Overview

URL cityvilleworldsam.blogspot.com/2012/10/farmville-2-regalos.html
IP142.250.74.161
ASNGOOGLE
Location United States
Report completed2022-10-06 12:49:29 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-06 2 cityvilleworldsam.blogspot.com/2012/10/farmville-2-regalos.html Phishing
2022-10-06 2 cityvilleworldsam.blogspot.com/2012/10/farmville-2-regalos.html Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (36)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS z.moatads.com (1) 374 2014-02-11 16:19:47 UTC 2022-10-06 04:47:27 UTC 23.38.201.146
mnemonic passive DNS platform.twitter.com (4) 597 2012-05-21 03:34:05 UTC 2022-10-06 05:00:03 UTC 151.101.84.157
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-10-06 04:46:31 UTC 23.36.76.226
mnemonic passive DNS www.blogger.com (5) 8975 2012-05-22 07:35:03 UTC 2022-10-06 05:11:52 UTC 216.58.207.201
mnemonic passive DNS s7.addthis.com (3) 1504 2012-05-21 03:34:04 UTC 2022-10-06 05:34:40 UTC 23.38.200.123
mnemonic passive DNS 4.bp.blogspot.com (1) 11215 2013-05-06 20:18:52 UTC 2022-10-06 06:01:17 UTC 142.250.74.161
mnemonic passive DNS safir85.ucoz.com (1) 0 2017-01-30 06:37:46 UTC 2022-10-04 12:59:07 UTC 195.216.243.130 Domain (ucoz.com) ranked at: 168110
mnemonic passive DNS translate.google.com (1) 1156 2012-05-30 01:30:32 UTC 2022-10-06 04:46:56 UTC 142.250.74.46
mnemonic passive DNS syndication.twitter.com (2) 833 2013-09-20 01:46:47 UTC 2022-10-06 04:46:54 UTC 104.244.42.200
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-10-06 10:24:12 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-06 05:02:20 UTC 35.164.56.167
mnemonic passive DNS apis.google.com (2) 105 2013-05-30 23:17:44 UTC 2022-10-06 04:50:08 UTC 142.250.74.174
mnemonic passive DNS img2.blogblog.com (1) 113758 2012-05-21 13:44:19 UTC 2022-10-06 11:34:36 UTC 216.58.207.201
mnemonic passive DNS v1.addthisedge.com (1) 1721 2019-05-22 18:56:22 UTC 2022-10-06 06:05:40 UTC 23.38.200.123
mnemonic passive DNS ajax.googleapis.com (2) 12905 2013-08-16 09:51:31 UTC 2022-10-06 07:20:09 UTC 142.250.74.10
mnemonic passive DNS www.gstatic.com (4) 0 2016-07-26 09:37:06 UTC 2022-10-06 08:25:50 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS m.addthis.com (1) 1448 2013-11-06 20:12:22 UTC 2022-10-06 07:16:19 UTC 23.38.200.123
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-10-06 11:38:37 UTC 142.250.74.10
mnemonic passive DNS lh3.googleusercontent.com (8) 66 2013-05-30 23:27:19 UTC 2022-10-06 04:46:13 UTC 142.250.74.1
mnemonic passive DNS cityvilleworldsam.blogspot.com (2) 0 2022-10-02 11:32:57 UTC 2022-10-02 11:32:57 UTC 142.250.74.161 Unknown ranking
mnemonic passive DNS resources.blogblog.com (6) 13274 2017-01-30 04:47:40 UTC 2022-10-06 07:22:00 UTC 216.58.207.201
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-10-06 04:51:09 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS translate.googleapis.com (2) 1005 2014-07-21 13:19:59 UTC 2022-10-06 06:41:12 UTC 142.250.74.170
mnemonic passive DNS api-public.addthis.com (1) 4111 2012-05-21 13:44:35 UTC 2022-10-06 06:05:40 UTC 23.38.200.123
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-06 04:55:14 UTC 34.160.144.191
mnemonic passive DNS ocsp.pki.goog (20) 175 2017-06-14 07:23:31 UTC 2022-10-06 04:46:05 UTC 142.250.74.3
mnemonic passive DNS geoloc5.geostats.ovh (2) 0 2017-08-17 16:13:05 UTC 2022-08-09 22:22:54 UTC 54.36.176.112 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (4) 1631 2017-09-01 03:40:57 UTC 2022-10-06 04:25:36 UTC 34.120.237.76
mnemonic passive DNS accounts.google.com (1) 81 2016-09-05 09:39:47 UTC 2022-10-06 05:57:20 UTC 216.58.207.237
mnemonic passive DNS connect.facebook.net (2) 139 2012-05-22 02:51:28 UTC 2022-10-06 04:46:20 UTC 31.13.72.12
mnemonic passive DNS pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-10-06 07:14:40 UTC 142.250.74.66
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-10-06 06:50:53 UTC 142.250.74.164
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-10-06 04:46:20 UTC 31.13.72.36
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-10-06 06:47:58 UTC 54.230.111.118
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-06 04:46:50 UTC 34.117.237.239
mnemonic passive DNS play.google.com (2) 34 2018-05-12 00:28:37 UTC 2022-10-06 08:19:39 UTC 216.58.207.206


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161

Date UQ / IDS / BL URL IP
2022-11-26 21:27:17 +0000
0 - 0 - 2 bocagulosa2.blogspot.ro/search/label/Making 142.250.74.161
2022-11-26 21:24:40 +0000
0 - 0 - 3 favouriteboys.blogspot.ru/2011_10_01_archive.html 142.250.74.161
2022-11-26 21:24:37 +0000
0 - 0 - 2 borsacik.blogspot.com.es/search/label/Ma%C3%A7 142.250.74.161
2022-11-26 21:24:01 +0000
0 - 0 - 3 aflam-uk.blogspot.ru/search/label/Chicks 142.250.74.161
2022-11-26 21:23:28 +0000
0 - 0 - 3 frentecomuncubano.blogspot.co.uk/search/label (...) 142.250.74.161

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-11-26 21:27:17 +0000
0 - 0 - 2 bocagulosa2.blogspot.ro/search/label/Making 142.250.74.161
2022-11-26 21:24:40 +0000
0 - 0 - 3 favouriteboys.blogspot.ru/2011_10_01_archive.html 142.250.74.161
2022-11-26 21:24:37 +0000
0 - 0 - 2 borsacik.blogspot.com.es/search/label/Ma%C3%A7 142.250.74.161
2022-11-26 21:24:01 +0000
0 - 0 - 3 aflam-uk.blogspot.ru/search/label/Chicks 142.250.74.161
2022-11-26 21:23:28 +0000
0 - 0 - 3 frentecomuncubano.blogspot.co.uk/search/label (...) 142.250.74.161

Last 1 reports on domain: cityvilleworldsam.blogspot.com

Date UQ / IDS / BL URL IP
2022-10-06 12:49:29 +0000
0 - 0 - 2 cityvilleworldsam.blogspot.com/2012/10/farmvi (...) 142.250.74.161

No other reports with similar screenshot



JavaScript

Executed Scripts (83)


Executed Evals (8)

#1 JavaScript::Eval (size: 15544, repeated: 1) - SHA256: 785368f80392fac2588fe98c4a61181ce777d15a35bd5572d7740f4124fe8f65

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var I = function(M) {
            return M
        },
        n = function(M, B) {
            if ((M = (B = K.trustedTypes, null), !B) || !B.createPolicy) return M;
            try {
                M = B.createPolicy("bg", {
                    createHTML: I,
                    createScript: I,
                    createScriptURL: I
                })
            } catch (p) {
                K.console && K.console.error(p.message)
            }
            return M
        },
        K = this || self;
    (0, eval)(function(M, B) {
        return (B = n()) && 1 === M.eval(B.createScript("1")) ? function(p) {
            return B.createScript(p)
        } : function(p) {
            return "" + p
        }
    }(K)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var pT=function(B,M,I,K,r,p){if(!M.I){M.G++;try{for(r=(I=0,void 0),K=M.i;--B;)try{if((p=void 0,M).V)r=MF(M,M.V);else{if((I=v(M,479),I)>=K)break;r=(p=(l(236,M,I),Y)(M),v(M,p))}y(false,M,(r&&r[BS]&2048?r(M,B):m([b,21,p],M,0),B),false)}catch(n){v(M,492)?m(n,M,22):l(492,M,n)}if(!B){if(M.Nh){pT(136739882349,(M.G--,M));return}m([b,33],M,0)}}catch(n){try{m(n,M,22)}catch(E){S(M,E)}}M.G--}},$M=function(B,M,I,K){function r(){}return K=void 0,I=im(B,function(p){r&&(M&&q(M),K=p,r(),r=void 0)},!!M)[0],{invoke:function(p,n,E,U){function c(){K(function(e){q(function(){p(e)})},E)}if(!n)return n=I(E),p&&p(n),n;K?c():(U=r,r=function(){q((U(),c))})}}},Ie=function(B){return B},im=function(B,M,I,K){return(K=J[B.substring(0,3)+"_"])?K(B.substring(3),M,I):KT(B,M)},y=function(B,M,I,K,r,p,n,E,U){if(M.u+=(M.g=(r=(p=(U=0<(K||M.h++,M.F)&&M.P&&M.d1&&1>=M.G&&!M.V&&!M.v&&(!K||1<M.O-I)&&0==document.hidden,n=4==M.h)||U?M.T():M.A,E=p-M.A,E)>>14,M.Y&&(M.Y^=r*(E<<2)),r)||M.g,r),n||U)M.A=p,M.h=0;if(!U||p-M.Z<M.F-(B?255:K?5:2))return false;return((B=v(M,(M.O=I,K)?236:479),l(479,M,M.i),M).S.push([nT,B,K?I+1:I]),M).v=q,true},N=function(B,M,I){(l(B,I,M),M)[Ew]=2796},rJ=function(B,M,I,K){g(a(v(B,(K=(I=Y(B),Y(B)),I)),M),B,K)},Uw=function(B,M){l(479,((M.I7.push(M.L.slice()),M.L)[479]=void 0,M),B)},jj=function(B,M){return X[B](X.prototype,{parent:M,document:M,prototype:M,stack:M,splice:M,floor:M,length:M,replace:M,console:M,call:M,propertyIsEnumerable:M,pop:M})},vS=function(B,M,I,K,r){((K=v(M,(r=Y((K=(I=B&3,B&=4,Y(M)),M)),K)),B)&&(K=sw(""+K)),I&&g(a(K.length,2),M,r),g)(K,M,r)},Y=function(B,M){if(B.V)return MF(B,B.B);return M=L(true,B,8),M&128&&(M^=128,B=L(true,B,2),M=(M<<2)+(B|0)),M},KT=function(B,M){return M(function(I){I(B)}),[function(){return B}]},lm=function(B,M,I){return B.o(function(K){I=K},false,M),I},S=function(B,M){B.I=((B.I?B.I+"~":"E:")+M.message+":"+M.stack).slice(0,2048)},YM=function(B,M){if((B=(M=null,P.trustedTypes),!B)||!B.createPolicy)return M;try{M=B.createPolicy("bg",{createHTML:Ie,createScript:Ie,createScriptURL:Ie})}catch(I){P.console&&P.console.error(I.message)}return M},m=function(B,M,I,K,r,p){if(!M.X){if(B=v(M,(0==(r=v(M,((K=void 0,B&&B[0]===b)&&(I=B[1],K=B[2],B=void 0),107)),r.length)&&(p=v(M,236)>>3,r.push(I,p>>8&255,p&255),void 0!=K&&r.push(K&255)),I="",B&&(B.message&&(I+=B.message),B.stack&&(I+=":"+B.stack)),253)),3<B){K=(I=(B-=(I=I.slice(0,(B|0)-3),(I.length|0)+3),sw)(I),M).g,M.g=M;try{g(a(I.length,2).concat(I),M,115,9)}finally{M.g=K}}l(253,M,B)}},v=function(B,M){if(void 0===(B=B.L[M],B))throw[b,30,M];if(B.value)return B.create();return(B.create(5*M*M+-16*M+80),B).prototype},u=function(B,M,I){I=this;try{ej(M,this,B)}catch(K){S(this,K),B(function(r){r(I.I)})}},f={passive:true,capture:true},g=function(B,M,I,K,r,p){if(M.g==M)for(r=v(M,I),115==I?(I=function(n,E,U,c){if((U=((E=r.length,E)|0)-4>>3,r.iH)!=U){U=(U<<3)-(c=[0,0,p[r.iH=U,1],p[2]],4);try{r.kb=Fm(oe(r,(U|0)+4),c,oe(r,U))}catch(e){throw e;}}r.push(r.kb[E&7]^n)},p=v(M,133)):I=function(n){r.push(n)},K&&I(K&255),M=B.length,K=0;K<M;K++)I(B[K])},oe=function(B,M){return B[M]<<24|B[(M|0)+1]<<16|B[(M|0)+2]<<8|B[(M|0)+3]},R=function(B){return B.V?MF(B,B.B):L(true,B,8)},TP=function(B,M,I,K,r){if((K=M[0],K)==V)B.K=25,B.l(M);else if(K==d){I=M[1];try{r=B.I||B.l(M)}catch(p){S(B,p),r=B.I}I(r)}else if(K==nT)B.l(M);else if(K==O)B.l(M);else if(K==mp){try{for(r=0;r<B.H.length;r++)try{I=B.H[r],I[0][I[1]](I[2])}catch(p){}}catch(p){}(0,M[1])((B.H=[],function(p,n){B.o(p,true,n)}),function(p){(C(B,(p=!B.S.length,[BS])),p)&&G(true,B,false)})}else{if(K==h)return r=M[2],l(452,B,M[6]),l(67,B,r),B.l(M);K==BS?(B.s=[],B.L=null,B.j=[]):K==Ew&&"loading"===P.document.readyState&&(B.v=function(p,n){function E(){n||(n=true,p())}P.document.addEventListener("DOMContentLoaded",E,(n=false,f)),P.addEventListener("load",E,f)})}},kM=function(B,M,I){if(3==B.length){for(I=0;3>I;I++)M[I]+=B[I];for(I=(B=[13,8,13,12,16,5,3,10,15],0);9>I;I++)M[3](M,I%3,B[I])}},bm=function(B,M,I){if(M=typeof B,"object"==M)if(B){if(B instanceof Array)return"array";if(B instanceof Object)return M;if("[object Window]"==(I=Object.prototype.toString.call(B),I))return"object";if("[object Array]"==I||"number"==typeof B.length&&"undefined"!=typeof B.splice&&"undefined"!=typeof B.propertyIsEnumerable&&!B.propertyIsEnumerable("splice"))return"array";if("[object Function]"==I||"undefined"!=typeof B.call&&"undefined"!=typeof B.propertyIsEnumerable&&!B.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==M&&"undefined"==typeof B.call)return"object";return M},HS=function(B,M,I,K,r,p){function n(){if(B.g==B){if(B.L){var E=[h,K,M,void 0,r,p,arguments];if(2==I)var U=G(false,B,(C(B,E),false));else if(1==I){var c=!B.S.length;C(B,E),c&&G(false,B,false)}else U=TP(B,E);return U}r&&p&&r.removeEventListener(p,n,f)}}return n},Sj=function(B,M,I,K,r,p,n,E){return(p=X[M.N]((K=[90,-16,-(E=B&7,75),-(n=y3,71),41,45,K,-100,22,-83],M.g1)),p[M.N]=function(U){E+=6+7*(r=U,B),E&=7},p).concat=function(U){return(r=(U=(U=I%16+1,-2640*r-U*r- -528*I*r+5*I*I*U+(n()|0)*U-165*I*I*r)+33*r*r+K[E+35&7]*I*U+E,void 0),U=K[U],K)[(E+21&7)+(B&2)]=U,K[E+(B&2)]=-16,U},p},qF=function(B,M,I){return I=X[M.N](M.TA),I[M.N]=function(){return B},I.concat=function(K){B=K},I},l=function(B,M,I){if(479==B||236==B)M.L[B]?M.L[B].concat(I):M.L[B]=qF(I,M);else{if(M.X&&333!=B)return;28==B||115==B||229==B||107==B||133==B?M.L[B]||(M.L[B]=Sj(30,M,B,I)):M.L[B]=Sj(137,M,B,I)}333==B&&(M.Y=L(false,M,32),M.U=void 0)},ej=function(B,M,I,K,r){for(r=(M.TA=((M.U_=M[d],M).a7=(M.BT=xM,Q3),M.g1=jj(M.N,{get:function(){return this.concat()}}),X)[M.N](M.g1,{value:{value:{}}}),[]),K=0;128>K;K++)r[K]=String.fromCharCode(K);G((C(M,(C(M,(C((l(185,(N(410,(l(28,M,[160,0,(N(0,function(p,n,E){y(false,p,n,true)||(n=Y(p),E=Y(p),l(E,p,function(U){return eval(U)}(J6(v(p.g,n)))))},(N(405,(N(97,function(p,n,E,U,c,e,k,T,F,W,x,H){function w(Q,t){for(;c<Q;)k|=R(p)<<c,c+=8;return k>>=(t=(c-=Q,k&(1<<Q)-1),Q),t}for(F=(T=(W=(e=((k=(U=Y(p),c=0),w(3))|0)+1,w)(5),[]),H=0);F<W;F++)E=w(1),T.push(E),H+=E?0:1;for(x=(F=(H=((H|0)-1).toString(2).length,0),[]);F<W;F++)T[F]||(x[F]=w(H));for(H=0;H<W;H++)T[H]&&(x[H]=Y(p));for(n=[];e--;)n.push(v(p,Y(p)));N(U,function(Q,t,z,A,cS){for(t=0,z=[],cS=[];t<W;t++){if(A=x[t],!T[t]){for(;A>=z.length;)z.push(Y(Q));A=z[A]}cS.push(A)}Q.B=(Q.V=qF(n.slice(),Q),qF(cS,Q))},p)},(l((N(53,(N(75,(N((M.ZP=(N(85,(l((N(480,function(p,n,E,U){l((E=(n=(U=Y((n=(E=Y(p),Y)(p),p)),v)(p,n),v(p,E)==n),U),p,+E)},((N(124,(l(115,M,(((N(247,(N(286,function(p,n,E,U){if(E=p.I7.pop()){for(U=R(p);0<U;U--)n=Y(p),E[n]=p.L[n];E[253]=p.L[E[107]=p.L[107],253],p.L=E}else l(479,p,p.i)},(l(133,M,(N(27,function(p,n,E,U){(E=(U=(E=Y(p),Y)(p),n=Y(p),v(p,E)),U=v(p,U),l)(n,p,E in U|0)},(l(492,M,(N(338,(N(149,function(p){rJ(p,4)},((N(80,function(p){vS(3,p)},(N(143,(l(107,(N(90,function(p,n,E,U,c,e){if(!y(true,p,n,true)){if(p=v((U=(c=(n=v((E=Y((n=Y((c=(U=Y(p),Y)(p),p)),p)),p),n),v(p,c)),v)(p,U),p),E),"object"==bm(U)){for(e in E=[],U)E.push(e);U=E}for(n=0<n?n:1,e=U.length,E=0;E<e;E+=n)c(U.slice(E,(E|0)+(n|0)),p)}},(N(280,function(p,n,E,U){U=v(p,(n=Y((U=Y(p),p)),U)),E=v(p,n),l(n,p,E+U)},(l(367,M,((N((l(253,(N((N(453,function(){},(N(210,function(p,n,E,U){(U=(E=Y(p),n=Y(p),Y(p)),p.g)==p&&(U=v(p,U),n=v(p,n),v(p,E)[n]=U,333==E&&(p.U=void 0,2==n&&(p.Y=L(false,p,32),p.U=void 0)))},(N(220,function(p,n,E,U){n=v((E=v(p,(U=(n=(E=Y(p),Y(p)),Y(p)),E)),p),n),l(U,p,E[n])},(N(186,function(p,n){(n=v(p,Y(p)),Uw)(n,p.g)},(l(236,M,((M.mp=(M.K=25,(M.F=0,M.B=(M.Z=(K=window.performance||{},0),M.lH=(M.h=void 0,M.O=8001,(M.D=0,M.P=false,M).G=(M.I7=[],0),M.U=(M.H=[],void 0),M.A=0,M.S=[],M.V6=(M.I=void 0,function(p){this.g=p}),(M.d1=!(M.X=false,1),M).u=(M.s=(M.R=void 0,M.V=void 0,M.v=null,M.j=(M.Y=void 0,[]),[]),1),M.i=0,M.L=[],0),void 0),M).g=M,K.timeOrigin)||(K.timing||{}).navigationStart||0,l)(479,M,0),0)),M)),M)),l(67,M,{}),M)),M)),202),function(p,n,E,U,c){for(n=(c=NF((U=Y(p),p)),E=0,[]);E<c;E++)n.push(R(p));l(U,p,n)},M),M),2048),510),function(p,n,E){l((n=bm((n=v(p,(n=Y(p),E=Y(p),n)),n)),E),p,n)},M),N)(318,function(p){WS(p,4)},M),0)),M)),M)),M),[]),function(p,n,E,U,c,e,k){for(U=(n=(k=v((c=(e=NF((E=Y(p),p)),""),p),98),k.length),0);e--;)U=((U|0)+(NF(p)|0))%n,c+=r[k[U]];l(E,p,c)}),M),M)),N)(436,function(p,n){(p=v((n=Y(p),p.g),n),p[0]).removeEventListener(p[1],p[2],f)},M),M.Ae=0,M)),function(p,n,E,U,c){l((n=v(p,(E=(n=(c=(E=(U=Y(p),Y(p)),Y(p)),Y(p)),c=v(p,c),v)(p,E),n)),U),p,HS(p,c,n,E))}),M),971)),M)),[0,0,0])),M)),function(p,n,E,U,c,e){y(false,p,n,true)||(e=t6(p.g),U=e.po,c=e.C,n=e.Lo,e=e.J,E=e.length,U=0==E?new U[c]:1==E?new U[c](e[0]):2==E?new U[c](e[0],e[1]):3==E?new U[c](e[0],e[1],e[2]):4==E?new U[c](e[0],e[1],e[2],e[3]):2(),l(n,p,U))}),M),l)(9,M,M),M).w1=0,Z)(4)),function(p,n,E,U){n=(E=(U=Y(p),R(p)),Y(p)),l(n,p,v(p,U)>>>E)}),M),N)(14,function(p,n,E){n=v(p,(E=0!=v((n=(E=Y(p),Y(p)),p),E),n)),E&&l(479,p,n)},M),M)),229),M,[]),function(p){vS(4,p)}),M),0),264),function(p,n,E,U){!y(false,p,n,true)&&(n=t6(p),E=n.C,U=n.po,p.g==p||E==p.V6&&U==p)&&(l(n.Lo,p,E.apply(U,n.J)),p.A=p.T())},M),function(p,n,E){l((n=Y(p),E=Y(p),E),p,""+v(p,n))}),M),function(p){rJ(p,1)}),M),371),M,0),M)),function(p,n,E,U,c){(n=v(p,(c=v(p,(E=v(p,(U=(E=(n=Y((U=Y(p),c=Y(p),p)),Y(p)),v(p.g,U)),E)),c)),n)),0)!==U&&(n=HS(p,E,1,n,U,c),U.addEventListener(c,n,f),l(367,p,[U,c,n]))}),M),M)),0)]),function(p,n,E,U){l((U=Y((E=(n=Y(p),Y(p)),p)),U),p,v(p,n)||v(p,E))}),M),M),P),M),[Ew]),[O,B])),[mp,I])),true),M,true)},a=function(B,M,I,K){for(I=(K=(M|0)-1,[]);0<=K;K--)I[(M|0)-1-(K|0)]=B>>8*K&255;return I},t6=function(B,M,I,K,r,p){for(p=(r=Y((M=(I=(K=B[gJ]||{},Y)(B),K.Lo=Y(B),K.J=[],B.g)==B?(R(B)|0)-1:1,B)),0);p<M;p++)K.J.push(Y(B));for(K.po=v(B,r),K.C=v(B,I);M--;)K.J[M]=v(B,K.J[M]);return K},P=this||self,J,G=function(B,M,I,K,r,p){if(M.S.length){M.P=(M.d1=(M.P&&0(),B),true);try{p=M.T(),M.Z=p,M.A=p,M.h=0,K=ae(B,M),r=M.T()-M.Z,M.D+=r,r<(I?0:10)||0>=M.K--||(r=Math.floor(r),M.j.push(254>=r?r:254))}finally{M.P=false}return K}},D,Xm=function(B,M,I,K){return v((l(479,(pT((K=v(M,479),M.s&&K<M.i?(l(479,M,M.i),Uw(B,M)):l(479,M,B),I),M),M),K),M),67)},L=function(B,M,I,K,r,p,n,E,U,c,e,k,T,F){if((c=v(M,479),c)>=M.i)throw[b,31];for(E=(r=(U=0,M.U_).length,F=I,c);0<F;)n=E>>3,K=E%8,T=8-(K|0),T=T<F?T:F,k=M.s[n],B&&(e=M,e.U!=E>>6&&(e.U=E>>6,p=v(e,333),e.R=Fm(e.U,[0,0,p[1],p[2]],e.Y)),k^=M.R[n&r]),U|=(k>>8-(K|0)-(T|0)&(1<<T)-1)<<(F|0)-(T|0),E+=T,F-=T;return l(479,(B=U,M),(c|0)+(I|0)),B},Z=function(B,M){for(M=[];B--;)M.push(255*Math.random()|0);return M},WS=function(B,M,I,K){for(I=Y(B),K=0;0<M;M--)K=K<<8|R(B);l(I,B,K)},MF=function(B,M){return M=M.create().shift(),B.V.create().length||B.B.create().length||(B.V=void 0,B.B=void 0),M},sw=function(B,M,I,K,r){for(K=(B=B.replace(/\\r\\n/g,"\\n"),I=[],M=0);K<B.length;K++)r=B.charCodeAt(K),128>r?I[M++]=r:(2048>r?I[M++]=r>>6|192:(55296==(r&64512)&&K+1<B.length&&56320==(B.charCodeAt(K+1)&64512)?(r=65536+((r&1023)<<10)+(B.charCodeAt(++K)&1023),I[M++]=r>>18|240,I[M++]=r>>12&63|128):I[M++]=r>>12|224,I[M++]=r>>6&63|128),I[M++]=r&63|128);return I},NF=function(B,M){return(M=R(B),M)&128&&(M=M&127|R(B)<<7),M},ae=function(B,M,I,K){for(;M.S.length;){I=(M.v=null,M.S).pop();try{K=TP(M,I)}catch(r){S(M,r)}if(B&&M.v){B=M.v,B(function(){G(true,M,true)});break}}return K},q=P.requestIdleCallback?function(B){requestIdleCallback(function(){B()},{timeout:4})}:P.setImmediate?function(B){setImmediate(B)}:function(B){setTimeout(B,0)},LT=function(B,M){(M.push(B[0]<<24|B[1]<<16|B[2]<<8|B[3]),M.push(B[4]<<24|B[5]<<16|B[6]<<8|B[7]),M).push(B[8]<<24|B[9]<<16|B[10]<<8|B[11])},wJ=function(B,M,I,K){try{K=B[((M|0)+2)%3],B[M]=(B[M]|0)-(B[((M|0)+1)%3]|0)-(K|0)^(1==M?K<<I:K>>>I)}catch(r){throw r;}},C=function(B,M){B.S.splice(0,0,M)},Fm=function(B,M,I,K,r){for(M=M[K=M[3]|0,2]|0,r=0;14>r;r++)B=B>>>8|B<<24,B+=I|0,I=I<<3|I>>>29,B^=M+3462,I^=B,K=K>>>8|K<<24,K+=M|0,K^=r+3462,M=M<<3|M>>>29,M^=K;return[I>>>24&255,I>>>16&255,I>>>8&255,I>>>0&255,B>>>24&255,B>>>16&255,B>>>8&255,B>>>0&255]},gJ=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),d=[],BS=[],mp=(u.prototype.Nh=(u.prototype.W="toString",!(u.prototype.GA=(u.prototype.y6=void 0,void 0),1)),[]),h=[],b={},O=[],V=[],Ew=[],nT=[],X=((((D=((LT,Z,function(){})(wJ),kM,u).prototype,D.Yb=function(B,M,I){return B^((M=(M^=M<<13,M^=M>>17,(M^M<<5)&I))||(M=1),M)},D).cT=function(B,M,I,K,r){for(K=r=0;K<B.length;K++)r+=B.charCodeAt(K),r+=r<<10,r^=r>>6;return(B=(r+=r<<3,r^=r>>11,r+(r<<15))>>>0,r=new Number(B&(1<<M)-1),r)[0]=(B>>>M)%I,r},D.o=function(B,M,I,K,r){if((I="array"===bm(I)?I:[I],this).I)B(this.I);else try{r=[],K=!this.S.length,C(this,[V,r,I]),C(this,[d,B,r]),M&&!K||G(M,this,true)}catch(p){S(this,p),B(this.I)}},D).Je=function(){return Math.floor(this.T())},u.prototype.N="create",D.T=(window.performance||{}).now?function(){return this.mp+window.performance.now()}:function(){return+new Date},D.vT=function(){return Math.floor(this.D+(this.T()-this.Z))},D).s_=function(B,M,I,K,r,p){for(p=[],I=0,r=0;r<B.length;r++)for(I+=M,K=K<<M|B[r];7<I;)I-=8,p.push(K>>I&255);return p},b.constructor),y3=void 0;u.prototype.l=function(B,M){return y3=(M={},function(){return B==M?80:117}),B={},function(I,K,r,p,n,E,U,c,e,k,T,F,W,x,H){W=B,B=M;try{if(c=I[0],c==O){p=I[1];try{for(F=(T=[],n=atob(p),K=0,0);F<n.length;F++)k=n.charCodeAt(F),255<k&&(T[K++]=k&255,k>>=8),T[K++]=k;l((this.i=(this.s=T,this.s.length<<3),333),this,[0,0,0])}catch(w){m(w,this,17);return}pT(8001,this)}else if(c==V)I[1].push(v(this,229).length,v(this,115).length,v(this,28).length,v(this,253)),l(67,this,I[2]),this.L[381]&&Xm(v(this,381),this,8001);else{if(c==d){e=(H=a((v((T=I[2],this),28).length|0)+2,2),this).g,this.g=this;try{E=v(this,107),0<E.length&&g(a(E.length,2).concat(E),this,28,10),g(a(this.u,1),this,28,109),g(a(this[d].length,1),this,28),n=0,n+=v(this,371)&2047,n-=(v(this,28).length|0)+5,x=v(this,115),4<x.length&&(n-=(x.length|0)+3),0<n&&g(a(n,2).concat(Z(n)),this,28,15),4<x.length&&g(a(x.length,2).concat(x),this,28,156)}finally{this.g=e}if(r=(F=Z(2).concat(v(this,28)),F[1]=F[0]^6,F[3]=F[1]^H[0],F[4]=F[1]^H[1],this).S6(F))r="!"+r;else for(n=0,r="";n<F.length;n++)U=F[n][this.W](16),1==U.length&&(U="0"+U),r+=U;return l(253,this,(v((v(this,((K=r,v)(this,229).length=T.shift(),115)).length=T.shift(),this),28).length=T.shift(),T.shift())),K}if(c==nT)Xm(I[1],this,I[2]);else if(c==h)return Xm(I[1],this,8001)}}finally{B=W}}}();var xM,Q3=(((u.prototype[mp]=[0,0,1,1,0,1,1],u.prototype.PT=0,u).prototype.bH=0,u).prototype.S6=function(B,M,I,K){if(I=window.btoa){for(M=0,K="";M<B.length;M+=8192)K+=String.fromCharCode.apply(null,B.slice(M,M+8192));B=I(K).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else B=void 0;return B},/./),PS=O.pop.bind(u.prototype[V]),J6=(xM=jj(u.prototype.N,(Q3[u.prototype.W]=PS,{get:PS})),u.prototype.Mh=void 0,function(B,M){return(M=YM())&&1===B.eval(M.createScript("1"))?function(I){return M.createScript(I)}:function(I){return""+I}})(P);(J=P.botguard||(P.botguard={}),40)<J.m||(J.m=41,J.bg=$M,J.a=im),J.TBf_=function(B,M,I){return I=new u(M,B),[function(K){return lm(I,K)}]};}).call(this);'));
}).call(this);
                                    

#2 JavaScript::Eval (size: 18708, repeated: 1) - SHA256: e38619c8a7ac2fa8d1b881947f3fe77412afde8c61a6977d34b299f17bd648a4

                                        (function() {
    var pT = function(B, M, I, K, r, p) {
            if (!M.I) {
                M.G++;
                try {
                    for (r = (I = 0, void 0), K = M.i; --B;) try {
                        if ((p = void 0, M).V) r = MF(M, M.V);
                        else {
                            if ((I = v(M, 479), I) >= K) break;
                            r = (p = (l(236, M, I), Y)(M), v(M, p))
                        }
                        y(false, M, (r && r[BS] & 2048 ? r(M, B) : m([b, 21, p], M, 0), B), false)
                    } catch (n) {
                        v(M, 492) ? m(n, M, 22) : l(492, M, n)
                    }
                    if (!B) {
                        if (M.Nh) {
                            pT(136739882349, (M.G--, M));
                            return
                        }
                        m([b, 33], M, 0)
                    }
                } catch (n) {
                    try {
                        m(n, M, 22)
                    } catch (E) {
                        S(M, E)
                    }
                }
                M.G--
            }
        },
        $M = function(B, M, I, K) {
            function r() {}
            return K = void 0, I = im(B, function(p) {
                r && (M && q(M), K = p, r(), r = void 0)
            }, !!M)[0], {
                invoke: function(p, n, E, U) {
                    function c() {
                        K(function(e) {
                            q(function() {
                                p(e)
                            })
                        }, E)
                    }
                    if (!n) return n = I(E), p && p(n), n;
                    K ? c() : (U = r, r = function() {
                        q((U(), c))
                    })
                }
            }
        },
        Ie = function(B) {
            return B
        },
        im = function(B, M, I, K) {
            return (K = J[B.substring(0, 3) + "_"]) ? K(B.substring(3), M, I) : KT(B, M)
        },
        y = function(B, M, I, K, r, p, n, E, U) {
            if (M.u += (M.g = (r = (p = (U = 0 < (K || M.h++, M.F) && M.P && M.d1 && 1 >= M.G && !M.V && !M.v && (!K || 1 < M.O - I) && 0 == document.hidden, n = 4 == M.h) || U ? M.T() : M.A, E = p - M.A, E) >> 14, M.Y && (M.Y ^= r * (E << 2)), r) || M.g, r), n || U) M.A = p, M.h = 0;
            if (!U || p - M.Z < M.F - (B ? 255 : K ? 5 : 2)) return false;
            return ((B = v(M, (M.O = I, K) ? 236 : 479), l(479, M, M.i), M).S.push([nT, B, K ? I + 1 : I]), M).v = q, true
        },
        N = function(B, M, I) {
            (l(B, I, M), M)[Ew] = 2796
        },
        rJ = function(B, M, I, K) {
            g(a(v(B, (K = (I = Y(B), Y(B)), I)), M), B, K)
        },
        Uw = function(B, M) {
            l(479, ((M.I7.push(M.L.slice()), M.L)[479] = void 0, M), B)
        },
        jj = function(B, M) {
            return X[B](X.prototype, {
                parent: M,
                document: M,
                prototype: M,
                stack: M,
                splice: M,
                floor: M,
                length: M,
                replace: M,
                console: M,
                call: M,
                propertyIsEnumerable: M,
                pop: M
            })
        },
        vS = function(B, M, I, K, r) {
            ((K = v(M, (r = Y((K = (I = B & 3, B &= 4, Y(M)), M)), K)), B) && (K = sw("" + K)), I && g(a(K.length, 2), M, r), g)(K, M, r)
        },
        Y = function(B, M) {
            if (B.V) return MF(B, B.B);
            return M = L(true, B, 8), M & 128 && (M ^= 128, B = L(true, B, 2), M = (M << 2) + (B | 0)), M
        },
        KT = function(B, M) {
            return M(function(I) {
                I(B)
            }), [function() {
                return B
            }]
        },
        lm = function(B, M, I) {
            return B.o(function(K) {
                I = K
            }, false, M), I
        },
        S = function(B, M) {
            B.I = ((B.I ? B.I + "~" : "E:") + M.message + ":" + M.stack).slice(0, 2048)
        },
        YM = function(B, M) {
            if ((B = (M = null, P.trustedTypes), !B) || !B.createPolicy) return M;
            try {
                M = B.createPolicy("bg", {
                    createHTML: Ie,
                    createScript: Ie,
                    createScriptURL: Ie
                })
            } catch (I) {
                P.console && P.console.error(I.message)
            }
            return M
        },
        m = function(B, M, I, K, r, p) {
            if (!M.X) {
                if (B = v(M, (0 == (r = v(M, ((K = void 0, B && B[0] === b) && (I = B[1], K = B[2], B = void 0), 107)), r.length) && (p = v(M, 236) >> 3, r.push(I, p >> 8 & 255, p & 255), void 0 != K && r.push(K & 255)), I = "", B && (B.message && (I += B.message), B.stack && (I += ":" + B.stack)), 253)), 3 < B) {
                    K = (I = (B -= (I = I.slice(0, (B | 0) - 3), (I.length | 0) + 3), sw)(I), M).g, M.g = M;
                    try {
                        g(a(I.length, 2).concat(I), M, 115, 9)
                    } finally {
                        M.g = K
                    }
                }
                l(253, M, B)
            }
        },
        v = function(B, M) {
            if (void 0 === (B = B.L[M], B)) throw [b, 30, M];
            if (B.value) return B.create();
            return (B.create(5 * M * M + -16 * M + 80), B).prototype
        },
        u = function(B, M, I) {
            I = this;
            try {
                ej(M, this, B)
            } catch (K) {
                S(this, K), B(function(r) {
                    r(I.I)
                })
            }
        },
        f = {
            passive: true,
            capture: true
        },
        g = function(B, M, I, K, r, p) {
            if (M.g == M)
                for (r = v(M, I), 115 == I ? (I = function(n, E, U, c) {
                        if ((U = ((E = r.length, E) | 0) - 4 >> 3, r.iH) != U) {
                            U = (U << 3) - (c = [0, 0, p[r.iH = U, 1], p[2]], 4);
                            try {
                                r.kb = Fm(oe(r, (U | 0) + 4), c, oe(r, U))
                            } catch (e) {
                                throw e;
                            }
                        }
                        r.push(r.kb[E & 7] ^ n)
                    }, p = v(M, 133)) : I = function(n) {
                        r.push(n)
                    }, K && I(K & 255), M = B.length, K = 0; K < M; K++) I(B[K])
        },
        oe = function(B, M) {
            return B[M] << 24 | B[(M | 0) + 1] << 16 | B[(M | 0) + 2] << 8 | B[(M | 0) + 3]
        },
        R = function(B) {
            return B.V ? MF(B, B.B) : L(true, B, 8)
        },
        TP = function(B, M, I, K, r) {
            if ((K = M[0], K) == V) B.K = 25, B.l(M);
            else if (K == d) {
                I = M[1];
                try {
                    r = B.I || B.l(M)
                } catch (p) {
                    S(B, p), r = B.I
                }
                I(r)
            } else if (K == nT) B.l(M);
            else if (K == O) B.l(M);
            else if (K == mp) {
                try {
                    for (r = 0; r < B.H.length; r++) try {
                        I = B.H[r], I[0][I[1]](I[2])
                    } catch (p) {}
                } catch (p) {}(0, M[1])((B.H = [], function(p, n) {
                    B.o(p, true, n)
                }), function(p) {
                    (C(B, (p = !B.S.length, [BS])), p) && G(true, B, false)
                })
            } else {
                if (K == h) return r = M[2], l(452, B, M[6]), l(67, B, r), B.l(M);
                K == BS ? (B.s = [], B.L = null, B.j = []) : K == Ew && "loading" === P.document.readyState && (B.v = function(p, n) {
                    function E() {
                        n || (n = true, p())
                    }
                    P.document.addEventListener("DOMContentLoaded", E, (n = false, f)), P.addEventListener("load", E, f)
                })
            }
        },
        kM = function(B, M, I) {
            if (3 == B.length) {
                for (I = 0; 3 > I; I++) M[I] += B[I];
                for (I = (B = [13, 8, 13, 12, 16, 5, 3, 10, 15], 0); 9 > I; I++) M[3](M, I % 3, B[I])
            }
        },
        bm = function(B, M, I) {
            if (M = typeof B, "object" == M)
                if (B) {
                    if (B instanceof Array) return "array";
                    if (B instanceof Object) return M;
                    if ("[object Window]" == (I = Object.prototype.toString.call(B), I)) return "object";
                    if ("[object Array]" == I || "number" == typeof B.length && "undefined" != typeof B.splice && "undefined" != typeof B.propertyIsEnumerable && !B.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == I || "undefined" != typeof B.call && "undefined" != typeof B.propertyIsEnumerable && !B.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == M && "undefined" == typeof B.call) return "object";
            return M
        },
        HS = function(B, M, I, K, r, p) {
            function n() {
                if (B.g == B) {
                    if (B.L) {
                        var E = [h, K, M, void 0, r, p, arguments];
                        if (2 == I) var U = G(false, B, (C(B, E), false));
                        else if (1 == I) {
                            var c = !B.S.length;
                            C(B, E), c && G(false, B, false)
                        } else U = TP(B, E);
                        return U
                    }
                    r && p && r.removeEventListener(p, n, f)
                }
            }
            return n
        },
        Sj = function(B, M, I, K, r, p, n, E) {
            return (p = X[M.N]((K = [90, -16, -(E = B & 7, 75), -(n = y3, 71), 41, 45, K, -100, 22, -83], M.g1)), p[M.N] = function(U) {
                E += 6 + 7 * (r = U, B), E &= 7
            }, p).concat = function(U) {
                return (r = (U = (U = I % 16 + 1, -2640 * r - U * r - -528 * I * r + 5 * I * I * U + (n() | 0) * U - 165 * I * I * r) + 33 * r * r + K[E + 35 & 7] * I * U + E, void 0), U = K[U], K)[(E + 21 & 7) + (B & 2)] = U, K[E + (B & 2)] = -16, U
            }, p
        },
        qF = function(B, M, I) {
            return I = X[M.N](M.TA), I[M.N] = function() {
                return B
            }, I.concat = function(K) {
                B = K
            }, I
        },
        l = function(B, M, I) {
            if (479 == B || 236 == B) M.L[B] ? M.L[B].concat(I) : M.L[B] = qF(I, M);
            else {
                if (M.X && 333 != B) return;
                28 == B || 115 == B || 229 == B || 107 == B || 133 == B ? M.L[B] || (M.L[B] = Sj(30, M, B, I)) : M.L[B] = Sj(137, M, B, I)
            }
            333 == B && (M.Y = L(false, M, 32), M.U = void 0)
        },
        ej = function(B, M, I, K, r) {
            for (r = (M.TA = ((M.U_ = M[d], M).a7 = (M.BT = xM, Q3), M.g1 = jj(M.N, {get: function() {
                        return this.concat()
                    }
                }), X)[M.N](M.g1, {
                    value: {
                        value: {}
                    }
                }), []), K = 0; 128 > K; K++) r[K] = String.fromCharCode(K);
            G((C(M, (C(M, (C((l(185, (N(410, (l(28, M, [160, 0, (N(0, function(p, n, E) {
                y(false, p, n, true) || (n = Y(p), E = Y(p), l(E, p, function(U) {
                    return eval(U)
                }(J6(v(p.g, n)))))
            }, (N(405, (N(97, function(p, n, E, U, c, e, k, T, F, W, x, H) {
                function w(Q, t) {
                    for (; c < Q;) k |= R(p) << c, c += 8;
                    return k >>= (t = (c -= Q, k & (1 << Q) - 1), Q), t
                }
                for (F = (T = (W = (e = ((k = (U = Y(p), c = 0), w(3)) | 0) + 1, w)(5), []), H = 0); F < W; F++) E = w(1), T.push(E), H += E ? 0 : 1;
                for (x = (F = (H = ((H | 0) - 1).toString(2).length, 0), []); F < W; F++) T[F] || (x[F] = w(H));
                for (H = 0; H < W; H++) T[H] && (x[H] = Y(p));
                for (n = []; e--;) n.push(v(p, Y(p)));
                N(U, function(Q, t, z, A, cS) {
                    for (t = 0, z = [], cS = []; t < W; t++) {
                        if (A = x[t], !T[t]) {
                            for (; A >= z.length;) z.push(Y(Q));
                            A = z[A]
                        }
                        cS.push(A)
                    }
                    Q.B = (Q.V = qF(n.slice(), Q), qF(cS, Q))
                }, p)
            }, (l((N(53, (N(75, (N((M.ZP = (N(85, (l((N(480, function(p, n, E, U) {
                l((E = (n = (U = Y((n = (E = Y(p), Y)(p), p)), v)(p, n), v(p, E) == n), U), p, +E)
            }, ((N(124, (l(115, M, (((N(247, (N(286, function(p, n, E, U) {
                if (E = p.I7.pop()) {
                    for (U = R(p); 0 < U; U--) n = Y(p), E[n] = p.L[n];
                    E[253] = p.L[E[107] = p.L[107], 253], p.L = E
                } else l(479, p, p.i)
            }, (l(133, M, (N(27, function(p, n, E, U) {
                (E = (U = (E = Y(p), Y)(p), n = Y(p), v(p, E)), U = v(p, U), l)(n, p, E in U | 0)
            }, (l(492, M, (N(338, (N(149, function(p) {
                rJ(p, 4)
            }, ((N(80, function(p) {
                vS(3, p)
            }, (N(143, (l(107, (N(90, function(p, n, E, U, c, e) {
                if (!y(true, p, n, true)) {
                    if (p = v((U = (c = (n = v((E = Y((n = Y((c = (U = Y(p), Y)(p), p)), p)), p), n), v(p, c)), v)(p, U), p), E), "object" == bm(U)) {
                        for (e in E = [], U) E.push(e);
                        U = E
                    }
                    for (n = 0 < n ? n : 1, e = U.length, E = 0; E < e; E += n) c(U.slice(E, (E | 0) + (n | 0)), p)
                }
            }, (N(280, function(p, n, E, U) {
                U = v(p, (n = Y((U = Y(p), p)), U)), E = v(p, n), l(n, p, E + U)
            }, (l(367, M, ((N((l(253, (N((N(453, function() {}, (N(210, function(p, n, E, U) {
                (U = (E = Y(p), n = Y(p), Y(p)), p.g) == p && (U = v(p, U), n = v(p, n), v(p, E)[n] = U, 333 == E && (p.U = void 0, 2 == n && (p.Y = L(false, p, 32), p.U = void 0)))
            }, (N(220, function(p, n, E, U) {
                n = v((E = v(p, (U = (n = (E = Y(p), Y(p)), Y(p)), E)), p), n), l(U, p, E[n])
            }, (N(186, function(p, n) {
                (n = v(p, Y(p)), Uw)(n, p.g)
            }, (l(236, M, ((M.mp = (M.K = 25, (M.F = 0, M.B = (M.Z = (K = window.performance || {}, 0), M.lH = (M.h = void 0, M.O = 8001, (M.D = 0, M.P = false, M).G = (M.I7 = [], 0), M.U = (M.H = [], void 0), M.A = 0, M.S = [], M.V6 = (M.I = void 0, function(p) {
                this.g = p
            }), (M.d1 = !(M.X = false, 1), M).u = (M.s = (M.R = void 0, M.V = void 0, M.v = null, M.j = (M.Y = void 0, []), []), 1), M.i = 0, M.L = [], 0), void 0), M).g = M, K.timeOrigin) || (K.timing || {}).navigationStart || 0, l)(479, M, 0), 0)), M)), M)), l(67, M, {}), M)), M)), 202), function(p, n, E, U, c) {
                for (n = (c = NF((U = Y(p), p)), E = 0, []); E < c; E++) n.push(R(p));
                l(U, p, n)
            }, M), M), 2048), 510), function(p, n, E) {
                l((n = bm((n = v(p, (n = Y(p), E = Y(p), n)), n)), E), p, n)
            }, M), N)(318, function(p) {
                WS(p, 4)
            }, M), 0)), M)), M)), M), []), function(p, n, E, U, c, e, k) {
                for (U = (n = (k = v((c = (e = NF((E = Y(p), p)), ""), p), 98), k.length), 0); e--;) U = ((U | 0) + (NF(p) | 0)) % n, c += r[k[U]];
                l(E, p, c)
            }), M), M)), N)(436, function(p, n) {
                (p = v((n = Y(p), p.g), n), p[0]).removeEventListener(p[1], p[2], f)
            }, M), M.Ae = 0, M)), function(p, n, E, U, c) {
                l((n = v(p, (E = (n = (c = (E = (U = Y(p), Y(p)), Y(p)), Y(p)), c = v(p, c), v)(p, E), n)), U), p, HS(p, c, n, E))
            }), M), 971)), M)), [0, 0, 0])), M)), function(p, n, E, U, c, e) {
                y(false, p, n, true) || (e = t6(p.g), U = e.po, c = e.C, n = e.Lo, e = e.J, E = e.length, U = 0 == E ? new U[c] : 1 == E ? new U[c](e[0]) : 2 == E ? new U[c](e[0], e[1]) : 3 == E ? new U[c](e[0], e[1], e[2]) : 4 == E ? new U[c](e[0], e[1], e[2], e[3]) : 2(), l(n, p, U))
            }), M), l)(9, M, M), M).w1 = 0, Z)(4)), function(p, n, E, U) {
                n = (E = (U = Y(p), R(p)), Y(p)), l(n, p, v(p, U) >>> E)
            }), M), N)(14, function(p, n, E) {
                n = v(p, (E = 0 != v((n = (E = Y(p), Y(p)), p), E), n)), E && l(479, p, n)
            }, M), M)), 229), M, []), function(p) {
                vS(4, p)
            }), M), 0), 264), function(p, n, E, U) {
                !y(false, p, n, true) && (n = t6(p), E = n.C, U = n.po, p.g == p || E == p.V6 && U == p) && (l(n.Lo, p, E.apply(U, n.J)), p.A = p.T())
            }, M), function(p, n, E) {
                l((n = Y(p), E = Y(p), E), p, "" + v(p, n))
            }), M), function(p) {
                rJ(p, 1)
            }), M), 371), M, 0), M)), function(p, n, E, U, c) {
                (n = v(p, (c = v(p, (E = v(p, (U = (E = (n = Y((U = Y(p), c = Y(p), p)), Y(p)), v(p.g, U)), E)), c)), n)), 0) !== U && (n = HS(p, E, 1, n, U, c), U.addEventListener(c, n, f), l(367, p, [U, c, n]))
            }), M), M)), 0)]), function(p, n, E, U) {
                l((U = Y((E = (n = Y(p), Y(p)), p)), U), p, v(p, n) || v(p, E))
            }), M), M), P), M), [Ew]), [O, B])), [mp, I])), true), M, true)
        },
        a = function(B, M, I, K) {
            for (I = (K = (M | 0) - 1, []); 0 <= K; K--) I[(M | 0) - 1 - (K | 0)] = B >> 8 * K & 255;
            return I
        },
        t6 = function(B, M, I, K, r, p) {
            for (p = (r = Y((M = (I = (K = B[gJ] || {}, Y)(B), K.Lo = Y(B), K.J = [], B.g) == B ? (R(B) | 0) - 1 : 1, B)), 0); p < M; p++) K.J.push(Y(B));
            for (K.po = v(B, r), K.C = v(B, I); M--;) K.J[M] = v(B, K.J[M]);
            return K
        },
        P = this || self,
        J, G = function(B, M, I, K, r, p) {
            if (M.S.length) {
                M.P = (M.d1 = (M.P && 0(), B), true);
                try {
                    p = M.T(), M.Z = p, M.A = p, M.h = 0, K = ae(B, M), r = M.T() - M.Z, M.D += r, r < (I ? 0 : 10) || 0 >= M.K-- || (r = Math.floor(r), M.j.push(254 >= r ? r : 254))
                } finally {
                    M.P = false
                }
                return K
            }
        },
        D, Xm = function(B, M, I, K) {
            return v((l(479, (pT((K = v(M, 479), M.s && K < M.i ? (l(479, M, M.i), Uw(B, M)) : l(479, M, B), I), M), M), K), M), 67)
        },
        L = function(B, M, I, K, r, p, n, E, U, c, e, k, T, F) {
            if ((c = v(M, 479), c) >= M.i) throw [b, 31];
            for (E = (r = (U = 0, M.U_).length, F = I, c); 0 < F;) n = E >> 3, K = E % 8, T = 8 - (K | 0), T = T < F ? T : F, k = M.s[n], B && (e = M, e.U != E >> 6 && (e.U = E >> 6, p = v(e, 333), e.R = Fm(e.U, [0, 0, p[1], p[2]], e.Y)), k ^= M.R[n & r]), U |= (k >> 8 - (K | 0) - (T | 0) & (1 << T) - 1) << (F | 0) - (T | 0), E += T, F -= T;
            return l(479, (B = U, M), (c | 0) + (I | 0)), B
        },
        Z = function(B, M) {
            for (M = []; B--;) M.push(255 * Math.random() | 0);
            return M
        },
        WS = function(B, M, I, K) {
            for (I = Y(B), K = 0; 0 < M; M--) K = K << 8 | R(B);
            l(I, B, K)
        },
        MF = function(B, M) {
            return M = M.create().shift(), B.V.create().length || B.B.create().length || (B.V = void 0, B.B = void 0), M
        },
        sw = function(B, M, I, K, r) {
            for (K = (B = B.replace(/\r\n/g, "\n"), I = [], M = 0); K < B.length; K++) r = B.charCodeAt(K), 128 > r ? I[M++] = r : (2048 > r ? I[M++] = r >> 6 | 192 : (55296 == (r & 64512) && K + 1 < B.length && 56320 == (B.charCodeAt(K + 1) & 64512) ? (r = 65536 + ((r & 1023) << 10) + (B.charCodeAt(++K) & 1023), I[M++] = r >> 18 | 240, I[M++] = r >> 12 & 63 | 128) : I[M++] = r >> 12 | 224, I[M++] = r >> 6 & 63 | 128), I[M++] = r & 63 | 128);
            return I
        },
        NF = function(B, M) {
            return (M = R(B), M) & 128 && (M = M & 127 | R(B) << 7), M
        },
        ae = function(B, M, I, K) {
            for (; M.S.length;) {
                I = (M.v = null, M.S).pop();
                try {
                    K = TP(M, I)
                } catch (r) {
                    S(M, r)
                }
                if (B && M.v) {
                    B = M.v, B(function() {
                        G(true, M, true)
                    });
                    break
                }
            }
            return K
        },
        q = P.requestIdleCallback ? function(B) {
            requestIdleCallback(function() {
                B()
            }, {
                timeout: 4
            })
        } : P.setImmediate ? function(B) {
            setImmediate(B)
        } : function(B) {
            setTimeout(B, 0)
        },
        LT = function(B, M) {
            (M.push(B[0] << 24 | B[1] << 16 | B[2] << 8 | B[3]), M.push(B[4] << 24 | B[5] << 16 | B[6] << 8 | B[7]), M).push(B[8] << 24 | B[9] << 16 | B[10] << 8 | B[11])
        },
        wJ = function(B, M, I, K) {
            try {
                K = B[((M | 0) + 2) % 3], B[M] = (B[M] | 0) - (B[((M | 0) + 1) % 3] | 0) - (K | 0) ^ (1 == M ? K << I : K >>> I)
            } catch (r) {
                throw r;
            }
        },
        C = function(B, M) {
            B.S.splice(0, 0, M)
        },
        Fm = function(B, M, I, K, r) {
            for (M = M[K = M[3] | 0, 2] | 0, r = 0; 14 > r; r++) B = B >>> 8 | B << 24, B += I | 0, I = I << 3 | I >>> 29, B ^= M + 3462, I ^= B, K = K >>> 8 | K << 24, K += M | 0, K ^= r + 3462, M = M << 3 | M >>> 29, M ^= K;
            return [I >>> 24 & 255, I >>> 16 & 255, I >>> 8 & 255, I >>> 0 & 255, B >>> 24 & 255, B >>> 16 & 255, B >>> 8 & 255, B >>> 0 & 255]
        },
        gJ = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        d = [],
        BS = [],
        mp = (u.prototype.Nh = (u.prototype.W = "toString", !(u.prototype.GA = (u.prototype.y6 = void 0, void 0), 1)), []),
        h = [],
        b = {},
        O = [],
        V = [],
        Ew = [],
        nT = [],
        X = ((((D = ((LT, Z, function() {})(wJ), kM, u).prototype, D.Yb = function(B, M, I) {
            return B ^ ((M = (M ^= M << 13, M ^= M >> 17, (M ^ M << 5) & I)) || (M = 1), M)
        }, D).cT = function(B, M, I, K, r) {
            for (K = r = 0; K < B.length; K++) r += B.charCodeAt(K), r += r << 10, r ^= r >> 6;
            return (B = (r += r << 3, r ^= r >> 11, r + (r << 15)) >>> 0, r = new Number(B & (1 << M) - 1), r)[0] = (B >>> M) % I, r
        }, D.o = function(B, M, I, K, r) {
            if ((I = "array" === bm(I) ? I : [I], this).I) B(this.I);
            else try {
                r = [], K = !this.S.length, C(this, [V, r, I]), C(this, [d, B, r]), M && !K || G(M, this, true)
            } catch (p) {
                S(this, p), B(this.I)
            }
        }, D).Je = function() {
            return Math.floor(this.T())
        }, u.prototype.N = "create", D.T = (window.performance || {}).now ? function() {
            return this.mp + window.performance.now()
        } : function() {
            return +new Date
        }, D.vT = function() {
            return Math.floor(this.D + (this.T() - this.Z))
        }, D).s_ = function(B, M, I, K, r, p) {
            for (p = [], I = 0, r = 0; r < B.length; r++)
                for (I += M, K = K << M | B[r]; 7 < I;) I -= 8, p.push(K >> I & 255);
            return p
        }, b.constructor),
        y3 = void 0;
    u.prototype.l = function(B, M) {
        return y3 = (M = {}, function() {
                return B == M ? 80 : 117
            }), B = {},
            function(I, K, r, p, n, E, U, c, e, k, T, F, W, x, H) {
                W = B, B = M;
                try {
                    if (c = I[0], c == O) {
                        p = I[1];
                        try {
                            for (F = (T = [], n = atob(p), K = 0, 0); F < n.length; F++) k = n.charCodeAt(F), 255 < k && (T[K++] = k & 255, k >>= 8), T[K++] = k;
                            l((this.i = (this.s = T, this.s.length << 3), 333), this, [0, 0, 0])
                        } catch (w) {
                            m(w, this, 17);
                            return
                        }
                        pT(8001, this)
                    } else if (c == V) I[1].push(v(this, 229).length, v(this, 115).length, v(this, 28).length, v(this, 253)), l(67, this, I[2]), this.L[381] && Xm(v(this, 381), this, 8001);
                    else {
                        if (c == d) {
                            e = (H = a((v((T = I[2], this), 28).length | 0) + 2, 2), this).g, this.g = this;
                            try {
                                E = v(this, 107), 0 < E.length && g(a(E.length, 2).concat(E), this, 28, 10), g(a(this.u, 1), this, 28, 109), g(a(this[d].length, 1), this, 28), n = 0, n += v(this, 371) & 2047, n -= (v(this, 28).length | 0) + 5, x = v(this, 115), 4 < x.length && (n -= (x.length | 0) + 3), 0 < n && g(a(n, 2).concat(Z(n)), this, 28, 15), 4 < x.length && g(a(x.length, 2).concat(x), this, 28, 156)
                            } finally {
                                this.g = e
                            }
                            if (r = (F = Z(2).concat(v(this, 28)), F[1] = F[0] ^ 6, F[3] = F[1] ^ H[0], F[4] = F[1] ^ H[1], this).S6(F)) r = "!" + r;
                            else
                                for (n = 0, r = ""; n < F.length; n++) U = F[n][this.W](16), 1 == U.length && (U = "0" + U), r += U;
                            return l(253, this, (v((v(this, ((K = r, v)(this, 229).length = T.shift(), 115)).length = T.shift(), this), 28).length = T.shift(), T.shift())), K
                        }
                        if (c == nT) Xm(I[1], this, I[2]);
                        else if (c == h) return Xm(I[1], this, 8001)
                    }
                } finally {
                    B = W
                }
            }
    }();
    var xM, Q3 = (((u.prototype[mp] = [0, 0, 1, 1, 0, 1, 1], u.prototype.PT = 0, u).prototype.bH = 0, u).prototype.S6 = function(B, M, I, K) {
            if (I = window.btoa) {
                for (M = 0, K = ""; M < B.length; M += 8192) K += String.fromCharCode.apply(null, B.slice(M, M + 8192));
                B = I(K).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else B = void 0;
            return B
        }, /./),
        PS = O.pop.bind(u.prototype[V]),
        J6 = (xM = jj(u.prototype.N, (Q3[u.prototype.W] = PS, {get: PS
        })), u.prototype.Mh = void 0, function(B, M) {
            return (M = YM()) && 1 === B.eval(M.createScript("1")) ? function(I) {
                return M.createScript(I)
            } : function(I) {
                return "" + I
            }
        })(P);
    (J = P.botguard || (P.botguard = {}), 40) < J.m || (J.m = 41, J.bg = $M, J.a = im), J.TBf_ = function(B, M, I) {
        return I = new u(M, B), [function(K) {
            return lm(I, K)
        }]
    };
}).call(this);
                                    

#3 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 46803f53adbea35f28f34cfbbccddebf6ae29454b5d15cde348e4c577386337d

                                        0,
function(p) {
    WS(p, 1)
}
                                    

#4 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 973d9bb2938645d67a00f9ca20209eea3bbe8b556d0b25d5caf313f1644ad067

                                        0,
function(p) {
    WS(p, 2)
}
                                    

#5 JavaScript::Eval (size: 11, repeated: 1) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16

                                        addthis.cbs
                                    

#6 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f

                                        _ate.cbs
                                    

#7 JavaScript::Eval (size: 4932, repeated: 1) - SHA256: 96d11c20706a367edb29dcfe978b74c110218f1a8f4f198c791cbc404b36873b

                                        var nopage;
var jenis;
var nomerhal;
var lblname1;
halamanblogger();

function loophalaman(banyakdata) {
    var html = '';
    nomerkiri = parseInt(numshowpage / 2);
    if (nomerkiri == numshowpage - nomerkiri) {
        numshowpage = nomerkiri * 2 + 1
    }
    mulai = nomerhal - nomerkiri;
    if (mulai < 1) mulai = 1;
    maksimal = parseInt(banyakdata / postperpage) + 1;
    if (maksimal - 1 == banyakdata / postperpage) maksimal = maksimal - 1;
    akhir = mulai + numshowpage - 1;
    if (akhir > maksimal) akhir = maksimal;
    html += "<span class='showpageOf'>Page " + nomerhal + ' of ' + maksimal + "</span>";
    var prevnomer = parseInt(nomerhal) - 1;
    if (nomerhal > 1) {
        if (nomerhal == 2) {
            if (jenis == "page") {
                html += '<span class="showpage"><a href="' + home_page + '">' + upPageWord + '</a></span>'
            } else {
                html += '<span class="showpageNum"><a href="/search/label/' + lblname1 + '?&max-results=' + postperpage + '">' + upPageWord + '</a></span>'
            }
        } else {
            if (jenis == "page") {
                html += '<span class="showpageNum"><a href="#" onclick="redirectpage(' + prevnomer + ');return false">' + upPageWord + '</a></span>'
            } else {
                html += '<span class="showpageNum"><a href="#" onclick="redirectlabel(' + prevnomer + ');return false">' + upPageWord + '</a></span>'
            }
        }
    }
    for (var jj = mulai; jj <= akhir; jj++) {
        if (nomerhal == jj) {
            html += '<span class="showpagePoint">' + jj + '</span>'
        } else if (jj == 1) {
            if (jenis == "page") {
                html += '<span class="showpageNum"><a href="' + home_page + '">1</a></span>'
            } else {
                html += '<span class="showpageNum"><a href="/search/label/' + lblname1 + '?&max-results=' + postperpage + '">1</a></span>'
            }
        } else {
            if (jenis == "page") {
                html += '<span class="showpageNum"><a href="#" onclick="redirectpage(' + jj + ');return false">' + jj + '</a></span>'
            } else {
                html += '<span class="showpageNum"><a href="#" onclick="redirectlabel(' + jj + ');return false">' + jj + '</a></span>'
            }
        }
    }
    var nextnomer = parseInt(nomerhal) + 1;
    if (nomerhal < maksimal) {
        if (jenis == "page") {
            html += '<span class="showpageNum"><a href="#" onclick="redirectpage(' + nextnomer + ');return false">' + downPageWord + '</a></span>'
        } else {
            html += '<span class="showpageNum"><a href="#" onclick="redirectlabel(' + nextnomer + ');return false">' + downPageWord + '</a></span>'
        }
    }
    html += '<div><a href="http://www.way2blogging.org" title="Get this Widget!" style="position:absolute;font-size: 7pt; float: right; padding: 3px;" target="_blank"><img border="0" src="http://img1.blogblog.com/img/blank.gif" width="3" height="3" /></a></div>';
    var pageArea = document.getElementsByName("pageArea");
    var blogPager = document.getElementById("blog-pager");
    for (var p = 0; p < pageArea.length; p++) {
        pageArea[p].innerHTML = html
    }
    if (pageArea && pageArea.length > 0) {
        html = ''
    }
    if (blogPager) {
        blogPager.innerHTML = html
    }
}

function hitungtotaldata(root) {
    var feed = root.feed;
    var totaldata = parseInt(feed.openSearch$totalResults.$t, 10);
    loophalaman(totaldata)
}

function halamanblogger() {
    var thisUrl = urlactivepage;
    if (thisUrl.indexOf("/search/label/") != -1) {
        if (thisUrl.indexOf("?updated-max") != -1) {
            lblname1 = thisUrl.substring(thisUrl.indexOf("/search/label/") + 14, thisUrl.indexOf("?updated-max"))
        } else {
            lblname1 = thisUrl.substring(thisUrl.indexOf("/search/label/") + 14, thisUrl.indexOf("?&max"))
        }
    }
    if (thisUrl.indexOf("?q=") == -1 && thisUrl.indexOf(".html") == -1) {
        if (thisUrl.indexOf("/search/label/") == -1) {
            jenis = "page";
            if (urlactivepage.indexOf("#PageNo=") != -1) {
                nomerhal = urlactivepage.substring(urlactivepage.indexOf("#PageNo=") + 8, urlactivepage.length)
            } else {
                nomerhal = 1
            }
            document.write("<script src=\"" + home_page + "feeds/posts/summary?max-results=1&alt=json-in-script&callback=hitungtotaldata\"><\/script>")
        } else {
            jenis = "label";
            if (thisUrl.indexOf("&max-results=") == -1) {
                postperpage = 20
            }
            if (urlactivepage.indexOf("#PageNo=") != -1) {
                nomerhal = urlactivepage.substring(urlactivepage.indexOf("#PageNo=") + 8, urlactivepage.length)
            } else {
                nomerhal = 1
            }
            document.write('<script src="' + home_page + 'feeds/posts/summary/-/' + lblname1 + '?alt=json-in-script&callback=hitungtotaldata&max-results=1" ><\/script>')
        }
    }
}

function redirectpage(numberpage) {
    jsonstart = (numberpage - 1) * postperpage;
    nopage = numberpage;
    var nBody = document.getElementsByTagName('head')[0];
    var newInclude = document.createElement('script');
    newInclude.type = 'text/javascript';
    newInclude.setAttribute("src", home_page + "feeds/posts/summary?start-index=" + jsonstart + "&max-results=1&alt=json-in-script&callback=finddatepost");
    nBody.appendChild(newInclude)
}

function redirectlabel(numberpage) {
    jsonstart = (numberpage - 1) * postperpage;
    nopage = numberpage;
    var nBody = document.getElementsByTagName('head')[0];
    var newInclude = document.createElement('script');
    newInclude.type = 'text/javascript';
    newInclude.setAttribute("src", home_page + "feeds/posts/summary/-/" + lblname1 + "?start-index=" + jsonstart + "&max-results=1&alt=json-in-script&callback=finddatepost");
    nBody.appendChild(newInclude)
}

function finddatepost(root) {
    post = root.feed.entry[0];
    var timestamp1 = post.published.$t.substring(0, 19) + post.published.$t.substring(23, 29);
    var timestamp = encodeURIComponent(timestamp1);
    if (jenis == "page") {
        var alamat = "/search?updated-max=" + timestamp + "&max-results=" + postperpage + "#PageNo=" + nopage
    } else {
        var alamat = "/search/label/" + lblname1 + "?updated-max=" + timestamp + "&max-results=" + postperpage + "#PageNo=" + nopage
    }
    location.href = alamat
}
                                    

#8 JavaScript::Eval (size: 62, repeated: 1) - SHA256: ac0459c568af29bd816e7904e26a2f614a0d16ee451bbad2e29ef2f5a4eb566c

                                        0,
function(p, n, E) {
    l((n = (n = Y(p), E = Y(p), p.L)[n] && v(p, n), E), p, n)
}
                                    

Executed Writes (8)

#1 JavaScript::Write (size: 63, repeated: 1) - SHA256: 374072120339b51574d0f3501e72e4d589adea7415edd1f7d7fff2d9305f24d5

                                        < style type = "text/css" >
    # mygallery2 {
        overflow: hidden;
    } < /style>
                                    

#2 JavaScript::Write (size: 371, repeated: 1) - SHA256: 836ad94cd109d24a81a23b75da6da2fa2b4c33bbc6718256053b2f4a232eee47

                                        < img src = "https://geoloc5.geostats.ovh:4433/private/geoloc/pointeur.gif?|p5cxp9tnhs99||1024*1280|linux+64|en|24|1665060570|||firefox|96||NO|59.945202|10.755900||Blix+Solutions|1665060559|geoglobe|7200|1665060559|||https%3A//cityvilleworldsam.blogspot.com/2012/10/farmville-2-regalos.html|NULL"
border = "0"
width = "1"
height = "1"
alt = "geoglobe8"
name = "pointeur_geoglobe8" >
                                    

#3 JavaScript::Write (size: 483, repeated: 1) - SHA256: 629e15da6acdc012df7d305a57bed13611536ae4a6ba285e9b1db247861c9207

                                        < iframe src = "https://geoloc5.geostats.ovh/private/geoglobe_iframe_css_64.php?compte=p5cxp9tnhs99&fc=000000&p=&tp=Click for detail&skin=0&anim=1&f=Verdana&s=10&ca=00FF00&ci=FF0000&onl=Online&ofl=undefined&ttot=Total&cbg=FFFFFF&cbg2=000000&cbg3=undefined&cbg4=undefined&b=1&dn=0&wci=&wcc=&wcn=&bgskin=16&ts=150"
width = "150"
height = "170"
bormeBorder = "0"
scrolling = "no"
allowTransparency = "true"
marginheight = "0"
marginwidth = "0"
style = "border-width: 0px;margin:0px;padding:0px;" > < /iframe>
                                    

#4 JavaScript::Write (size: 4, repeated: 1) - SHA256: b1ab1e892617f210425f658cf1d361b5489028c8771b56d845fe1c62c1fbc8b0

                                        2022
                                    

#5 JavaScript::Write (size: 2866, repeated: 1) - SHA256: bd9b9037f2231777bcc799f76eeeae2e5a01663cce765e72e2ed1bda49cc926c

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body class="goog-te-banner" scroll="no" border=0 dir="ltr"><table border=0 cellspacing=0 cellpadding=0 width=100% height=100%><tr valign=middle><td width=1 nowrap><a href="https:/ / translate.google.com " class="
goog - logo - link " target="
_blank "><img src="
https: //www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png" alt="Google Oversetter"></a></td><td width=1><img src="https://www.google.com/images/cleardot.gif" width="9" height="15" title="Innholdet p� denne sikre siden sendes til Google via en sikker tilkobling for � bli oversatt." alt="Innholdet p� denne sikre siden sendes til Google via en sikker tilkobling for � bli oversatt." style="background-image:url(https://translate.googleapis.com/translate_static/img/te_ctrl3.gif);background-position:-56px 0px;margin:0 4px"></td><td class="goog-te-banner-margin"></td><td><table border=0 cellspacing=0 cellpadding=0 height=100%><tr id=":1.promptSection" style="display:none" valign=middle><td nowrap><span class="goog-te-banner-content">Vis denne siden p�: <span id=":1.promptTargetLang"></span></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":1.confirm"><b>Oversett</b></button></div></div></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":1.noAutoPopup"></button></div></div></td></tr><tr id=":1.progressSection" style="display:none" valign=middle><td><span class="goog-te-banner-content">Oversettelse p�g�r&nbsp;<span dir="ltr">(<b id=":1.progressValue"></b>%)</span>&nbsp;<img src="https://translate.googleapis.com/translate_static/img/loading.gif"></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":1.cancel">Avbryt</button></div></div></td></tr><tr id=":1.finishSection" style="display:none"><td><span class="goog-te-banner-content">Oversatt til: <span id=":1.finishTargetLang"></span></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":1.restore">Vis original</button></div></div></td></tr><tr id=":1.errorSection" style="display:none" valign=middle><td><span id=":1.errorContent" class="goog-te-banner-content"></span></td></tr></table></td><td class="goog-te-banner-margin"></td><td width=1 id="options"></td><td width=1><a id=":1.close" class="goog-close-link" href="javascript:void(0)" title="Lukk"><img src="https://www.google.com/images/cleardot.gif" width="15" height="15" alt="Lukk" style="background-image:url(https://translate.googleapis.com/translate_static/img/te_ctrl3.gif);background-position:-28px 0px"></a></td></tr></table></body>
                                    

#6 JavaScript::Write (size: 382, repeated: 1) - SHA256: d2485660acb012ca34ca118cb59e6fbb11edb83ea98a0e050dd9bed186ee9274

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body scroll="no" style="margin:0px;overflow:hidden" dir="ltr" marginHeight=0 marginWidth=0 leftMargin=0 topMargin=0 border=0><div id=":2.menuBody" class="goog-te-menu"></div > < /body>
                                    

#7 JavaScript::Write (size: 382, repeated: 1) - SHA256: c68c84b340115ef05318c4438aed24d3cd6198fdac59ac30dc7bac98452fda69

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body scroll="no" style="margin:0px;overflow:hidden" dir="ltr" marginHeight=0 marginWidth=0 leftMargin=0 topMargin=0 border=0><div id=":3.menuBody" class="goog-te-menu"></div > < /body>
                                    

#8 JavaScript::Write (size: 24, repeated: 1) - SHA256: a3ba8250ebf2c8e28e99b0cbcb48488777fa3f512e83a7a56930803eb5d35e05

                                        < xmp style = display: none >
                                    


HTTP Transactions (102)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6TQpOvSb7zBS0rCvYMrxjZuPm_-zvPtx_auyKkiD6PCckJUNmRqnFQ==
Age: 75719


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13039
Expires: Thu, 06 Oct 2022 16:26:36 GMT
Date: Thu, 06 Oct 2022 12:49:17 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2257
Expires: Thu, 06 Oct 2022 13:26:54 GMT
Date: Thu, 06 Oct 2022 12:49:17 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: I7PCGHZFn3fMYs+UyD+tc9VFosxIe5VOryDrkRufLU0f0RvYlpq7c5JWUb7sxrlc0K45WQIO2gU=
x-amz-request-id: 2HE6YGC8AEJQBH6H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 11:58:44 GMT
age: 3033
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 06 Oct 2022 12:49:17 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /2012/10/farmville-2-regalos.html HTTP/1.1 
Host: cityvilleworldsam.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         142.250.74.161
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: https://cityvilleworldsam.blogspot.com/2012/10/farmville-2-regalos.html
Content-Encoding: gzip
Date: Thu, 06 Oct 2022 12:49:18 GMT
Expires: Thu, 06 Oct 2022 12:49:18 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 205
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   205
Md5:    f869a3c9a3396b5dafd6287ada5eb714
Sha1:   a4ad63e7be948cf2a2adabedf43c28421216b95e
Sha256: 6957798fe1cc969941085e835264e9ff2d89fd3c03e18e2da3c75915561133b6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 12:29:41 GMT
Expires: Thu, 06 Oct 2022 12:52:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WM6sdCU5XRXG5ZK_II3t0QEWBzI7_-DfkMcPmj_60XD_2uVLw0HHNg==
Age: 1177


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5980
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 12:49:18 GMT
Last-Modified: Thu, 06 Oct 2022 11:09:38 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N7vWjkLkJ24OITWy+tQjBg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.164.56.167
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CQxbpVGQ6frr1SSH1eoU6YtmGqE=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /2012/10/farmville-2-regalos.html HTTP/1.1 
Host: cityvilleworldsam.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
expires: Thu, 06 Oct 2022 12:49:19 GMT
date: Thu, 06 Oct 2022 12:49:19 GMT
cache-control: private, max-age=0
last-modified: Wed, 17 Aug 2022 20:02:13 GMT
etag: W/"ecd531a1ce3d036dcdb3e97527fe462246138566a65c545bfeab34537fb31ea6"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 36454
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (403)
Size:   36454
Md5:    94e272bb4dacca8c6578d4d2bdfa8e12
Sha1:   0a44cb7f95e613ce3d2cd4a56efc5632083e96c2
Sha256: 7dfaf9428bda86f6319d892387a8f31e96a3090e0aa2b44f7249236acb75cdc7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 04:43:17 GMT
expires: Thu, 05 Oct 2023 04:43:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 12:57:07 GMT
age: 115562
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30596)
Size:   6620
Md5:    6f46e6f68353c7911fe34f31faa1518f
Sha1:   ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
Sha256: 0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
                                        
                                            GET /img/icon_delete13.gif HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 140
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 17:25:36 GMT
expires: Wed, 12 Oct 2022 17:25:36 GMT
cache-control: public, max-age=604800
last-modified: Wed, 05 Oct 2022 12:00:16 GMT
age: 69823
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 13 x 13\012- data
Size:   140
Md5:    e7f55c98f18368f2ba26a008b1d40fc3
Sha1:   bb509d770d2d149060707c2c2c01776e86b858c4
Sha256: 69ff07a31a102649f3e0d08a967c39b134286293b85aac0885b3102a9120f1a6
                                        
                                            GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 06:42:19 GMT
expires: Thu, 05 Oct 2023 06:42:19 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 10:51:30 GMT
age: 108420
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1441)
Size:   6573
Md5:    f60e5037324bf7fd2256c16929886f09
Sha1:   aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
Sha256: 71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/widgets/subscribe-newsgator.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 04:54:08 GMT
expires: Thu, 13 Oct 2022 04:54:08 GMT
cache-control: public, max-age=604800
last-modified: Thu, 06 Oct 2022 02:19:52 GMT
age: 28511
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Size:   842
Md5:    fb125419b7375b5167f30cb5c23bde48
Sha1:   e69214e2b4cb89b63cc48abb48f35f436e13c1ce
Sha256: 4cbf304e0cbdb9c4d45bfab5130704509cfe038ae5b4cfe8e991abe1ee4f0a18
                                        
                                            GET /ajax/libs/jquery/1.3.2/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 19926
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 18:00:24 GMT
expires: Sun, 01 Oct 2023 18:00:24 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 413335
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (39660)
Size:   19926
Md5:    6ad9e9100f68042a634e403e56e3744a
Sha1:   3d148af6eb9f86b03d5a815f4fb3a49c7b2df356
Sha256: 72bbdea3217793991ab87a6c7cb165d267551810d3d88b5fd2fd489748d04b7a
                                        
                                            GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33333
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 13:11:40 GMT
expires: Tue, 03 Oct 2023 13:11:40 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 257859
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Size:   33333
Md5:    18351732b1849ba758e98884e186b3c8
Sha1:   d735af8661eda41ff4ffbf76e6a284a0e2deb81c
Sha256: bfac625d304d52e04f2caeb19266354749929c888ca09d3d1e3edcbb8770d0f0
                                        
                                            GET /img/blank.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 04:31:39 GMT
expires: Thu, 13 Oct 2022 04:31:39 GMT
cache-control: public, max-age=604800
last-modified: Thu, 06 Oct 2022 02:19:52 GMT
age: 29860
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /img/widgets/arrow_dropdown.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 10:36:43 GMT
expires: Wed, 12 Oct 2022 10:36:43 GMT
cache-control: public, max-age=604800
last-modified: Wed, 05 Oct 2022 04:51:44 GMT
age: 94356
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 13 x 10\012- data
Size:   141
Md5:    2964a07d60a4e76b299130fb1b4115f6
Sha1:   3b72dcc19f3ad685513eaba612e07e0ed495f2e1
Sha256: 28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7
                                        
                                            GET /img/widgets/subscribe-yahoo.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 02:21:47 GMT
expires: Wed, 12 Oct 2022 02:21:47 GMT
cache-control: public, max-age=604800
last-modified: Tue, 04 Oct 2022 12:57:07 GMT
age: 124052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Size:   580
Md5:    79f602b6ac18bee79b4e2353a6674010
Sha1:   28accf82263aa1a11bb821439d4d185865662530
Sha256: bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e
                                        
                                            GET /img/icon_feed12.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 06:40:02 GMT
expires: Wed, 12 Oct 2022 06:40:02 GMT
cache-control: public, max-age=604800
last-modified: Tue, 04 Oct 2022 22:52:56 GMT
age: 108557
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Size:   500
Md5:    44e7355a788fd1082deff0018883758e
Sha1:   50e3a28a44978e85d13c30522e0c71c8d0b24675
Sha256: 3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/widgets/subscribe-netvibes.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 01:13:54 GMT
expires: Thu, 13 Oct 2022 01:13:54 GMT
cache-control: public, max-age=604800
last-modified: Wed, 05 Oct 2022 12:00:16 GMT
age: 41725
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Size:   1445
Md5:    c52a5f4ecb6be5d7e93b23ef4122ee4e
Sha1:   4e698a5f455daf3a8ea1e219b1998079f0546716
Sha256: 71b8ad79c680b3e5d452a792c3b418b23f739a0a34005e0f37ec674f4c78cb5d
                                        
                                            GET /static/v1/widgets/829820975-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56806
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 02:07:50 GMT
expires: Thu, 05 Oct 2023 02:07:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2022 00:52:39 GMT
age: 124889
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56806
Md5:    b18547f3bc01f36c7dd3a6b6082feeb0
Sha1:   ca60d4a2bcd171bfe918249742cfde4223f0ba00
Sha256: 7666d4f1e68fda03543de42ac22d422822013499d6937cc08ae884bfdef3688b
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Thu, 06 Oct 2022 12:49:19 GMT
expires: Thu, 06 Oct 2022 12:49:19 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1277)
Size:   20361
Md5:    b5a31516be83fe4f962609045d824f88
Sha1:   939a49a9858bf23561279f9ca2d1941d3256c66f
Sha256: edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: img2.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 17:39:44 GMT
expires: Wed, 12 Oct 2022 17:39:44 GMT
cache-control: public, max-age=604800
last-modified: Tue, 04 Oct 2022 18:55:46 GMT
age: 68975
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57995
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 07:25:42 GMT
expires: Mon, 02 Oct 2023 07:25:42 GMT
cache-control: public, max-age=31536000
age: 365017
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (580)
Size:   57995
Md5:    d70fcc84d705c565b31a5835c0938d5b
Sha1:   d28e5dc9fcc6239d67986df3205468072023d2d7
Sha256: 1d558c94793446aa6a7832dde0c39ed7d9c77fd963ffb738c460e4f7369a7f4e
                                        
                                            GET /js/250/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116393
date: Thu, 06 Oct 2022 12:49:19 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (54602)
Size:   116393
Md5:    8caf41650f1ef5c6430490d20e2d2af6
Sha1:   b69f795ea1b8ec18280f7d1707ac8b7712fd3694
Sha256: b4f0a30adea9d2d3fd4f74d0b07ae167397434c002bea27eaea8b95022d72aae
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-1-YB7IdDpXM/T9JgbBpgJDI/AAAAAAAADGo/wFIZjaDl4hI/s000/btn_search.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="btn_search.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 781
X-XSS-Protection: 0
Date: Thu, 06 Oct 2022 12:49:19 GMT
Expires: Fri, 07 Oct 2022 06:52:05 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1345"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 55 x 21\012- data
Size:   781
Md5:    cdddfc5cfc8d87a1033dd5f5b8baab9a
Sha1:   2cd8918607533814c0500c3214bd67fb6e2b2c65
Sha256: 706b2b074e85570472165fe53693fb8badb60f64fa67080a23b434f92f4868cd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /bdlab-blogspot/24work/recent-posts/animated_recent_posts.js HTTP/1.1 
Host: safir85.ucoz.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         195.216.243.130
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 06 Oct 2022 12:49:20 GMT
Content-Length: 178
Connection: keep-alive
Keep-Alive: timeout=15
Location: http://safir85.ucoz.com/bdlab-blogspot/24work/recent-posts/animated_recent_posts.js
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.66
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 67
x-xss-protection: 0
date: Wed, 05 Oct 2022 20:43:04 GMT
expires: Wed, 19 Oct 2022 20:43:04 GMT
cache-control: public, max-age=1209600
age: 57975
etag: 13036835877489095579
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "03370046D0253CF23FE1BBF569E3484F0618AE25BADD2DEB4FCE70E0BC38FE18"
Last-Modified: Tue, 04 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19808
Expires: Thu, 06 Oct 2022 18:19:27 GMT
Date: Thu, 06 Oct 2022 12:49:19 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /private/geoglobe.js?compte=p5cxp9tnhs99 HTTP/1.1 
Host: geoloc5.geostats.ovh
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.36.176.112
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 06 Oct 2022 12:49:19 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
X-Powered-By: PHP/5.4.16
Pragma: no-cache
Expires: Tue, 9 May 2000 11:11:11 GMT
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Connection: close
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (981)
Size:   8007
Md5:    ce5b198d08b918556af0f9024f473730
Sha1:   c0ab568015e4c764338d14a0fdeb66de51e86bf7
Sha256: a362088df91bfdda9bd212877a16ba0a3f993c1467aea869f31c13ab6eeacbd7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Thu, 06 Oct 2022 14:43:12 GMT
Date: Thu, 06 Oct 2022 12:49:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Thu, 06 Oct 2022 14:43:12 GMT
Date: Thu, 06 Oct 2022 12:49:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Thu, 06 Oct 2022 14:43:12 GMT
Date: Thu, 06 Oct 2022 12:49:20 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 
Host: translate.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.46
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 12:49:19 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+991; expires=Sat, 05-Oct-2024 12:49:19 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   37612
Md5:    a6fa4af6e123ce0a02919e9db314b08a
Sha1:   585f6366bcc7e16d06fc425a419f30a723d8e73a
Sha256: 853a79b8e57c262599d2d546bf97f5f1ea3336a42b3e2490c89b86aabab575fb
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Thu, 06 Oct 2022 14:43:12 GMT
Date: Thu, 06 Oct 2022 12:49:20 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 54734
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7511
Md5:    9e520f87cae411cfc2ed1c8a14184385
Sha1:   69ad212cb7ae309d4f02019552887135bfae67da
Sha256: 723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
                                        
                                            GET /s/cabincondensed/v19/nwpMtK6mNhBK2err_hqkYhHRqmwqZ-LY.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cityvilleworldsam.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 01:33:59 GMT
expires: Sat, 30 Sep 2023 01:33:59 GMT
cache-control: public, max-age=31536000
age: 558921
last-modified: Thu, 21 Apr 2022 16:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 18388, version 1.0\012- data
Size:   18388
Md5:    f2fd74ba362c0ebcb672da1378d73328
Sha1:   4e7a6175ead68add290e4f6dccd841318913dca3
Sha256: 7fe4d6d63d5f9a0aab2e8316680157b199d3b1a145720661cd0557abafb624b3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
age: 53424
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7270
Md5:    e238ccaa3b9fa88476a8514855e8232f
Sha1:   447cbf348ef10d0136a1811e843c46937defbba1
Sha256: 43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9044
x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmHG5oAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 05:04:17 GMT
age: 27903
etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9044
Md5:    70ea26af79226e9ff06d6198e2c019dc
Sha1:   ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57
Sha256: f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:39:28 GMT
age: 54592
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11080
Md5:    2277f8f2d93b4bc3b05d348343177892
Sha1:   531d9e4ec9078cd2d7376a19fcb287084af36c82
Sha256: 62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
                                        
                                            GET /translate_static/css/translateelement.css HTTP/1.1 
Host: translate.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.170
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 12:03:02 GMT
expires: Thu, 06 Oct 2022 13:03:02 GMT
cache-control: public, max-age=3600
age: 2778
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18670)
Size:   3619
Md5:    897ba9a21d9625286674da769dacc2e2
Sha1:   84b4923ab7dee562395160824d53496314499b77
Sha256: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
                                        
                                            GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Thu, 06 Oct 2022 12:49:20 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size:   26421
Md5:    707317ccaabe08d32d1bd781754e6871
Sha1:   bb82dcd3e044c960e0861c2ce878f5504e628f78
Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
                                        
                                            GET /_/translate_http/_/js/k=translate_http.tr.no.hKV5EFt4BZM.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq7j522tUQPg3dC174dPSArletY_Q/m=el_main HTTP/1.1 
Host: translate.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.170
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 94940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 20:56:22 GMT
expires: Thu, 05 Oct 2023 20:56:22 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 13:15:54 GMT
age: 57178
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1613)
Size:   94940
Md5:    be940bec49008016dc1ff45330766511
Sha1:   4e46e01102dd94ace69eabe4241fa8c04c47f2b7
Sha256: 5c32541d2a5991ab8f61f837d036e1f9e17ed5fa354bbebdb3935e8e095c24bd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /dyn-css/authorization.css?targetBlogID=4411775466461116643&zx=9ac81219-6965-4b6d-bd1d-86b23552ad47 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 12:49:20 GMT
last-modified: Thu, 06 Oct 2022 12:49:20 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    a62e4d501434033d5d177e67d3aafdd0
Sha1:   34f7300c9ed47334cf10826d57af785321e3138b
Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
                                        
                                            GET /private/geoglobe_iframe_css_64.php?compte=p5cxp9tnhs99&fc=000000&p=&tp=Click%20for%20detail&skin=0&anim=1&f=Verdana&s=10&ca=00FF00&ci=FF0000&onl=Online&ofl=undefined&ttot=Total&cbg=FFFFFF&cbg2=000000&cbg3=undefined&cbg4=undefined&b=1&dn=0&wci=&wcc=&wcn=&bgskin=16&ts=150 HTTP/1.1 
Host: geoloc5.geostats.ovh
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         54.36.176.112
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 06 Oct 2022 12:49:20 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
X-Powered-By: PHP/5.4.16
Connection: close
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (24370)
Size:   52150
Md5:    c4e6518eead501226c1944599df1ce81
Sha1:   242b429b6c6c44f96ebaae1b267f70e4664cf21e
Sha256: 9f5e209c2eddf9be0aad6b9e8eaa09fceac94dda7ae3371ef123d27cd8d56c90
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D4411775466461116643%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6893233756537388247%26origin%3Dhttps://cityvilleworldsam.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D4411775466461116643%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6893233756537388247%26origin%3Dhttps://cityvilleworldsam.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1 
Host: accounts.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cityvilleworldsam.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.237
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 12:49:20 GMT
location: https://www.blogger.com/followers.g?blogID=4411775466461116643&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=6893233756537388247&origin=https%3A%2F%2Fcityvilleworldsam.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-IHGlv6IjsVFe9kC9D1FL0A' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 482
server: GSE
set-cookie: __Host-GAPS=1:1Vvns2D8YXkwObibmfiBaBNUYu-ysA:rBAxQw_aafQp4MEo;Path=/;Expires=Sat, 05-Oct-2024 12:49:20 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (541)
Size:   482
Md5:    32c5389bf0c0d8956cfb92407a5e9e11
Sha1:   8fcfb53eaf2f49514b88dd073a4e42ec1d21ff31
Sha256: 811192cd8f8c59b9362f8b01eab4400c03d0f4c00829dec6db7feba4d431e226
                                        
                                            GET /images/branding/product/1x/translate_24dp.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 08:46:30 GMT
expires: Fri, 06 Oct 2023 08:46:30 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
age: 14570
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   846
Md5:    e9cd262114358f26b7608b56905185dc
Sha1:   6dbde0a96deaab2b529723ce26c62043cf9180ab
Sha256: 5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
                                        
                                            GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 04:45:58 GMT
expires: Fri, 06 Oct 2023 04:45:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
age: 29002
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   910
Md5:    efa6bb2bfe459bc6f4bdafa3db0383f6
Sha1:   52d15ce52fe50643e542c17812de43f4ed1b6ee0
Sha256: 6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
                                        
                                            GET /images/branding/product/2x/translate_24dp.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 12:44:26 GMT
expires: Fri, 06 Oct 2023 12:44:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
age: 294
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   1842
Md5:    c69c796362406f9e11c7f4bf5bb628da
Sha1:   e489ce95ab56208090868882113d7416abf46775
Sha256: 4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
                                        
                                            GET /blogger_img_proxy/ANbyha3ZVtyiPyjgbdDyqOZm9JBlQ0CVp9qc5DtK2PEehpf_VKrkaRcStiErWfoaZlbbL2arwKlZvNySxnZOx2jof3Irk1hUVDvvDn4WT-CHQ4aggl-AfnrpZcZxm7Vi0zN8QIqpIzJJw-ENXij2gVzkND7kyo3JLb2gCKBTvZX9AAm2j4S5HUJc=s0-d HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 12:49:20 GMT
server: fife
content-length: 1768
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1768
Md5:    13e67a0031879f27aa2964066a8e8570
Sha1:   73eb8b09af2f5715359493ac0e2e1fc6be24036b
Sha256: 466d0b3a0341ed026730ecfe4dde3f681da5180f4010ea94ce75b24beab9de17
                                        
                                            GET /blogger_img_proxy/ANbyha2CGnsshI3nxMiQpC5T-zwZtjxN12h0xQSUhnk5cikwymQyS5XI75fYPAXFQE257p-NnQtBD0lbjtO49Grycb2gZTgincDNSCY-S7StNguu-w2plGF-wyiu1CaXtncWC4M013BUqbBTPbK5OSwtCvu4fTkWo9fK8sPoIkHd=s0-d HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 12:49:20 GMT
server: fife
content-length: 1756
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1756
Md5:    547ba3446f860a19c05ab66fa682349c
Sha1:   c8b1d3f602c559cfdc36c6cc626961003850be5f
Sha256: b2daf5324b654b3584e582a733d5055d4b1fce9ae9dc00e708182a6277984ffb
                                        
                                            GET /blogger_img_proxy/ANbyha0vAnfMI-d7gavGt5Bc6RFxShQhSkNiZxHy0B16MCadzGouzDQJU68oCMl1J_d05AZdmntr-b7JTVo1DrWqh-qe2rSqQXXr-88A5AV7cUnYHV_mxykWc11feusGLJBKSG3hlQpzgZZPq8hhLL5tkQ0rBdn-=s0-d HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 12:49:20 GMT
server: fife
content-length: 1744
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1744
Md5:    23fa9c65c83405648be02d5425efb791
Sha1:   6f70322d59ef64d7f2140affd1948953da586759
Sha256: d54db7e66d7b5849da3bc63e56319ed83446513376255037fefbfb0ec61d8935
                                        
                                            GET /blogger_img_proxy/ANbyha0RlQ8kc9PGiOspYl0Y3snN0XXztUFflIVOXaCt7_ejtMBsPTQ_jdDiOKTOtucQs6cvzsoyNBPkAPXy_c9WCtu6Zx9mXU4jOWVYvuuPAwR5EUIypMFT3FgW4SEz4iBWuBIC0WDm6BkKi8hZWgRt01O8J4Heulk=s0-d HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 12:49:20 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1747
Md5:    6a8052777430f1360c57b7a7f8efd6ee
Sha1:   f040f004986565f9b96943b687aef2f0bd522a21
Sha256: 52d5b47d309e48625011a866a9e5dde310d4f02eed4ff731c3e84500ee9e1efd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.206
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
date: Thu, 06 Oct 2022 12:49:20 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+471; expires=Sat, 05-Oct-2024 12:49:20 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 06 Oct 2022 12:49:20 GMT
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1557
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.206
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-encoding: gzip
date: Thu, 06 Oct 2022 12:49:20 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+837; expires=Sat, 05-Oct-2024 12:49:20 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 06 Oct 2022 12:49:20 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   131
Md5:    babb6f090aeebc6f421624475b4aefff
Sha1:   06079b7547949822c118224e51604f4c5ebf80c8
Sha256: b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 12:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Thu, 06 Oct 2022 12:49:20 GMT
date: Thu, 06 Oct 2022 12:49:20 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 667
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1034), with no line terminators
Size:   667
Md5:    82b8f5bab5ac40a212da17a4b0d35e37
Sha1:   e7e689b272a7857e19c6eee1e8ccdab4e41bbe23
Sha256: 56a0c27e76fceab964c875719ffdff753bcb13e9d48c8692f71605707c843d7d
                                        
                                            GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
age: 56833
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (711)
Size:   158844
Md5:    b4ed95d4318e3b78b936c9c0f1ffa96e
Sha1:   b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
Sha256: 3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
                                        
                                            GET /blogger_img_proxy/ANbyha0BNr79IDLEGYBawxP5cm23FNj3IdbUFUNicVq2Bi3blvlXXWjIedAwuy-0cVvz7in0MbP_38j43bmLHKfSbnudSrPIuUq5guYgsp-kNfVgGIfVkycyGLDJdRPos7fXnQTm6hPne818rrfNNw=s0-d HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 12:49:20 GMT
server: fife
content-length: 1734
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1734
Md5:    19429fbe3451bb37fe543b621ce66749
Sha1:   48dfdfc4c3c1fb122362690a14cdeb8579990b14
Sha256: 8d0345faf0d6111a0a2e3a8d21e11481d2b3221600987f779bca984e95a4f41d
                                        
                                            GET /blogger_img_proxy/ANbyha39LB-xx48S-KrFOku_HQNXhy47LuqONPAClL-HFxg0UYQH5olAx4ygk5L58WgSyizHV7TkQe6AsQ6TPSc2Qu0N2akUt_n-fulukGfgKt9gs-Exow5vGDybOUkG2J0PP_3ji1TipKxn-cRtCIkQH16sqo1Fkg=s0-d HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 12:49:20 GMT
server: fife
content-length: 1746
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1746
Md5:    6c8e69b53dd4d0abce3cdc21ed8fd004
Sha1:   c278682272ec08581c54c60f31488f4007391702
Sha256: 5ec049d168a81f3c9644f1bf3bc66e6d6138b5a1771e8fc16c7d549d44eacc9f
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:31:58 GMT
expires: Sun, 01 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 433043
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:48:31 GMT
expires: Sat, 30 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 561650
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            GET /blogger_img_proxy/ANbyha1hcKSmJHL3CcrUJEicKJ0KsqoXoNaOYfDf7CVw4KhXvJObQQu0Rdi2hQYzyrqGh_3Gf6i5SfG8iiWN3xDPT4Xcou_EIbWSxFY5OUxTDGHL7Lzn0JJSavPqLg1TnmaJx5VXr7qbLdRsSk7NYxzaQ4rg=s0-d HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 12:49:21 GMT
server: fife
content-length: 1740
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1740
Md5:    650e68b2df36162c1f998ae0812e07a3
Sha1:   89ac12dc607eb05ae702505e65d4cf68513d2ad5
Sha256: 03bc6851a8c46badb11c0d85b4c1f9827700e0846279d04c74d638fe6af30609
                                        
                                            GET /addthismoatframe568911941483/moatframe.js HTTP/1.1 
Host: z.moatads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.146
HTTP/2 200 OK
content-type: application/x-javascript
                                        
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=55656
date: Thu, 06 Oct 2022 12:49:21 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (523)
Size:   948
Md5:    f14b4e1f799b14f798a195f43cf58376
Sha1:   b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
Sha256: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
                                        
                                            GET /live/boost/4rifin/_ate.track.config_resp HTTP/1.1 
Host: v1.addthisedge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
etag: 659743217
content-disposition: attachment; filename=1.txt
content-encoding: gzip
content-length: 154
cache-control: public, max-age=57, s-maxage=86400
date: Thu, 06 Oct 2022 12:49:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   154
Md5:    1798455c51e19a1de93e52339a502e8d
Sha1:   a0457d200050e575fe5fce342ef18826773a19a2
Sha256: 3f695eaf6f5245ffc8385edd6ed3d174509a3faedc9b9e14e4bffb1f0a881fb0
                                        
                                            GET /live/red_lojson/300lo.json?si=633ececf38f277a9&bkl=0&bl=1&pdt=1881&sid=633ececf38f277a9&pub=4rifin&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=cityvilleworldsam.blogspot.com&fp=2012%2F10%2Ffarmville-2-regalos.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1665060560115&jsl=1&uvs=633ececfe66ab313000&skipb=1&callback=addthis.cbs.jsonp__37438352831031660 HTTP/1.1 
Host: m.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Thu, 06 Oct 2022 12:49:21 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   89
Md5:    9d6ad0bf248ce52dd7d9b045680025d3
Sha1:   4b197e878aa79ec04fe900ed0a2328bfc31079e6
Sha256: cddcf74b3372dfae0f2cc400ca9bcab20fa36a6f0ee7707fe81c8bebb961b020
                                        
                                            GET /blogger_img_proxy/ANbyha0Q2NmpQzJ-3oItA3I6E4qROO-zMgaN1PNJyfPymLGoh0ZPWssL_r9ENRPQk0CrlGBnHWZuQrnmIm2wJpqfbvPFYsAHyOFwHm-NsgFNNHXitYsL15H6GyFlknjzMVnwIQ4IJl7SbDTAaB_o=s0-d HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/png
                                        
access-control-expose-headers: Content-Length
expires: Fri, 07 Oct 2022 12:49:21 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 12:49:21 GMT
server: fife
content-length: 406818
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 500 x 451, 8-bit/color RGBA, non-interlaced\012- data
Size:   406818
Md5:    e6958ab77509fae4991072bc8f378e4b
Sha1:   60b9c83560b4ba8cf023dda05429189f4379ee4b
Sha256: a3ac23a37c8fcd0f9bea939d1e0b00240e5aee0466fba5e22eeb17b0286e364b
                                        
                                            GET /static/counter.d27508c102582d608697.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5fd2"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 8265
date: Thu, 06 Oct 2022 12:49:21 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24530), with no line terminators
Size:   8265
Md5:    47fcfb824ad738c29e3195451d5c755e
Sha1:   8a955f27a30f4a8c9cde94567c041040e3c60d61
Sha256: 1508b4ae159e51231031ce58f3a5c31aca11a438f4ea3c12ea3581bbc97f4305
                                        
                                            GET /widgets.js HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Wed, 28 Sep 2022 20:05:37 GMT
cache-control: public, max-age=1800
etag: "f26384f93da6974ed577808dfa1fede5+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Thu, 06 Oct 2022 12:49:21 GMT
x-served-by: cache-iad-kiad7000168-IAD, cache-bma1676-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 29223
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (33915)
Size:   29223
Md5:    e14c76a2eab620fda0ad73aa2a3ebc03
Sha1:   1da8baee6c0987e8232b129daeab14adfd379592
Sha256: 7873fecf29f91e4b8e81051e29da6ef51c27aae9ca1c1adc85b55903372a60dd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 834
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 12:49:21 GMT
Last-Modified: Thu, 06 Oct 2022 12:35:28 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0930c8967790a30c49dbad71dec5f140
etag: "c4089e982ad3fcb011d2e7d226fa49a2"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 06 Oct 2022 13:01:08 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: PXDi445nWou6bT77e5cHzQ==
x-fb-debug: TxUim66uhtpXuhE3QXUCQfutUiHgNJIjCcevK5o/U8RJyipTeYrLTsgTWb9uydQc5sMvLaAIWjv+sDwlSdI4vQ==
content-length: 1687
x-fb-trip-id: 1904183273
date: Thu, 06 Oct 2022 12:49:21 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1961)
Size:   1687
Md5:    3d70e2e38e675a8bba6d3efb7b9707cd
Sha1:   c14f2875380671242f6fa763450ab4235da80679
Sha256: 9cc1e0fd995c88e578c10c0e928ef31e2aed39ebdc26969239cb63898b82a57f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 835
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 12:49:22 GMT
Last-Modified: Thu, 06 Oct 2022 12:35:28 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fcityvilleworldsam.blogspot.com HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
last-modified: Wed, 28 Sep 2022 20:04:27 GMT
cache-control: public, max-age=315360000
etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Thu, 06 Oct 2022 12:49:22 GMT
x-served-by: cache-iad-kcgs7200106-IAD, cache-bma1676-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 105445
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size:   105445
Md5:    2c908e4df66c813c91eb41dd02376079
Sha1:   29df916bd525b6e273f6a62adb7d6df80789edfb
Sha256: 767b670476dae60cf2ddfda9bf3695fd9be641e1a338564b0d23b80cedaed567
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4373
Cache-Control: max-age=145796
Date: Thu, 06 Oct 2022 12:49:22 GMT
Etag: "633e5441-139"
Expires: Sat, 08 Oct 2022 05:19:18 GMT
Last-Modified: Thu, 06 Oct 2022 04:06:25 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /en_US/sdk.js?hash=846734189bd70717100d007e8b66cc48 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cityvilleworldsam.blogspot.com
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 032e52f2f42bb88efa022a47bbf6c90a
etag: "b52234f2f13bd580fece461d444fc479"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 06 Oct 2023 07:11:15 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: dxdxfJLa2a63MYb9Uzamdg==
x-fb-debug: +zl+eIJPw4j8C8hKAAYckfCB3xYmo3NHxjKjDFyw3Tfk7Nwkz3RKi8G4I4KIvHePiD0gc+mfkgPc3uRhCBzIRQ==
content-length: 86931
x-fb-trip-id: 1904183273
date: Thu, 06 Oct 2022 12:49:22 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13192)
Size:   86931
Md5:    7717717c92dad9aeb73186fd5336a676
Sha1:   d5073c2795ebbde85046e74c37fe5a81521c0226
Sha256: 60aff3d44fb187836eaac386bbbfce5a46e59006f1881496d96729642c9a5237
                                        
                                            GET /settings?session_id=2123262d37efb884553ab11cd0aefc2aaedb0614 HTTP/1.1 
Host: syndication.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         104.244.42.200
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Thu, 06 Oct 2022 12:49:21 GMT
perf: 7626143928
vary: Origin
server: tsa_o
cache-control: must-revalidate, max-age=600
last-modified: Thu, 06 Oct 2022 12:49:22 GMT
content-length: 355
content-encoding: gzip
x-transaction-id: e7900289f6ba493b
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 109
x-connection-hash: fce40f7d063617d219a1f1c0a3133248422a8bc72148509409e94e56fd7cede2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (851), with no line terminators
Size:   355
Md5:    7cac009f8121486bc6c44991cf606190
Sha1:   ddae6074c908031f09b586d38a022e0e4add23b5
Sha256: 7825444c58d1293285c059256fb6e04dcd4bf7dff5a6a65972f65d55286b1e89
                                        
                                            GET /url/shares.json?url=https%3A%2F%2Fcityvilleworldsam.blogspot.com%2F2012%2F10%2Ffarmville-2-regalos.html&callback=_ate.cbs.sc_httpscityvilleworldsamblogspotcom201210farmville2regaloshtml0 HTTP/1.1 
Host: api-public.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx/1.15.8
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: cityvilleworldsam.blogspot.com/2012/10/farmville-2-regalos.html
last-modified: Thu, 06 Oct 2022 12:49:22 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 100
date: Thu, 06 Oct 2022 12:49:22 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   100
Md5:    f84e52a54e0f54926cf0d70ea56de736
Sha1:   f0f3f524ecc1af9b64ee4ee78106f16f7018513c
Sha256: 09ae7d297295091883d0b3ee270d107bbff7ba276b0237ce49b7b38b87fa227b
                                        
                                            GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Wed, 28 Sep 2022 20:04:20 GMT
cache-control: public, max-age=315360000
etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Thu, 06 Oct 2022 12:49:22 GMT
x-served-by: cache-iad-kcgs7200178-IAD, cache-bma1676-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2362
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7017), with no line terminators
Size:   2362
Md5:    dd0db11eb64751c6c3b8cecfb5b77f2f
Sha1:   b79a753d0bc720adbbd9f566f11764dd0e1cbe2c
Sha256: c80ffb7bf5d6d523bd483d7eeba3b3334d25ee8d66ddba80eaf448d07da2e2ff
                                        
                                            GET /widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
last-modified: Wed, 28 Sep 2022 20:04:24 GMT
cache-control: public, max-age=315360000
etag: "5f5bf2b99100f854c01f4f321282f861+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Thu, 06 Oct 2022 12:49:22 GMT
x-served-by: cache-iad-kcgs7200025-IAD, cache-bma1676-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 13753
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Size:   13753
Md5:    14225f7754bbe4dab77bfefc5925eeb2
Sha1:   622faa15311f676408de0fe3ec47801fa5e80efd
Sha256: d8866492dce252988d8acbb35716bb3b3ac28c752921f558b51ba383e5d23e6a
                                        
                                            GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fcityvilleworldsam.blogspot.com%2F2012%2F10%2Ffarmville-2-regalos.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1665060562618%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=2123262d37efb884553ab11cd0aefc2aaedb0614 HTTP/1.1 
Host: syndication.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.244.42.200
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 06 Oct 2022 12:49:22 GMT
perf: 7626143928
vary: Origin
server: tsa_o
cache-control: must-revalidate, max-age=600
last-modified: Thu, 06 Oct 2022 12:49:22 GMT
content-length: 43
x-transaction-id: 60076052b4f81a85
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: fce40f7d063617d219a1f1c0a3133248422a8bc72148509409e94e56fd7cede2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            GET /v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df2c905b40054d44%26domain%3Dcityvilleworldsam.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fcityvilleworldsam.blogspot.com%252Ffdb82bf7c604a6%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=https%3A%2F%2Fcityvilleworldsam.blogspot.com%2F2012%2F10%2Ffarmville-2-regalos.html&layout=button_count&locale=en_US&sdk=joey&send=false&share=false&show_faces=false&width=90 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: ngTndBrRFo4wS5LY/bP04DwZH0rxYcpKJhas6Ub5isUL0YBD9Iy3L4sOg71A7e0Vt4aJiKY2qsFRwWXEaeGV+w==
content-length: 0
date: Thu, 06 Oct 2022 12:49:25 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /css?family=Cabin+Condensed:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cityvilleworldsam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 12:49:19 GMT
date: Thu, 06 Oct 2022 12:49:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---