9VCknJct9E5mRE9EkqF_9sBj_w:Afex7ZPPxsQRQGln;Path=/;Expires=Fri, 25-Oct-2024 06:07:13 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ab5bad9bb20eb7ed1ea47dc8f627a0
b3527cb6d3d2841e9e7321fd75bffbcaf163dd2d
b9fb2ba58bbf2e2636333160e7f7c6a1e301e9b4396520f0bd80bbdf7a0c4297
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9FB2BA58BBF2E2636333160E7F7C6A1E301E9B4396520F0BD80BBDF7A0C4297"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1897
Expires: Wed, 26 Oct 2022 06:38:50 GMT
Date: Wed, 26 Oct 2022 06:07:13 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202210250101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3596155453953559&plah=dietproteinsd2.blogspot.com&bust=31070540
172.217.21.162200 OK 119 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202210250101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3596155453953559&plah=dietproteinsd2.blogspot.com&bust=31070540
IP 172.217.21.162:0
File type ASCII text, with very long lines (6508)
Size 119 kB (118887 bytes)
Hash 64cafe7624a708a3ee5243f86e638f77
c621d7cfc7b25bc0cf39d2deb871ad3d403158b8
5bc1083ec26d0472683758e279dc439e985f2c67a4d4049104168bd8ab30d244
GET /pagead/managed/js/adsense/m202210250101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3596155453953559&plah=dietproteinsd2.blogspot.com&bust=31070540 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 26 Oct 2022 06:07:13 GMT
expires: Wed, 26 Oct 2022 06:07:13 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 10090734632845709096
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 118887
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=https://www.facebook.com/futurebarrelmalaysia&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=https://www.facebook.com/futurebarrelmalaysia&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=https://www.facebook.com/futurebarrelmalaysia&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dietproteinsd2.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: GrrWqpc433eZ/0qWohbXpc1QkTDO8djpKsynyTmgMtQ/G5mMBzfqL2Iml3+X3A3oMBu3C18nJuWsgQ164SpW1A==
content-length: 0
date: Wed, 26 Oct 2022 06:07:13 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4424
Cache-Control: max-age=133262
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 19:08:15 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 1.7 kB IP 93.184.220.29:0
Hash 6ac4a02b75821efdc57665bc59a4b951
c90843e9b036a3c83bf80546a8791c9d46d2619f
f48866a8c1ab7cd93f2a9d7fc747a9e8dc6f5f231c1373940b12e30f2aadd489
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5488
Cache-Control: max-age=99063
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "63579918-1d7"
Expires: Thu, 27 Oct 2022 09:38:16 GMT
Last-Modified: Tue, 25 Oct 2022 08:06:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
142.250.74.42200 OK 25 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (820)
Hash cc24419c482370498f3c227ac73d666b
37fc103ace873f47102e0ca88eb4735bc6806750
152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 14:17:20 GMT
expires: Thu, 19 Oct 2023 14:17:20 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 575393
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widgets.amung.us/map.js
104.22.75.171200 OK 2.7 kB IP 104.22.75.171:0
File type ASCII text, with very long lines (7046), with no line terminators
Hash f38543c2e3788fb8bedf3dd4cb4e6578
6bc3462a9740b89df0a8a58f9e448c1a5b22ea73
cc263659b825683af6e813e9865d139b0f83720eed38c44d5ec5bc92bea8f0f6
GET /map.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:13 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Tue, 25 Oct 2022 20:11:34 GMT
etag: W/"635842f6-1b86"
expires: Thu, 27 Oct 2022 05:21:15 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 2758
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 760102ad0cde09b4-ARN
connect.facebook.net/en_US/all.js
157.240.221.16200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (1961)
Hash ccc110f32a16174adeaec1a747efcef5
03b76fbaa0faedce45f36ab75cf37135432f960b
4d1f8be8ba0bb1f98a80095e4b3db25d26a089b381c359ae070b80eb35cac8e0
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 5c0c8a8c2208435a10bcf2e51408441e
ETag: "d1a01ee99519bb3ec43189bb297671df"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Wed, 26 Oct 2022 06:23:24 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: zMEQ8yoWF0rersGnR+/O9Q==
X-FB-Debug: S0rhhzTksjtfJrxl/CCDoiienf28iScGSj18qYUPF6PZelCjGLHPrb1B1KJwd+S6jb2I8IFDc3HPpfCyKGHHww==
X-FB-TRIP-ID: 1679558926
Date: Wed, 26 Oct 2022 06:07:13 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686
www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
IP 142.250.74.168:0
File type ASCII text, with very long lines (18991)
Hash 396097e25c5105c5671fb6896025920f
524e2b51ed7c532128aaf8d680554e2d90233888
367b1e49db243cafd86141ee231fddc372550a3f39e3978d0b932915e4ddc557
GET /gtag/js?id=G-RP7FMTL79Y HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 26 Oct 2022 06:07:13 GMT
expires: Wed, 26 Oct 2022 06:07:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76062
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_canada.png
104.26.11.22200 OK 886 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_canada.png
IP 104.26.11.22:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9dfda6415875b226812181f7ea64fcc8
6cdf4ed8b0a4d6a748510ab74d772183a55bdf38
b5e378613935ec7dabd4e11e095b4141b16462909085a185e3a093c8900e6a55
GET /geocompteur/shadow/flag_canada.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: image/webp
content-length: 886
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1148
content-disposition: inline; filename="flag_canada.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 11 Nov 2022 22:16:59 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1151413
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YzqlCFewui%2FKabAypQbwZbacFVrj65FjAFq2Xj3o40Ini7ERfkHLl506Fvp7uUVLEd07A%2FxBB%2Bxoman1f5lUkTTc24hC3WNeuMfDURyoUq561bf31EWGI7QPNvplgmgI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102ad3edfb505-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_united%20states.png
104.26.11.22200 OK 1.0 kB URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_united%20states.png
IP 104.26.11.22:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 03d9bb2b449e6e964d86aec6d71b6856
e9b1da7fa7d59eaa78b2e2ad681c1e126fb55aa8
6baa676f5ca2682fd2d7945ca2d3b06759d8a1bdd4974e4c3e00b80643410399
GET /geocompteur/shadow/flag_united%20states.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: image/webp
content-length: 1008
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1214
content-disposition: inline; filename="flag_united%20states.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 19:20:16 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1766816
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WL%2Bt7NbFSW8RTIaQav9XBI3j87MeYQtLUsQcRt6w3Cn5749GjB2rZW48M%2Fym9XOAsypBDR6PCVktjMqeO0FoH619lxcrhqe6GdH8AT3820L7gjq7wVPKSWEB7mcuOa2R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102ad3edcb505-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_norway.png
104.26.11.22200 OK 880 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_norway.png
IP 104.26.11.22:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e186cd78997ba86002ffe37b1bf7ea64
ec8365cf9b6db82cac866c92865cd8d6d4146ae5
de0cb6c3eada763844403b680fa08dcc451a48df4a234a7f607558987ee3371c
GET /geocompteur/shadow/flag_norway.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: image/webp
content-length: 880
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1041
content-disposition: inline; filename="flag_norway.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 05:58:00 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1814952
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=06zudFoQoFH0XuG00Fc0RniGXg81caHzW1ir5KjLZc5A1Kv2uRCBvZiQhbsYA0nKJnMDlsfC55BEqPDY1wyo3MiUUqGSz6gkJWrkIQYr9jSdZ%2FwLsmg1j%2BY1eSwPbJ9o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102ad3edab505-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_united%20kingdom.png
104.26.11.22200 OK 1.2 kB URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_united%20kingdom.png
IP 104.26.11.22:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0fca0f8c1f72968c8849d783accae326
6d6f3b4500a3f1fccc3474d59c716b2f60a59ea4
c1319ad29f9822f08a6740f0b89e91127cfb11a449f99528f0a7928156032c9e
GET /geocompteur/shadow/flag_united%20kingdom.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: image/webp
content-length: 1220
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1459
content-disposition: inline; filename="flag_united%20kingdom.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 06:54:44 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2416347
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BDMXItsnbsZkFqna7euq%2FKT1vPNnKTBLYRM5eeDLNDZ2wCV8nlIOfSNjNnhisM5KOCk0%2BxP1yqfiBqOdu%2BV439fNkrrS3uBCEiVL6cZqu9tlQTr4VsAlrE%2BjBu%2B3Jr6R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102ad4ee4b505-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logv33.xiti.com/hit.xiti?s=281802&p=trackwidget&hl=6x7x10&r=1280x1024x24x24&ref=http://dietproteinsd2.blogspot.com/
143.204.46.236302 Found 150 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=trackwidget&hl=6x7x10&r=1280x1024x24x24&ref=http://dietproteinsd2.blogspot.com/
IP 143.204.46.236:0
File type HTML document, ASCII text
Hash 858b8af59ce5e43c99a937a52dbe5372
f33b0696a69088c783c8cc5180880eba04e32c7d
933266d12d43a69a29cc3d44df2c0ca9eef940f9d97671434fb57ad5d866d81c
GET /hit.xiti?s=281802&p=trackwidget&hl=6x7x10&r=1280x1024x24x24&ref=http://dietproteinsd2.blogspot.com/ HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 150
date: Wed, 26 Oct 2022 06:07:13 GMT
cache-control: no-store
location: /hit.xiti?s=281802&p=trackwidget&hl=6x7x10&r=1280x1024x24x24&ref=http://dietproteinsd2.blogspot.com/&Rdt=On
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: idrxvr=96F35C54-7D41-4635-923B-3EB02F4CE56E; Path=/; Domain=xiti.com; Expires=Sun, 26 Nov 2023 06:07:13 GMT; HttpOnly
atidx=96F35C54-7D41-4635-923B-3EB02F4CE56E; Path=/; Domain=xiti.com; Expires=Sun, 26 Nov 2023 06:07:13 GMT; HttpOnly; Secure
atid=96F35C54-7D41-4635-923B-3EB02F4CE56E; Path=/; Domain=xiti.com; Expires=Sun, 26 Nov 2023 06:07:13 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LJzvwPF1yxcHi1mjSWjsyBxOAVQaN9D6ny1cMGS_mpYjb61OUIabdw==
X-Firefox-Spdy: h2
dietproteinsd2.blogspot.com/favicon.ico
142.250.74.161200 OK 412 B URL HTTP/1.1 dietproteinsd2.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: dietproteinsd2.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/http:/dietproteinsd2.blogspot.com/p/cara-guna-sd-ii.html%5Cx27%3E%3Cspan?m\x3d1%27,
Cookie: ck_TCM_pop=1
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Wed, 26 Oct 2022 06:07:13 GMT
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 07 Dec 2021 02:25:08 GMT
ETag: W/"08e9d838bcf9c3090e5f6bcea3898d165caf00e3728abaa876d6b96bae3b37b3"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.widgeo.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 05:42:51 GMT
expires: Fri, 20 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 519862
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7bd18d9f36c1699164becc136e455d11
3dfae5f9db30c099a1b9bfbc242158fd25f7ec24
54a4406f9cdf584411a3bcc64e63bde1371cd75727c23f853d3718be3fc35478
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=dietproteinsd2.blogspot.com&callback=_gfp_s_&client=ca-pub-3596155453953559&gpid_exp=1
216.58.207.194200 OK 253 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=dietproteinsd2.blogspot.com&callback=_gfp_s_&client=ca-pub-3596155453953559&gpid_exp=1
IP 216.58.207.194:0
File type ASCII text, with very long lines (391), with no line terminators
Hash aad83cd18bd967db9203aa3016658346
31b065adaa3e904ab250ccfe47a569867e0f0adf
6a1990cd23a54bb876e263fd5f192ab9dbfc05fc13b4c0223c76805187ded4d5
GET /gampad/cookie.js?domain=dietproteinsd2.blogspot.com&callback=_gfp_s_&client=ca-pub-3596155453953559&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 06:07:13 GMT
server: cafe
cache-control: private
content-length: 253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19c5719e45cfb53e9fdd342d81c046e0
d588591f72e278a8936e6fcaab8297f6c65b4904
b75e541f0f1468d70b4845424348e052fdde69d5334d88317c47414e18dbec2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=dietproteinsd2.blogspot.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=dietproteinsd2.blogspot.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dietproteinsd2.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 06:07:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=dietproteinsd2.blogspot.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=dietproteinsd2.blogspot.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dietproteinsd2.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 06:07:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7bd18d9f36c1699164becc136e455d11
3dfae5f9db30c099a1b9bfbc242158fd25f7ec24
54a4406f9cdf584411a3bcc64e63bde1371cd75727c23f853d3718be3fc35478
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logv33.xiti.com/hit.xiti?s=281802&p=trackwidget&hl=6x7x10&r=1280x1024x24x24&ref=http://dietproteinsd2.blogspot.com/&Rdt=On
143.204.46.236200 OK 373 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=trackwidget&hl=6x7x10&r=1280x1024x24x24&ref=http://dietproteinsd2.blogspot.com/&Rdt=On
IP 143.204.46.236:0
File type GIF image data, version 89a, 39 x 25\012- data
Hash 29cb2a1e585dff1f4282449fdbbab2d7
075d147195f9dba1862a6f3990d219d7c4389225
86fd3be02ab9497ebb14a884fb226386cd0db257b234b005f0000326ae8c9081
GET /hit.xiti?s=281802&p=trackwidget&hl=6x7x10&r=1280x1024x24x24&ref=http://dietproteinsd2.blogspot.com/&Rdt=On HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.widgeo.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 373
date: Wed, 26 Oct 2022 06:07:13 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qdr0oahMeZ4hchvH5_roEcL-wfDh2nSQnqzUxYNnR2QJjIE9NfPiBA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19c5719e45cfb53e9fdd342d81c046e0
d588591f72e278a8936e6fcaab8297f6c65b4904
b75e541f0f1468d70b4845424348e052fdde69d5334d88317c47414e18dbec2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=dietproteinsd2.blogspot.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=dietproteinsd2.blogspot.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dietproteinsd2.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 06:07:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PfeukFPImo3QNk8P28gKFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oysSjeCf2Fv8JWJ78jpT+qxYJeM=
adservice.google.com/adsid/integrator.js?domain=dietproteinsd2.blogspot.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=dietproteinsd2.blogspot.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dietproteinsd2.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 06:07:13 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8e059d8d49dcce28bdc6706783226b34
6bda2e738ae8ecfb56b819b879d6c15244a37b5f
3df203a12145b66b41035aa23f7fb140f5965eb825156f5f324639867018c9d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6149
Cache-Control: max-age=96851
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "63578ddf-116"
Expires: Thu, 27 Oct 2022 09:01:24 GMT
Last-Modified: Tue, 25 Oct 2022 07:18:55 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8e059d8d49dcce28bdc6706783226b34
6bda2e738ae8ecfb56b819b879d6c15244a37b5f
3df203a12145b66b41035aa23f7fb140f5965eb825156f5f324639867018c9d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6579
Cache-Control: max-age=97281
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:13 GMT
Etag: "63578ddf-116"
Expires: Thu, 27 Oct 2022 09:08:34 GMT
Last-Modified: Tue, 25 Oct 2022 07:18:55 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e4e9602f1062e692c3df5dc1eec489cb
ab47ab5548fed1ea1e145becb03a9885eacf7ddb
036e9d4e5c9e9bc75cbb78389fbcc4a5cdfa3463feddd5db8a11375b8c964af0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 24 Oct 2022 06:25:20 GMT
Expires: Mon, 31 Oct 2022 06:25:19 GMT
Etag: "ab47ab5548fed1ea1e145becb03a9885eacf7ddb"
Cache-Control: max-age=432485,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 760102af7d6ab50c-OSL
my.rtmark.net/gid.js?userId=a7e986bb1e0f4efa956c7cfdf93725c1
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=a7e986bb1e0f4efa956c7cfdf93725c1
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 9f3067837706dafb8457f01c4aec1b7d
2a48e1e81887c41e0be4a4319d1be13f1e6ded4e
52f7e4fbef5ca84eb1bdac8d3470a8224a2ca5593a321a70cc591448393cb9c4
GET /gid.js?userId=a7e986bb1e0f4efa956c7cfdf93725c1 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dietproteinsd2.blogspot.com
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://dietproteinsd2.blogspot.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=a7e986bb1e0f4efa956c7cfdf93725c1; expires=Thu, 26 Oct 2023 06:07:13 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 57ce924fd7b602a78b54d11d4faf585f
47da1f05e7d19e89719ecc04949ca40c6e06d77d
25a2fbef5df5c32be72d36b611635b95e4751b75807481faaeadbdda460990bc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 05:56:48 GMT
Expires: Sun, 30 Oct 2022 05:56:47 GMT
Etag: "47da1f05e7d19e89719ecc04949ca40c6e06d77d"
Cache-Control: max-age=344373,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 760102af8b440b59-OSL
onmarshtompor.com/?rb=Qg8BuD6OzIrwT7g9M4f4vK5Z8wqKcTJgef-e2Iz_IlzjPZ8w34U3Y8WstgicOGmss04_meAswSHi-855rkEutV-ArnnFI6Jt0QWq81V-OS_Ika0jdgrMkQofy7jwYFrMaH4dv--CadcpdNtwYIzSnhWO3AprKBvwLpiF0E8gIo1dTR8JYdx1nVepPon0Oe65M74FfzsGjM67nLfpcc1IPNh1PcFnCNzAxD2vHYT-P3k%3D&request_ab2=0&zoneid=3294720&js_build=iclick-v1.438.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=8&pl=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.438.0&bs=c0fa0360-22c9-4991-abc6-525fa01692e9&userId=a7e986bb1e0f4efa956c7cfdf93725c1&m=link
139.45.197.243200 OK 1.9 kB URL HTTP/1.1 onmarshtompor.com/?rb=Qg8BuD6OzIrwT7g9M4f4vK5Z8wqKcTJgef-e2Iz_IlzjPZ8w34U3Y8WstgicOGmss04_meAswSHi-855rkEutV-ArnnFI6Jt0QWq81V-OS_Ika0jdgrMkQofy7jwYFrMaH4dv--CadcpdNtwYIzSnhWO3AprKBvwLpiF0E8gIo1dTR8JYdx1nVepPon0Oe65M74FfzsGjM67nLfpcc1IPNh1PcFnCNzAxD2vHYT-P3k%3D&request_ab2=0&zoneid=3294720&js_build=iclick-v1.438.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=8&pl=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.438.0&bs=c0fa0360-22c9-4991-abc6-525fa01692e9&userId=a7e986bb1e0f4efa956c7cfdf93725c1&m=link
IP 139.45.197.243:0
File type JSON data\012- , ASCII text, with very long lines (2456), with no line terminators
Hash a04cf4b9429af3cd71c24383ad6c3d2c
aa02249ef3fd254dfc37b47f9a2841f61618995b
08e8125db2cebc8a838d978d368444df95e77fa639e93a6c462c9ba97dd6d1a1
GET /?rb=Qg8BuD6OzIrwT7g9M4f4vK5Z8wqKcTJgef-e2Iz_IlzjPZ8w34U3Y8WstgicOGmss04_meAswSHi-855rkEutV-ArnnFI6Jt0QWq81V-OS_Ika0jdgrMkQofy7jwYFrMaH4dv--CadcpdNtwYIzSnhWO3AprKBvwLpiF0E8gIo1dTR8JYdx1nVepPon0Oe65M74FfzsGjM67nLfpcc1IPNh1PcFnCNzAxD2vHYT-P3k%3D&request_ab2=0&zoneid=3294720&js_build=iclick-v1.438.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=8&pl=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.438.0&bs=c0fa0360-22c9-4991-abc6-525fa01692e9&userId=a7e986bb1e0f4efa956c7cfdf93725c1&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://dietproteinsd2.blogspot.com/
Origin: http://dietproteinsd2.blogspot.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 26 Oct 2022 06:07:14 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: ceb7ac6cd95b2c4a1ff2fd17f693b9ed
Access-Control-Allow-Origin: http://dietproteinsd2.blogspot.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=a7e986bb1e0f4efa956c7cfdf93725c1; expires=Thu, 26 Oct 2023 06:07:14 GMT; path=/
oaidts=1666764434; expires=Thu, 26 Oct 2023 06:07:14 GMT; path=/
syncedCookie=true; expires=Wed, 02 Nov 2022 06:07:14 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash da275afef2c120cef63dae40154284da
569947d789ce819632a881cb49b16b79ef6353ec
d5efa3c3f1c8e805662f74e42a3fac2993f0c8dd03129f28a9e6930cd98e98e1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 01:33:16 GMT
Expires: Tue, 01 Nov 2022 01:33:15 GMT
Etag: "569947d789ce819632a881cb49b16b79ef6353ec"
Cache-Control: max-age=501360,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 760102b02e32b50c-OSL
t.dtscout.com/i/?l=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&j=
158.69.139.238200 OK 2.4 kB URL HTTP/1.1 t.dtscout.com/i/?l=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&j=
IP 158.69.139.238:0
File type ASCII text, with very long lines (2077)
Hash eeddc8bda4ef62b1f028b0ad5eaef558
b7b4f67024d1824f1b8d790601f89f0e34323d74
260af059a282fc14974acae34eed706329c0ae28e223dd4595d316b1c55816a4
GET /i/?l=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Wed, 26 Oct 2022 06:07:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
X-S: mtl2
Set-Cookie: m=1; Domain=dtscout.com; Expires=Wed, 26-Oct-2022 07:30:34 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Wed, 26-Oct-2022 10:07:14 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1666764434; Domain=dtscout.com; Expires=Fri, 03-Feb-2023 06:07:14 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
X-T: 0.619
Expires: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: no-cache
tzegilo.com/stattag.js
104.21.84.149200 OK 5.3 kB IP 104.21.84.149:0
File type ASCII text, with very long lines (13017), with no line terminators
Hash e59342363df1baf4dd3a8738330bddf7
2fc0257b7c762ccdfe0ee9fe77bc3fd972bc0a67
69670448cfb8726ba64cde2b947d088683d19cb93f8cd4c267f5468dad3d29fe
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 14:05:58 GMT
etag: W/"634eb2c6-32d9"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 3657
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mPswgkuQ%2F7pU0JVeL%2BtSQeBLBZxaW9LQOFJ%2BkyCLyP26ahbNB3743p%2F2pkwpRWG4PZVvQ%2F0Rc7CE2JfmMCQMh3H0YLXdCa4twH5WIFlmGBtQ6iTIAKtA0m6DVVPe3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760102af38d50b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6322202d148634620aa5f4c34292b22b
a933cf02c7a02276435553d69e1ac43f0e376f72
1693a67818c7555861a93c1192d5f2b68c031ad21b58e320e12723ce3db1bd32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5582
Cache-Control: max-age=87976
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:14 GMT
Etag: "63576d6c-118"
Expires: Thu, 27 Oct 2022 06:33:30 GMT
Last-Modified: Tue, 25 Oct 2022 05:00:28 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
dtsedge.com/ping/?t=0&d=dietproteinsd2.blogspot.com
172.67.130.155200 OK 281 B URL HTTP/2 dtsedge.com/ping/?t=0&d=dietproteinsd2.blogspot.com
IP 172.67.130.155:0
Hash bddeaa99aa7d67a15cf821981704c1b6
a700816508f4dbfacfd4a75203cabed6cd2695b4
1a39d3af013f4540393ba78e929df37fc13f41a5fea0cea594d7a0688fa35d40
GET /ping/?t=0&d=dietproteinsd2.blogspot.com HTTP/1.1
Host: dtsedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:14 GMT
content-type: application/javascript
x-t: 0.49
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CPfArdhv%2BAY3of73%2FucsNIeT%2FwNJ24C1DMS3R8U6nkg7rFyoMF3z8Tt1Xun09nvRt%2Bmy1xOvEZy1GIX0ZdNXDT%2BRbJaxfGtoUYgeOBzxtZO7LSaM4W2REfVmpuxYrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102b1de610b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=dietproteinsd2.blogspot.com&_ss=69ryc49fy9&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6fqb&_cb=_dtspv.c
158.69.139.238200 OK 51 B URL HTTP/1.1 t.dtscout.com/pv/?_a=v&_h=dietproteinsd2.blogspot.com&_ss=69ryc49fy9&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6fqb&_cb=_dtspv.c
IP 158.69.139.238:0
File type ASCII text, with no line terminators
Hash db58f37ebbf22db6e8ca90f23237aa39
058e3058e861118d192dbc28e992d6ccb022fc97
00796e6f279fa337153fac609f9b295722a03f35ebb95abb2d474a5f80876fca
GET /pv/?_a=v&_h=dietproteinsd2.blogspot.com&_ss=69ryc49fy9&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6fqb&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Cookie: m=1; oa=1; df=1666764434
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Wed, 26 Oct 2022 06:07:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
X-T: 0.253
X-C: 0
Expires: Wed, 26 Oct 2022 06:07:13 GMT
Cache-Control: no-cache
whos.amung.us/pingjs/?k=35wdba5hcujo&t=Cara%20Kuruskan%20Badan%20Tanpa%20Berlapar%20SDII&c=m&x=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&y=&a=0&d=0.983&v=27&r=5672
104.22.74.171200 OK 399 B URL HTTP/1.1 whos.amung.us/pingjs/?k=35wdba5hcujo&t=Cara%20Kuruskan%20Badan%20Tanpa%20Berlapar%20SDII&c=m&x=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&y=&a=0&d=0.983&v=27&r=5672
IP 104.22.74.171:0
File type ASCII text, with very long lines (3087), with no line terminators
Hash 6df04ca92fcf8f61af54e36598feb7db
a7fd4e8bb7fab303b1cb2cbeac6a0482e11fbd05
b253c970c855fa9b452d23ace38b04801bc6ee53d504e0791d3f7dd5beda546f
GET /pingjs/?k=35wdba5hcujo&t=Cara%20Kuruskan%20Badan%20Tanpa%20Berlapar%20SDII&c=m&x=http%3A%2F%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fhttp%3A%2Fdietproteinsd2.blogspot.com%2Fp%2Fcara-guna-sd-ii.html%255Cx27%253E%253Cspan%3Fm%5Cx3d1%2527%2C%23&y=&a=0&d=0.983&v=27&r=5672 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:14 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 760102b349c5f142-ARN
connect.facebook.net/en_US/all.js?hash=9fc35278bcf4d8c2d07ca6dbc48b682c
157.240.221.16200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=9fc35278bcf4d8c2d07ca6dbc48b682c
IP 157.240.221.16:0
File type ASCII text, with very long lines (18722)
Hash 3a09a0e59695acb3937ccaa0cdc56a53
a1eb0aa9d9b6f797192ce3fd778088f48484be4e
70dbd73a0f27140e18ea5562c52dfe9e08d827ba0680426813eb2e400691f595
GET /en_US/all.js?hash=9fc35278bcf4d8c2d07ca6dbc48b682c HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dietproteinsd2.blogspot.com
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 4da2292f4d4d9c75a4ff2c3a1ff06727
etag: "01b4c3458cfc6405b11089765125669d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 26 Oct 2023 05:09:09 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Ogmg5ZaVrLOTfMqgzcVqUw==
x-fb-debug: fFOaqK1Qxr4gGzH5OgGElvb3lLW3u7PRQnrGdEZa8I2k0iCE6WKzFP2N+k4XMVuWfrc0m0Gp/CaP3txN3LvQaQ==
priority: u=3,i
content-length: 86751
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 06:07:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/balloon-css/0.5.0/balloon.min.css
104.17.25.14200 OK 1.4 kB URL HTTP/1.1 cdnjs.cloudflare.com/ajax/libs/balloon-css/0.5.0/balloon.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (13323)
Hash 303da9dec89a926defcfdf0dce564051
86022b6398d677843733076a3e11526fd97e5744
307a78a7ad0e842aa1676557d4836c67e5f37961d1c1d213df00d88ba71e8604
GET /ajax/libs/balloon-css/0.5.0/balloon.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:14 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 1436
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03d72-340c"
Last-Modified: Mon, 04 May 2020 16:06:10 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 415395
Expires: Mon, 16 Oct 2023 06:07:14 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 760102b45c3b0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
widgets.amung.us/mappoints/star-blue.png
104.22.75.171200 OK 935 B URL HTTP/1.1 widgets.amung.us/mappoints/star-blue.png
IP 104.22.75.171:0
File type PNG image data, 73 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash 8b1ab0a9f1b04b99fb3bd36938b1e804
ea88ff9eca502a62075f8e03ad687c025f5ea4ba
7bc60ec27e8f03e31c4a8c01f831bce5a8d874e204b4d0756097599d1dc2de63
GET /mappoints/star-blue.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 06:07:14 GMT
Content-Type: image/png
Content-Length: 935
Connection: keep-alive
last-modified: Mon, 29 Aug 2022 18:12:58 GMT
etag: "630d01aa-3a7"
expires: Wed, 26 Oct 2022 18:19:20 GMT
cache-control: max-age=86400
access-control-allow-origin: *
CF-Cache-Status: HIT
Age: 42474
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 760102b47d19f146-ARN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0f86bf1e2fc0e53635d6dbd436afffda
c38c19618afd2c203b53f07c71d07a31fc397353
5cba005b31289d4df7c6bfa9e0bdd27ce43ff8b7e6d91ea95ce24f690426fdc7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.65200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.65:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 26 Oct 2022 06:07:14 GMT
expires: Wed, 26 Oct 2022 06:07:14 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.65200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 12:19:56 GMT
expires: Tue, 24 Oct 2023 12:19:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 150438
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 77b5da0f60755df91da1b98333c6d33c
0c36c5f1063e2ef41d02e26ddf9ed1e0a490e6b4
085b499d52d53965301db8affc692e09876290e5d67bf09c83178cc54384999f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 06:07:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 511 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 855f11a3311920a4a9f5a35d91335903
45a96df73ba0e55cd120135dbc0462e027a9381d
a74486fc5d9a299178b0e46c0916ea6b2f5c021f6b205e2c6d37d6a918ac1311
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 26 Oct 2022 06:07:14 GMT
date: Wed, 26 Oct 2022 06:07:14 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-Hatl1P7eTyWz1cTrn0PtNQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 511
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11828
Expires: Wed, 26 Oct 2022 09:24:23 GMT
Date: Wed, 26 Oct 2022 06:07:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11828
Expires: Wed, 26 Oct 2022 09:24:23 GMT
Date: Wed, 26 Oct 2022 06:07:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11828
Expires: Wed, 26 Oct 2022 09:24:23 GMT
Date: Wed, 26 Oct 2022 06:07:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11828
Expires: Wed, 26 Oct 2022 09:24:23 GMT
Date: Wed, 26 Oct 2022 06:07:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11828
Expires: Wed, 26 Oct 2022 09:24:23 GMT
Date: Wed, 26 Oct 2022 06:07:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b946c4f2f177828cf7b76c5764e97157
c3856686b98e1883133aa1824c496d34512769a0
be818a015fc9c745ea561a0b9c2aca6ba25ade24acd696fa651163d47b195371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13796
x-amzn-requestid: 90b1e032-78c6-499d-b564-f25c15e20304
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2OG0SoAMFx-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568e-599d0f526fc6a01f77b67dcf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qxBQMJAnYNJVLBf5LSOTC7v3hPl9sh-G-OIqrK7d5KpdVITaQCcGMA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:47:18 GMT
age: 29997
etag: "c3856686b98e1883133aa1824c496d34512769a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 494a826ce7609ee5cc8157ea5de5f4f7
3d28f2daeef33f37c91bd26cb527793288635103
09f702f40e29e6b0c27abc5c7bb4605e504453b543c92805ba4045bd3d65c4d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3337
x-amzn-requestid: 5a06b710-2b88-435e-8863-3e0e58742e6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ21FjooAMFp8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585691-2adc1ac2375e087b20ad0e32;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:13 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: iVIdtyyk_ph8AiTsWdQgDfWFHVIMh2pw4yrkufwogd3rsZFXwslwkg==
via: 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:46:52 GMT
age: 30023
etag: "3d28f2daeef33f37c91bd26cb527793288635103"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cc61ad4b1d66ab4bce27288ee690e12
324e13ad5c99f628d713e55a2994ad4042ece70e
62cd88bc19bc1f0be2a37c3e990897158acd3d55aa3ddd299144d4f9596ba34e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6831
x-amzn-requestid: cc6f38ff-ab33-4b18-8cae-aa6bc061962f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alKjPH7ToAMFSiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635857ae-3db2790d0e6c5fab6c4bc81f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tiWbOUwlRzaT2EnCWIgoFaT_ho55s3tgRxalb7yBbI21Pv0BhfLJOg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:52:53 GMT
age: 29662
etag: "324e13ad5c99f628d713e55a2994ad4042ece70e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3ae78510434fd68063fc144bf614382
3bb87ca5274ce9f6d81da60ab940d23ccd12843b
f42d89328435cb37cba1111903a6bd5e900857d0942e1506ea2115b4e6301541
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7929
x-amzn-requestid: 6324abd6-8e27-4903-8bfc-a0fc6a8625be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK9LEeoIAMF5mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585854-2900343b1ae208a903fe58fd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:44 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5MR4UzoW6rVsSpEyPAWrcFb2LCRICaG-toy3JflaXRrzZwcgMs48VQ==
via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:35 GMT
age: 29860
etag: "3bb87ca5274ce9f6d81da60ab940d23ccd12843b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OV7g4Y4fcQGijljebzHQtnpKdcPKw6LTxqORxxBJL2lFPYQLLoyNuQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 00:34:40 GMT
age: 19955
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F391c9e5f-b9b0-4854-b481-769430b76afa.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F391c9e5f-b9b0-4854-b481-769430b76afa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 237f766bae92a9812e7600207b95c632
bfa4bfc84e8fa8bd421e21123e04477538639981
100442fa760bf0b9e9a07a1e68d9321b53a32dd73a9cfbfcc8399f5041db35eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F391c9e5f-b9b0-4854-b481-769430b76afa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11124
x-amzn-requestid: 1bd056c4-37cd-4f45-b94a-cdad9a8b85c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aNnWVFayIAMFqOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634eec28-28116f7063b2a9e235a00b09;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 18:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KqfoDqENdhLCi3lADWu_Khs7k2fW7Tx_OVO_h_VTcByeCVHl0kOTvQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:08:10 GMT
age: 28745
etag: "bfa4bfc84e8fa8bd421e21123e04477538639981"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/trackwidget_js.js
104.26.11.22200 OK 0 B URL HTTP/2 www.widgeo.net/geocompteur/trackwidget_js.js
IP 104.26.11.22:0
GET /geocompteur/trackwidget_js.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2426
cache-control: public, max-age=604800
expires: Tue, 01 Nov 2022 20:12:12 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 35700
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dlaLNKo1YO0Mf0Mi87m3mMztA9DkCH23bQ7N%2FXeFz5hV4KI%2B2BUpxr8QxlsdSI%2Bk4zcpCPq75VfcLZytiRO8Q4bz%2FlVUksPZZxb5ib9I%2BjY8ZL%2BRwbVqSQhY7IRO%2BA9t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102ac7e25b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2216895134-widgets.js
142.250.74.105200 OK 0 B URL HTTP/2 www.blogger.com/static/v1/widgets/2216895134-widgets.js
IP 142.250.74.105:0
GET /static/v1/widgets/2216895134-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56821
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 02:07:25 GMT
expires: Tue, 24 Oct 2023 02:07:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Oct 2022 00:51:25 GMT
content-type: text/javascript
age: 187187
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
inklinkor.com/tag.min.js
104.21.91.63200 OK 0 B IP 104.21.91.63:0
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 3dd00a33d2112d39acb4d889cde5f281
cache-control: max-age=86400
last-modified: Thu, 20 Oct 2022 13:16:57 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Thu, 27 Oct 2022 04:22:16 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 6297
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JDJHXopk%2FLggbokSnSoPksmmMEiAK1FsZ4lG%2F5w5LKYQfObYcsoJVEndLTIBMday91WeHZYvhCcLWVxy8StjTeidt4E418xfa2IIoABTWpmnYNJlEfhh0d4ukwVOS1TF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760102aa8b91b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
104.26.11.22200 OK 0 B URL HTTP/2 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP 104.26.11.22:0
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/hitparade.php?pagexiti=trackwidget
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 15:26:52 GMT
etag: W/"634ec5bc-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B8DEQMcCCHXFkrwmlvibj1onwHPKl1dD8zRuxeFGzq1S2JNrKg%2BZUebpNd4%2FeY8KmizJl4ppPGSTYbiuQZvzZCs5pdHi2eCq9e0TrZpuBBPdqrSOWyvLXfPR6u3IhpPJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760102ac3de9b505-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 28 Oct 2022 06:07:13 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.438.0
139.45.197.234200 OK 0 B URL HTTP/2 bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.438.0
IP 139.45.197.234:0
GET /5/3294720/?oo=1&js_build=iclick-v1.438.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dietproteinsd2.blogspot.com
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: application/json
x-trace-id: 49d4e722359ad218e1c85bcada3c9567
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: http://dietproteinsd2.blogspot.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=a7e986bb1e0f4efa956c7cfdf93725c1; expires=Thu, 26 Oct 2023 06:07:13 GMT; path=/; secure; SameSite=None
oaidts=1666764433; expires=Thu, 26 Oct 2023 06:07:13 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
www.widgeo.net/tcm.js
104.26.11.22200 OK 0 B IP 104.26.11.22:0
GET /tcm.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3693
cache-control: public, max-age=604800
expires: Sat, 29 Oct 2022 03:11:25 GMT
last-modified: Wed, 12 Oct 2022 00:08:47 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 356147
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=06QyFzPZU7pm3ymAM5pA19JAOOYr31aqA%2BBNB0pdVBCpoARE0ZehVXtaY2LEkka3jAJjlxnTYic7p%2FoPFkNywZoA2RRDeAjAVIZCtYe1DmsbPJWtpXP1qHxqIj6Nj89K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102aa7c41b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.widgeo.net/hitparade.php?pagexiti=trackwidget
104.26.11.22200 OK 0 B URL HTTP/2 www.widgeo.net/hitparade.php?pagexiti=trackwidget
IP 104.26.11.22:0
GET /hitparade.php?pagexiti=trackwidget HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dietproteinsd2.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 06:07:13 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=180
expires: Wed, 26 Oct 2022 06:10:12 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fp9fun75aGcbyrs5PZHxA5kDrjrkBPkFYSyuD4kBFoSTxBw5P1ooCM%2BBba0iygB1DDMblAE4rmAuFVEYTK1qL8QqApeAfDnmp2E1SPl%2FxLJUKgg8DLI9W064oVJjRik7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760102aaac65b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 06:07:13 GMT
date: Wed, 26 Oct 2022 06:07:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2