Overview

URLjazmyneziemann.blogspot.com/2022/03/ausmalbilder-pferde-fur-kinder-kids-n.html
IP 172.217.21.161 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-06 10:29:02 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (33)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.gstatic.com (4) 0 2016-07-26 09:37:06 UTC 2022-12-05 08:05:46 UTC 142.250.74.35 Domain (gstatic.com) ranked at: 540
i1.wp.com (6) 6037 2012-09-27 05:17:34 UTC 2022-12-05 07:33:30 UTC 192.0.77.2
friendshipmale.com (1) 0 2022-10-21 12:15:25 UTC 2022-12-05 12:52:14 UTC 172.64.202.23 Unknown ranking
s4.histats.com (1) 12782 2012-05-21 17:14:14 UTC 2022-12-05 13:28:29 UTC 149.56.240.129
ocsp.pki.goog (20) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 216.58.211.3
img-getpocket.cdn.mozilla.net (5) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-12-05 11:11:06 UTC 142.250.74.106
lh3.googleusercontent.com (10) 66 2013-05-30 23:27:19 UTC 2020-05-01 19:11:58 UTC 216.58.207.225
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.238.3.246
ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-12-05 14:03:27 UTC 216.58.207.234
1.bp.blogspot.com (1) 8403 2013-05-06 20:18:52 UTC 2020-05-14 01:22:22 UTC 142.250.74.65
play.google.com (1) 34 2018-05-12 00:28:37 UTC 2022-12-05 05:54:01 UTC 216.58.207.238
unseenreport.com (1) 0 2022-03-30 14:33:17 UTC 2022-12-05 09:49:12 UTC 192.243.61.227 Unknown ranking
jazmyneziemann.blogspot.com (2) 0 No data No data 172.217.21.161 Unknown ranking
i0.wp.com (4) 3021 2013-09-17 06:14:42 UTC 2022-12-05 04:12:41 UTC 192.0.77.2
maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-12-05 08:40:25 UTC 188.114.98.234
www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-12-05 09:18:03 UTC 216.58.211.4
simplewebanalysis.com (1) 0 2022-02-25 04:06:25 UTC 2022-12-05 07:29:05 UTC 52.28.211.11 Unknown ranking
apis.google.com (1) 105 2013-05-30 23:17:44 UTC 2020-05-14 13:59:47 UTC 216.58.207.238
accompanycollapse.com (1) 0 No data No data 192.243.61.227 Unknown ranking
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
4.bp.blogspot.com (1) 11215 2013-05-06 20:18:52 UTC 2020-05-06 03:21:52 UTC 142.250.74.65
ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
cdn.cloudimagesb.com (1) 23099 2022-10-07 08:01:31 UTC 2022-10-08 10:27:40 UTC 45.133.44.9
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-05 04:09:48 UTC 34.117.237.239
ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-05 04:09:09 UTC 34.102.187.140
www.blogger.com (3) 8975 2012-05-22 07:35:03 UTC 2020-05-05 09:48:25 UTC 216.58.207.233
fonts.gstatic.com (4) 0 2014-09-09 00:40:21 UTC 2022-12-05 08:18:24 UTC 142.250.74.35 Domain (gstatic.com) ranked at: 540
snappedanticipation.com (3) 0 2022-12-06 01:51:03 UTC 2022-12-06 01:51:03 UTC 192.243.59.13 Unknown ranking
e1.o.lencr.org (2) 6159 No data No data 23.33.119.27
bestbestfree.com (1) 0 No data No data 104.21.18.186 Unknown ranking
r3.o.lencr.org (12) 344 No data No data 95.101.11.115

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-12-05 2 unseenreport.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.217.21.161
Date UQ / IDS / BL URL IP
2023-02-09 12:28:08 +0000 0 - 0 - 3 citw-vol2.blogspot.kr/2011/08 172.217.21.161
2023-02-09 09:22:44 +0000 0 - 6 - 0 math-tex.blogspot.com/2017/02/exercices-coniq (...) 172.217.21.161
2023-02-09 09:19:58 +0000 0 - 0 - 2 khjqvlamrcutddxjjrfy8593531575.blogspot.com/u (...) 172.217.21.161
2023-02-08 10:44:05 +0000 0 - 0 - 3 robloxpromocodesinbeeswarm.blogspot.fi/ 172.217.21.161
2023-02-08 09:30:35 +0000 0 - 2 - 3 sergdfx.blogspot.co.id/ 172.217.21.161


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-02-09 12:34:40 +0000 0 - 0 - 1 rapidpaws.com/wp-content/uploads/2011/07/Thumbs.db 34.102.136.180
2023-02-09 12:32:44 +0000 0 - 2 - 0 list-manage.agle1.cc/click?u=www.drylinepartn (...) 142.250.74.147
2023-02-09 12:32:43 +0000 0 - 2 - 0 list-manage.agle1.cc/click?u=www.drylinepartn (...) 142.250.74.147
2023-02-09 12:28:08 +0000 0 - 0 - 3 citw-vol2.blogspot.kr/2011/08 172.217.21.161
2023-02-09 12:17:15 +0000 0 - 0 - 0 mekari-dot-yamm-track.appspot.com/2wCCQHaLdl6 (...) 142.250.74.84


Last 1 reports on domain: jazmyneziemann.blogspot.com
Date UQ / IDS / BL URL IP
2022-12-06 10:29:02 +0000 0 - 0 - 1 jazmyneziemann.blogspot.com/2022/03/ausmalbil (...) 172.217.21.161


No other reports with similar screenshot

JavaScript

Executed Scripts (60)

Executed Evals (7)
#1 JavaScript::Eval (size: 22) - SHA256: 1bb4b16c7de163ff866b60976156d8c769e3cd8f2b5bdea3c85e854c986003d6
0,
function(v) {
    Jx(1, v)
}
#2 JavaScript::Eval (size: 17646) - SHA256: 278e6d316903840c07acdba2a21ed10d211289f0c7ca847f47753c817e7eb4ee
(function() {
    var A = function(C, O, J, p, L, v) {
            if (C.C == C)
                for (L = w(C, J), 9 == J ? (J = function(l, z, I, b) {
                        if (I = (b = L.length, (b | 0) - 4 >> 3), L.Fl != I) {
                            I = (I << 3) - (z = [0, 0, v[1], v[L.Fl = I, 2]], 4);
                            try {
                                L.G7 = C8(z, Oc(I, L), Oc((I | 0) + 4, L))
                            } catch (t) {
                                throw t;
                            }
                        }
                        L.push(L.G7[b & 7] ^ l)
                    }, v = w(C, 498)) : J = function(l) {
                        L.push(l)
                    }, p && J(p & 255), C = O.length, p = 0; p < C; p++) J(O[p])
        },
        e = function(C, O) {
            O.K.splice(0, 0, C)
        },
        v_ = function(C, O) {
            return O = O.create().shift(), C.D.create().length || C.U.create().length || (C.D = void 0, C.U = void 0), O
        },
        Jx = function(C, O, J, p) {
            for (p = (J = H(O), 0); 0 < C; C--) p = p << 8 | K(O);
            V(J, O, p)
        },
        n = function(C, O, J, p) {
            for (p = (J = (O | 0) - 1, []); 0 <= J; J--) p[(O | 0) - 1 - (J | 0)] = C >> 8 * J & 255;
            return p
        },
        lo = function(C, O, J, p, L, v) {
            function l() {
                if (p.C == p) {
                    if (p.X) {
                        var z = [Y, O, C, void 0, L, v, arguments];
                        if (2 == J) var I = W(p, (e(z, p), false), false);
                        else if (1 == J) {
                            var b = !p.K.length;
                            e(z, p), b && W(p, false, false)
                        } else I = p8(z, p);
                        return I
                    }
                    L && v && L.removeEventListener(v, l, G)
                }
            }
            return l
        },
        zN = function(C, O) {
            return T[O](T.prototype, {
                prototype: C,
                pop: C,
                call: C,
                splice: C,
                floor: C,
                replace: C,
                propertyIsEnumerable: C,
                parent: C,
                length: C,
                stack: C,
                document: C,
                console: C
            })
        },
        N = function(C, O) {
            for (O = []; C--;) O.push(255 * Math.random() | 0);
            return O
        },
        W = function(C, O, J, p, L, v) {
            if (C.K.length) {
                C.O = !(C.K3 = (C.O && 0(), O), 0);
                try {
                    p = C.j(), C.o = p, C.R = p, C.u = 0, v = $c(C, O), L = C.j() - C.o, C.J += L, L < (J ? 0 : 10) || 0 >= C.S-- || (L = Math.floor(L), C.W.push(254 >= L ? L : 254))
                } finally {
                    C.O = false
                }
                return v
            }
        },
        Ic = function(C, O, J, p, L, v) {
            for (J = (L = ((p = (O = C[L8] || {}, H(C)), O).Xl = H(C), O.v = [], C).C == C ? (K(C) | 0) - 1 : 1, H(C)), v = 0; v < L; v++) O.v.push(H(C));
            for ((O.i = w(C, p), O).C3 = w(C, J); L--;) O.v[L] = w(C, O.v[L]);
            return O
        },
        P = function(C, O, J, p, L, v, l, z, I) {
            if (C.C = (C.H += ((I = (l = (L = (O || C.u++, 0 < C.l && C.O && C.K3 && 1 >= C.P && !C.D && !C.B) && (!O || 1 < C.Z - J) && 0 == document.hidden, (v = 4 == C.u) || L ? C.j() : C.R), l) - C.R, z = I >> 14, C).N && (C.N ^= z * (I << 2)), z), z || C.C), v || L) C.R = l, C.u = 0;
            if (!L || l - C.o < C.l - (p ? 255 : O ? 5 : 2)) return false;
            return C.B = ((V(286, (p = (C.Z = J, w(C, O ? 215 : 286)), C), C.F), C).K.push([bo, p, O ? J + 1 : J]), E), true
        },
        wV = function(C, O) {
            ((O.push(C[0] << 24 | C[1] << 16 | C[2] << 8 | C[3]), O).push(C[4] << 24 | C[5] << 16 | C[6] << 8 | C[7]), O).push(C[8] << 24 | C[9] << 16 | C[10] << 8 | C[11])
        },
        x = function(C, O, J, p, L, v) {
            if (!J.I) {
                if (3 < (C = ((0 == (p = w(J, ((v = void 0, C) && C[0] === a && (v = C[2], O = C[1], C = void 0), 358)), p.length) && (L = w(J, 215) >> 3, p.push(O, L >> 8 & 255, L & 255), void 0 != v && p.push(v & 255)), O = "", C) && (C.message && (O += C.message), C.stack && (O += ":" + C.stack)), w(J, 430)), C)) {
                    J.C = (v = (O = (C -= (O = O.slice(0, (C | 0) - 3), O.length | 0) + 3, Ax(O)), J.C), J);
                    try {
                        A(J, n(O.length, 2).concat(O), 9, 9)
                    } finally {
                        J.C = v
                    }
                }
                V(430, J, C)
            }
        },
        tx = function(C, O, J, p, L, v) {
            if (!C.Y) {
                C.P++;
                try {
                    for (p = (v = 0, void 0), J = C.F; --O;) try {
                        if ((L = void 0, C).D) p = v_(C, C.D);
                        else {
                            if (v = w(C, 286), v >= J) break;
                            p = w(C, (L = (V(215, C, v), H(C)), L))
                        }(p && p[ew] & 2048 ? p(C, O) : x([a, 21, L], 0, C), P)(C, false, O, false)
                    } catch (l) {
                        w(C, 391) ? x(l, 22, C) : V(391, C, l)
                    }
                    if (!O) {
                        if (C.Da) {
                            C.P--, tx(C, 261929697120);
                            return
                        }
                        x([a, 33], 0, C)
                    }
                } catch (l) {
                    try {
                        x(l, 22, C)
                    } catch (z) {
                        m(z, C)
                    }
                }
                C.P--
            }
        },
        $c = function(C, O, J, p) {
            for (; C.K.length;) {
                p = (C.B = null, C.K.pop());
                try {
                    J = p8(p, C)
                } catch (L) {
                    m(L, C)
                }
                if (O && C.B) {
                    (O = C.B, O)(function() {
                        W(C, true, true)
                    });
                    break
                }
            }
            return J
        },
        B_ = function(C, O, J, p) {
            function L() {}
            return p = H_(C, function(v) {
                L && (O && E(O), J = v, L(), L = void 0)
            }, (J = void 0, !!O))[0], {
                invoke: function(v, l, z, I) {
                    function b() {
                        J(function(t) {
                            E(function() {
                                v(t)
                            })
                        }, z)
                    }
                    if (!l) return l = p(z), v && v(l), l;
                    J ? b() : (I = L, L = function() {
                        E((I(), b))
                    })
                }
            }
        },
        Qz = function(C, O) {
            if (!(O = (C = null, c.trustedTypes), O) || !O.createPolicy) return C;
            try {
                C = O.createPolicy("bg", {
                    createHTML: f8,
                    createScript: f8,
                    createScriptURL: f8
                })
            } catch (J) {
                c.console && c.console.error(J.message)
            }
            return C
        },
        rV = function(C, O, J) {
            if ("object" == (O = typeof C, O))
                if (C) {
                    if (C instanceof Array) return "array";
                    if (C instanceof Object) return O;
                    if ("[object Window]" == (J = Object.prototype.toString.call(C), J)) return "object";
                    if ("[object Array]" == J || "number" == typeof C.length && "undefined" != typeof C.splice && "undefined" != typeof C.propertyIsEnumerable && !C.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == J || "undefined" != typeof C.call && "undefined" != typeof C.propertyIsEnumerable && !C.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == O && "undefined" == typeof C.call) return "object";
            return O
        },
        Oc = function(C, O) {
            return O[C] << 24 | O[(C | 0) + 1] << 16 | O[(C | 0) + 2] << 8 | O[(C | 0) + 3]
        },
        K8 = function(C, O, J, p) {
            A(O, n((p = H((J = H(O), O)), w(O, J)), C), p)
        },
        G = {
            passive: true,
            capture: true
        },
        Ax = function(C, O, J, p, L) {
            for (C = C.replace(/\r\n/g, "\n"), O = [], p = L = 0; L < C.length; L++) J = C.charCodeAt(L), 128 > J ? O[p++] = J : (2048 > J ? O[p++] = J >> 6 | 192 : (55296 == (J & 64512) && L + 1 < C.length && 56320 == (C.charCodeAt(L + 1) & 64512) ? (J = 65536 + ((J & 1023) << 10) + (C.charCodeAt(++L) & 1023), O[p++] = J >> 18 | 240, O[p++] = J >> 12 & 63 | 128) : O[p++] = J >> 12 | 224, O[p++] = J >> 6 & 63 | 128), O[p++] = J & 63 | 128);
            return O
        },
        H = function(C, O) {
            if (C.D) return v_(C, C.U);
            return (O = D(true, C, 8), O) & 128 && (O ^= 128, C = D(true, C, 2), O = (O << 2) + (C | 0)), O
        },
        sc = function(C, O, J) {
            if (3 == C.length) {
                for (J = 0; 3 > J; J++) O[J] += C[J];
                for (J = (C = 0, [13, 8, 13, 12, 16, 5, 3, 10, 15]); 9 > C; C++) O[3](O, C % 3, J[C])
            }
        },
        Vz = function(C, O, J, p, L) {
            J = w(O, (L = H((J = (C &= (p = C & 3, 4), H(O)), O)), J)), C && (J = Ax("" + J)), p && A(O, n(J.length, 2), L), A(O, J, L)
        },
        TN = function(C, O, J, p, L) {
            for (L = (p = (O.j8 = (O.wZ = zN({get: (O.El = (O.NL = O[R], O.c6 = Yc, n8), function() {
                        return this.concat()
                    })
                }, O.G), T[O.G](O.wZ, {
                    value: {
                        value: {}
                    }
                })), 0), []); 128 > p; p++) L[p] = String.fromCharCode(p);
            W(O, true, (e(((e([(F((V((V(107, O, (V(443, O, (F(O, 40, (V(430, (F(O, 35, (F((F(O, (F(O, (V(9, (F(O, (V(265, O, (V(358, O, (F(O, (V(466, (F((F(O, 387, (F(O, (F((F(O, (F(O, 489, (F(O, ((F(O, (F(O, 457, (F(O, 64, (F(O, 261, (F(((F(O, 287, (F(O, 485, (V((F(O, 477, (V(391, (F((F(O, (V(22, (F(O, 496, (F(O, (V(498, O, (V(215, (V(286, ((O.f3 = function(v) {
                this.C = v
            }, O.H = (O.Y = void 0, O.l = 0, p = window.performance || {}, O.K = [], 1), O).X = (O.W = [], O.L = void 0, O.I = false, (O.h = void 0, O).J = (O.K3 = (O.S = 25, O.D = void 0, false), O.B = null, O.C = O, O.Yx = (O.O = false, []), (O.Z = 8001, O.o = 0, O).A = [], 0), O.P = 0, (O.F = 0, O).g = (O.sl = (O.U = void 0, 0), []), O.R = 0, O.u = (O.N = void 0, void 0), []), O.hU = p.timeOrigin || (p.timing || {}).navigationStart || 0, O), 0), O), 0), [0, 0, 0])), 411), function(v, l, z, I, b, t, B, Q, r, Z, q, f) {
                function k(u, S) {
                    for (; Z < u;) f |= K(v) << Z, Z += 8;
                    return f >>= (Z -= u, S = f & (1 << u) - 1, u), S
                }
                for (Q = (z = (r = (f = Z = (t = H(v), 0), (k(3) | 0) + 1), l = k(5), 0), []), I = 0; z < l; z++) B = k(1), Q.push(B), I += B ? 0 : 1;
                for (q = (z = ((I | 0) - 1).toString(2).length, []), I = 0; I < l; I++) Q[I] || (q[I] = k(z));
                for (z = 0; z < l; z++) Q[z] && (q[z] = H(v));
                for (b = []; r--;) b.push(w(v, H(v)));
                F(v, t, function(u, S, io, d, y) {
                    for (io = (d = (S = 0, []), []); S < l; S++) {
                        if (!(y = q[S], Q)[S]) {
                            for (; y >= d.length;) d.push(H(u));
                            y = d[y]
                        }
                        io.push(y)
                    }
                    u.U = (u.D = uo(u, b.slice()), uo(u, io))
                })
            }), function(v, l) {
                (v = (l = H(v), w(v.C, l)), v[0]).removeEventListener(v[1], v[2], G)
            })), O), {}), 68), function(v) {
                K8(4, v)
            }), O), 230, function(v, l, z, I, b) {
                0 !== (l = w(v, (z = (I = w(v, (b = (l = (I = H((z = (b = H(v), H)(v), v)), H(v)), w(v.C, b)), I)), w(v, z)), l)), b) && (l = lo(l, I, 1, v, b, z), b.addEventListener(z, l, G), V(471, v, [b, z, l]))
            }), O), 677), function(v, l, z, I) {
                (I = (l = (z = H(v), K)(v), H)(v), V)(I, v, w(v, z) >>> l)
            })), 417), O, []), function(v, l) {
                W_((l = w(v, H(v)), l), v.C)
            })), function(v, l, z, I) {
                !P(v, true, l, false) && (l = Ic(v), z = l.i, I = l.C3, v.C == v || z == v.f3 && I == v) && (V(l.Xl, v, z.apply(I, l.v)), v.R = v.j())
            })), O).xx = 0, O), 3, function(v) {
                K8(1, v)
            }), function(v, l, z, I, b) {
                (l = H((b = (z = H(v), H(v)), v)), v.C == v) && (I = w(v, z), l = w(v, l), b = w(v, b), I[b] = l, 373 == z && (v.h = void 0, 2 == b && (v.N = D(false, v, 32), v.h = void 0)))
            })), function(v, l, z) {
                (l = H((z = H(v), v)), V)(l, v, "" + w(v, z))
            })), function(v, l, z, I) {
                V((l = w(v, (I = w(v, (l = H((I = H(v), v)), z = H(v), I)), l)), z), v, +(I == l))
            })), O.gZ = 0, 347), function(v, l, z, I) {
                V((l = w(v, (I = w((z = (I = H(v), H(v)), v), I), z)), z), v, l + I)
            }), O).bm = 0, 112), function(v) {
                Jx(4, v)
            }), function(v, l, z, I) {
                if (l = v.Yx.pop()) {
                    for (z = K(v); 0 < z; z--) I = H(v), l[I] = v.X[I];
                    v.X = (l[l[358] = v.X[358], 430] = v.X[430], l)
                } else V(286, v, v.F)
            })), 17), function(v, l, z, I, b) {
                for (l = (I = GN((b = H(v), v)), z = 0, []); z < I; z++) l.push(K(v));
                V(b, v, l)
            }), O), 181, function(v) {
                Vz(4, v)
            }), 376), function(v, l, z, I, b, t) {
                P(v, true, l, false) || (b = Ic(v.C), l = b.Xl, z = b.i, t = b.C3, b = b.v, I = b.length, z = 0 == I ? new t[z] : 1 == I ? new t[z](b[0]) : 2 == I ? new t[z](b[0], b[1]) : 3 == I ? new t[z](b[0], b[1], b[2]) : 4 == I ? new t[z](b[0], b[1], b[2], b[3]) : 2(), V(l, v, z))
            }), function(v, l, z, I) {
                V((l = w((z = (I = (l = (z = H(v), H(v)), H)(v), w(v, z)), v), l), I), v, z in l | 0)
            })), O), 351, function(v, l, z) {
                V((l = (l = w(v, (l = H(v), z = H(v), l)), rV(l)), z), v, l)
            }), O), 0), 252), function(v, l, z) {
                P(v, true, l, false) || (l = H(v), z = H(v), V(z, v, function(I) {
                    return eval(I)
                }(ZC(w(v.C, l)))))
            }), [])), F(O, 244, function(v, l, z, I, b, t) {
                if (!P(v, true, l, true)) {
                    if ("object" == (v = w((t = (b = (b = (t = (l = H((z = H(v), v)), H(v)), H(v)), l = w(v, l), w(v, b)), w)(v, t), v), z), rV(v))) {
                        for (I in z = [], v) z.push(I);
                        v = z
                    }
                    for (z = (t = 0 < (I = 0, t) ? t : 1, v.length); I < z; I += t) l(v.slice(I, (I | 0) + (t | 0)), b)
                }
            }), [160, 0, 0])), 504), function(v, l, z) {
                0 != w((z = w(v, (z = H((l = H(v), v)), z)), v), l) && V(286, v, z)
            }), O), N(4)), 322), function(v, l, z, I, b, t, B) {
                for (B = (t = (z = w(v, (I = (b = H(v), GN)(v), l = "", 484)), z).length, 0); I--;) B = ((B | 0) + (GN(v) | 0)) % t, l += L[z[B]];
                V(b, v, l)
            }), 393), function(v, l, z, I) {
                l = w(v, (I = (z = H((I = (l = H(v), H)(v), v)), w(v, I)), l)), V(z, v, l[I])
            }), O), 442, function(v, l, z, I) {
                (l = (z = H((I = H(v), v)), H(v)), V)(l, v, w(v, I) || w(v, z))
            }), function() {})), O), 2048), function(v) {
                Vz(3, v)
            })), O)), c)), 471), O, 0), O), 486, function(v, l, z, I, b) {
                V((l = w(v, (z = w(v, (b = H((z = (I = H(v), H(v)), l = H(v), v)), z)), b = w(v, b), l)), I), v, lo(l, z, b, v))
            }), qs)], O), e)([h, J], O), [Sw, C]), O), true))
        },
        Ns = function(C, O, J, p) {
            try {
                p = C[((O | 0) + 2) % 3], C[O] = (C[O] | 0) - (C[((O | 0) + 1) % 3] | 0) - (p | 0) ^ (1 == O ? p << J : p >>> J)
            } catch (L) {
                throw L;
            }
        },
        GN = function(C, O) {
            return (O = K(C), O & 128) && (O = O & 127 | K(C) << 7), O
        },
        H_ = function(C, O, J, p) {
            return (p = g[C.substring(0, 3) + "_"]) ? p(C.substring(3), O, J) : Ec(O, C)
        },
        F = function(C, O, J) {
            J[V(O, C, J), qs] = 2796
        },
        g, V = function(C, O, J) {
            if (286 == C || 215 == C) O.X[C] ? O.X[C].concat(J) : O.X[C] = uo(O, J);
            else {
                if (O.I && 373 != C) return;
                265 == C || 9 == C || 417 == C || 358 == C || 498 == C ? O.X[C] || (O.X[C] = P_(118, C, J, O)) : O.X[C] = P_(9, C, J, O)
            }
            373 == C && (O.N = D(false, O, 32), O.h = void 0)
        },
        kc = function(C, O, J) {
            return C.V(function(p) {
                J = p
            }, false, O), J
        },
        f8 = function(C) {
            return C
        },
        Ec = function(C, O) {
            return C(function(J) {
                J(O)
            }), [function() {
                return O
            }]
        },
        uo = function(C, O, J) {
            return (J = T[C.G](C.j8), J)[C.G] = function() {
                return O
            }, J.concat = function(p) {
                O = p
            }, J
        },
        C8 = function(C, O, J, p, L) {
            for (p = (C = (L = C[2] | 0, C)[3] | 0, 0); 14 > p; p++) J = J >>> 8 | J << 24, J += O | 0, J ^= L + 2298, O = O << 3 | O >>> 29, C = C >>> 8 | C << 24, C += L | 0, L = L << 3 | L >>> 29, C ^= p + 2298, L ^= C, O ^= J;
            return [O >>> 24 & 255, O >>> 16 & 255, O >>> 8 & 255, O >>> 0 & 255, J >>> 24 & 255, J >>> 16 & 255, J >>> 8 & 255, J >>> 0 & 255]
        },
        K = function(C) {
            return C.D ? v_(C, C.U) : D(true, C, 8)
        },
        W_ = function(C, O) {
            (O.Yx.push(O.X.slice()), O.X)[286] = void 0, V(286, O, C)
        },
        ac = function(C, O, J, p) {
            return (V(286, C, ((p = w(C, 286), C.g) && p < C.F ? (V(286, C, C.F), W_(J, C)) : V(286, C, J), tx(C, O), p)), w)(C, 22)
        },
        X, w = function(C, O) {
            if ((C = C.X[O], void 0) === C) throw [a, 30, O];
            if (C.value) return C.create();
            return (C.create(4 * O * O + -12 * O + 4), C).prototype
        },
        U = function(C, O, J) {
            J = this;
            try {
                TN(O, this, C)
            } catch (p) {
                m(p, this), O(function(L) {
                    L(J.Y)
                })
            }
        },
        P_ = function(C, O, J, p, L, v, l, z) {
            return J = [87, -12, -24, -71, (v = C & 7, z = xc, 14), -5, J, -72, -32, 90], l = T[p.G](p.wZ), l[p.G] = function(I) {
                v += 6 + 7 * C, v &= (L = I, 7)
            }, l.concat = function(I) {
                return (I = (I = (I = O % 16 + 1, -224 * L + (z() | 0) * I - I * L + 56 * L * L + v + J[v + 51 & 7] * O * I - -672 * O * L - 224 * O * O * L + 4 * O * O * I), J[I]), L = void 0, J[(v + 29 & 7) + (C & 2)] = I, J)[v + (C & 2)] = -12, I
            }, l
        },
        D = function(C, O, J, p, L, v, l, z, I, b, t, B, Q, r) {
            if (t = w(O, 286), t >= O.F) throw [a, 31];
            for (r = (v = (B = 0, L = O.NL.length, J), t); 0 < v;) Q = r >> 3, I = r % 8, p = 8 - (I | 0), p = p < v ? p : v, l = O.g[Q], C && (b = O, b.h != r >> 6 && (b.h = r >> 6, z = w(b, 373), b.L = C8([0, 0, z[1], z[2]], b.N, b.h)), l ^= O.L[Q & L]), B |= (l >> 8 - (I | 0) - (p | 0) & (1 << p) - 1) << (v | 0) - (p | 0), v -= p, r += p;
            return V(286, (C = B, O), (t | 0) + (J | 0)), C
        },
        m = function(C, O) {
            O.Y = ((O.Y ? O.Y + "~" : "E:") + C.message + ":" + C.stack).slice(0, 2048)
        },
        c = this || self,
        E = c.requestIdleCallback ? function(C) {
            requestIdleCallback(function() {
                C()
            }, {
                timeout: 4
            })
        } : c.setImmediate ? function(C) {
            setImmediate(C)
        } : function(C) {
            setTimeout(C, 0)
        },
        p8 = function(C, O, J, p, L) {
            if ((L = C[0], L) == M) O.S = 25, O.s(C);
            else if (L == R) {
                J = C[1];
                try {
                    p = O.Y || O.s(C)
                } catch (v) {
                    m(v, O), p = O.Y
                }
                J(p)
            } else if (L == bo) O.s(C);
            else if (L == h) O.s(C);
            else if (L == Sw) {
                try {
                    for (p = 0; p < O.A.length; p++) try {
                        J = O.A[p], J[0][J[1]](J[2])
                    } catch (v) {}
                } catch (v) {}(0, C[1])(function(v, l) {
                    O.V(v, true, l)
                }, (O.A = [], function(v) {
                    (e((v = !O.K.length, [ew]), O), v) && W(O, true, false)
                }))
            } else {
                if (L == Y) return p = C[2], V(247, O, C[6]), V(22, O, p), O.s(C);
                L == ew ? (O.g = [], O.W = [], O.X = null) : L == qs && "loading" === c.document.readyState && (O.B = function(v, l) {
                    function z() {
                        l || (l = true, v())
                    }(c.document.addEventListener("DOMContentLoaded", z, (l = false, G)), c).addEventListener("load", z, G)
                })
            }
        },
        L8 = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        bo = [],
        ew = [],
        M = (U.prototype.kx = void 0, U.prototype.T = "toString", []),
        R = [],
        a = (U.prototype.Da = false, U.prototype.RF = void 0, {}),
        h = [],
        Sw = [],
        qs = [],
        Y = [],
        xc = (((wV, function() {})(N), Ns, function() {})(sc), void 0),
        T = a.constructor,
        n8 = (((((((X = U.prototype, U).prototype.G = "create", X.m5 = function(C, O, J, p, L) {
            for (L = p = 0; L < C.length; L++) p += C.charCodeAt(L), p += p << 10, p ^= p >> 6;
            return (p = (p += p << 3, p ^= p >> 11, C = p + (p << 15) >>> 0, new Number(C & (1 << O) - 1)), p)[0] = (C >>> O) % J, p
        }, X.V = function(C, O, J, p, L) {
            if ((J = "array" === rV(J) ? J : [J], this).Y) C(this.Y);
            else try {
                p = !this.K.length, L = [], e([M, L, J], this), e([R, C, L], this), O && !p || W(this, O, true)
            } catch (v) {
                m(v, this), C(this.Y)
            }
        }, X).aF = function(C, O, J, p, L, v) {
            for (L = v = (p = [], 0); L < C.length; L++)
                for (J = J << O | C[L], v += O; 7 < v;) v -= 8, p.push(J >> v & 255);
            return p
        }, X.B6 = function(C, O, J) {
            return C ^ (O ^= O << 13, O ^= O >> 17, (O = (O ^ O << 5) & J) || (O = 1), O)
        }, X).ML = function() {
            return Math.floor(this.J + (this.j() - this.o))
        }, X.j = (window.performance || {}).now ? function() {
            return this.hU + window.performance.now()
        } : function() {
            return +new Date
        }, X).Ul = function() {
            return Math.floor(this.j())
        }, U).prototype.s = function(C, O) {
            return O = (xc = function() {
                    return C == O ? 4 : -46
                }, C = {}, {}),
                function(J, p, L, v, l, z, I, b, t, B, Q, r, Z, q, f) {
                    t = C, C = O;
                    try {
                        if (B = J[0], B == h) {
                            I = J[1];
                            try {
                                for (f = (L = [], v = atob(I), Z = 0); Z < v.length; Z++) p = v.charCodeAt(Z), 255 < p && (L[f++] = p & 255, p >>= 8), L[f++] = p;
                                V(373, this, (this.F = (this.g = L, this.g.length << 3), [0, 0, 0]))
                            } catch (k) {
                                x(k, 17, this);
                                return
                            }
                            tx(this, 8001)
                        } else if (B == M) J[1].push(w(this, 265).length, w(this, 417).length, w(this, 430), w(this, 9).length), V(22, this, J[2]), this.X[101] && ac(this, 8001, w(this, 101));
                        else {
                            if (B == R) {
                                b = (q = (L = J[2], n((w(this, 265).length | 0) + 2, 2)), this.C), this.C = this;
                                try {
                                    z = w(this, 358), 0 < z.length && A(this, n(z.length, 2).concat(z), 265, 10), A(this, n(this.H, 1), 265, 109), A(this, n(this[R].length, 1), 265), v = 0, v += w(this, 466) & 2047, r = w(this, 9), v -= (w(this, 265).length | 0) + 5, 4 < r.length && (v -= (r.length | 0) + 3), 0 < v && A(this, n(v, 2).concat(N(v)), 265, 15), 4 < r.length && A(this, n(r.length, 2).concat(r), 265, 156)
                                } finally {
                                    this.C = b
                                }
                                if (Q = (((f = N(2).concat(w(this, 265)), f)[1] = f[0] ^ 6, f)[3] = f[1] ^ q[0], f[4] = f[1] ^ q[1], this).dZ(f)) Q = "!" + Q;
                                else
                                    for (Q = "", v = 0; v < f.length; v++) l = f[v][this.T](16), 1 == l.length && (l = "0" + l), Q += l;
                                return w(this, (V(430, ((w(this, (Z = Q, 265)).length = L.shift(), w)(this, 417).length = L.shift(), this), L.shift()), 9)).length = L.shift(), Z
                            }
                            if (B == bo) ac(this, J[2], J[1]);
                            else if (B == Y) return ac(this, 8001, J[1])
                        }
                    } finally {
                        C = t
                    }
                }
        }(), U.prototype.oF = 0, U.prototype).tU = 0, /./);
    U.prototype.dZ = function(C, O, J, p) {
        if (O = window.btoa) {
            for (p = 0, J = ""; p < C.length; p += 8192) J += String.fromCharCode.apply(null, C.slice(p, p + 8192));
            C = O(J).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
        } else C = void 0;
        return C
    };
    var Yc, jw = (U.prototype[Sw] = [0, 0, 1, 1, 0, 1, 1], h).pop.bind(U.prototype[M]),
        ZC = ((Yc = zN({get: jw
        }, (n8[U.prototype.T] = jw, U.prototype.G)), U).prototype.v6 = void 0, function(C, O) {
            return (O = Qz()) && 1 === C.eval(O.createScript("1")) ? function(J) {
                return O.createScript(J)
            } : function(J) {
                return "" + J
            }
        }(c));
    (40 < (g = c.botguard || (c.botguard = {}), g).m || (g.m = 41, g.bg = B_, g.a = H_), g).hDL_ = function(C, O, J) {
        return [(J = new U(C, O), function(p) {
            return kc(J, p)
        })]
    };
}).call(this);
#3 JavaScript::Eval (size: 22) - SHA256: 96bc32102142a2b26979b51faca0349f415898ceeba6ca594e7498b337aa0808
0,
function(v) {
    Jx(2, v)
}
#4 JavaScript::Eval (size: 5593) - SHA256: 16bbc244ec01753b4eef7a75683d264f8ef747ba96ad479f9efde60048a7e9a4
var Cur_Cform_Hdr = '.comment_form';
var Cur_Cform_Url = $('#comment-editor').attr('src');

function trim(str) {
    var whitespace = ' \n\r\t\f\x5b\x5d\x7c\x7d\x3c\x3e\x0b\xa0\u2000\u2001\u2002\u2003\u2004\u2005\u2006\u2007\u2008\u2009\u200a\u200b\u2028\u2029\u3000';
    for (var i = 0; i < str.length; i++) {
        if (whitespace.indexOf(str.charAt(i)) != -1) {
            str = str.substring(0, i);
            break
        }
    }
    return str
}
$('#comment_block .comment_body p').html(function(index, oldhtml) {
    if (Replace_Youtube_Link) {
        var search_key = 'http://www.youtube.com/watch?v=';
        var check_index = oldhtml.indexOf(search_key);
        while (check_index != -1) {
            ht = oldhtml.substring(check_index);
            yt_link = trim(ht);
            var yt_code_index = yt_link.indexOf('&');
            var yt_code = '';
            if (yt_code_index == -1) {
                yt_code = yt_link.substring(search_key.length)
            } else {
                yt_code = yt_link.substring(search_key.length, yt_code_index)
            }
            var yt_video = '<iframe class="comment_youtube" src="http://www.youtube.com/embed/' + yt_code + '?autohide=1" frameborder="0" allowfullscreen></iframe>';
            oldhtml = oldhtml.substring(0, check_index) + yt_video + oldhtml.substring(check_index + yt_link.length);
            check_index = oldhtml.indexOf(search_key);
            if (check_index == -1) {
                search_key = 'https://www.youtube.com/watch?v=';
                check_index = oldhtml.indexOf(search_key)
            }
        }
    }
    if (Replace_Image_Link) {
        var save_html = '';
        var temp_html = oldhtml;
        for (var i = 0; i < Replace_Image_Ext.length; i++) {
            var search_key = '.' + Replace_Image_Ext[i];
            var upper_html = temp_html.toUpperCase();
            var check_index = upper_html.indexOf(search_key);
            while (check_index != -1) {
                img_src = temp_html.substring(0, check_index + search_key.length);
                upper_html = img_src.toUpperCase();
                var http_search = 'HTTP://';
                var find_http = upper_html.indexOf(http_search);
                var save_http = '';
                while (find_http != -1) {
                    save_http = http_search.toLowerCase();
                    img_src = img_src.substring(find_http + http_search.length);
                    upper_html = img_src.toUpperCase();
                    find_http = upper_html.indexOf(http_search)
                }
                http_search = 'HTTPS://';
                upper_html = img_src.toUpperCase();
                find_http = upper_html.indexOf(http_search);
                while (find_http != -1) {
                    save_http = http_search.toLowerCase();
                    img_src = img_src.substring(find_http + http_search.length);
                    upper_html = img_src.toUpperCase();
                    find_http = upper_html.indexOf(http_search)
                }
                if (save_http == '' || img_src.length < 6) {
                    break
                }
                img_src = save_http + img_src;
                save_html += temp_html.substring(0, check_index + search_key.length - img_src.length) + '<img src="' + img_src + '" class="comment_img"/>';
                temp_html = temp_html.substring(check_index + search_key.length);
                upper_html = temp_html.toUpperCase();
                check_index = upper_html.indexOf(search_key)
            }
        }
        oldhtml = save_html + temp_html
    }
    if (Display_Emo) {
        var length = Emo_List.length;
        if (length % 2 == 1) {
            length--
        }
        for (var i = 0; i < length; i += 2) {
            var img_html = '<img src="' + Emo_List[i + 1] + '" class="comment_emo"/>';
            check_index = oldhtml.indexOf(Emo_List[i]);
            while (check_index != -1) {
                oldhtml = oldhtml.substring(0, check_index) + img_html + oldhtml.substring(check_index + Emo_List[i].length);
                check_index = oldhtml.indexOf(Emo_List[i])
            }
        }
    }
    if (Replace_Force_Tag) {
        var length = Force_Tag.length;
        if (length % 2 == 1) {
            length--
        }
        for (var i = 0; i < length; i += 2) {
            while (1) {
                var temp_html = oldhtml.toLowerCase();
                check_index = temp_html.indexOf(Force_Tag[i]);
                if (check_index != -1) {
                    oldhtml = oldhtml.substring(0, check_index) + Force_Tag[i + 1] + oldhtml.substring(check_index + Force_Tag[i].length)
                } else {
                    break
                }
            }
        }
    }
    return oldhtml
});
$('.comment_emo_list').html(function(index, oldhtml) {
    if (Display_Emo) {
        var length = Emo_List.length;
        if (length % 2 == 1) {
            length--
        }
        var newhtml = '';
        for (var i = 0; i < length; i += 2) {
            var img_code = '<span>' + Emo_List[i] + '</span>';
            var img_html = '<img src="' + Emo_List[i + 1] + '" class="comment_emo"/>';
            newhtml += '<div class="item">' + img_html + img_code + '</div>'
        }
        return newhtml
    }
});
$('.comment_wrap .comment_body p').html(function(i, h) {
    temp = h.toLowerCase();
    index = temp.indexOf('@<a href="#c');
    if (index != -1) {
        index_tail = temp.indexOf('</a>', index);
        if (index_tail != -1) {
            h = h.substring(0, index) + h.substring(index_tail + 4)
        }
    }
    return h
});

function Valid_Par_Id(par_id) {
    r = par_id.indexOf('c');
    if (r != -1) par_id = par_id.substring(r + 1);
    return par_id
}

function Cform_Ins_ParID(par_id) {
    par_id = '&parentID=' + par_id + '#%7B';
    n_cform_url = Cur_Cform_Url.replace(/#%7B/, par_id);
    return n_cform_url
}

function Reset_Comment_Form() {
    html = $(Cur_Cform_Hdr).html();
    $(Cur_Cform_Hdr).html('');
    Cur_Cform_Hdr = '.comment_form';
    $(Cur_Cform_Hdr).html(html);
    $('#comment-editor').attr('src', Cur_Cform_Url)
}

function Display_Reply_Form(e) {
    par_id = $(e).attr('id');
    par_id = Valid_Par_Id(par_id);
    html = $(Cur_Cform_Hdr).html();
    if (Cur_Cform_Hdr == '.comment_form') {
        reset_html = '<a href="#origin_cform" onclick="Reset_Comment_Form()">' + Msgs.addComment + '</a><a name="origin_cform"/>';
        $(Cur_Cform_Hdr).html(reset_html)
    } else {
        $(Cur_Cform_Hdr).html('')
    }
    Cur_Cform_Hdr = '#r_f_c' + par_id;
    $(Cur_Cform_Hdr).html(html);
    $('#comment-editor').attr('src', Cform_Ins_ParID(par_id))
}
cur_url = window.location.href;
search_formid = '#comment-form_';
search_index = cur_url.indexOf(search_formid);
if (search_index != -1) {
    ret_id = cur_url.substring(search_index + search_formid.length);
    Display_Reply_Form('#rc' + ret_id)
}
for (var i = 0; i < Items.length; i++) {
    if ('parentId' in Items[i]) {
        var par_id = Items[i].parentId;
        var par_level = parseInt($('#c' + par_id + ':first').attr('data-level'));
        $('#c' + par_id + ' .comment_child:first').html(function(index, oldhtml) {
            var child_id = Items[i].id;
            if (par_level >= Config.maxThreadDepth) {
                $('#c' + child_id + ':first .comment_reply').remove()
            }
            var child_html = $('#c' + child_id + ':first').html();
            child_html = '<div class="comment_wrap" id="c' + child_id + '" data-level="' + (par_level + 1) + '">' + child_html + '</div>';
            $('#c' + child_id).remove();
            return (oldhtml + child_html)
        })
    }
}
var avatar = $("#comments");
avatar.find('.comment_avatar img').each(function() {
    var ava = $(this).attr('src');
    $(this).show().attr('src', ava.replace(/\/s[0-9]+(\-c)?\//, "/s45-c/"))
});
#5 JavaScript::Eval (size: 15595) - SHA256: a6ea689f7d9dad611f9b9128b7a88274629505eea048bdc0bfcf03552fec5d36
/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var J = function(C) {
            return C
        },
        p = this || self,
        l = function(C, O) {
            if (!(C = (O = p.trustedTypes, null), O) || !O.createPolicy) return C;
            try {
                C = O.createPolicy("bg", {
                    createHTML: J,
                    createScript: J,
                    createScriptURL: J
                })
            } catch (v) {
                p.console && p.console.error(v.message)
            }
            return C
        };
    (0, eval)(function(C, O) {
        return (O = l()) && 1 === C.eval(O.createScript("1")) ? function(v) {
            return O.createScript(v)
        } : function(v) {
            return "" + v
        }
    }(p)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var A=function(C,O,J,p,L,v){if(C.C==C)for(L=w(C,J),9==J?(J=function(l,z,I,b){if(I=(b=L.length,(b|0)-4>>3),L.Fl!=I){I=(I<<3)-(z=[0,0,v[1],v[L.Fl=I,2]],4);try{L.G7=C8(z,Oc(I,L),Oc((I|0)+4,L))}catch(t){throw t;}}L.push(L.G7[b&7]^l)},v=w(C,498)):J=function(l){L.push(l)},p&&J(p&255),C=O.length,p=0;p<C;p++)J(O[p])},e=function(C,O){O.K.splice(0,0,C)},v_=function(C,O){return O=O.create().shift(),C.D.create().length||C.U.create().length||(C.D=void 0,C.U=void 0),O},Jx=function(C,O,J,p){for(p=(J=H(O),0);0<C;C--)p=p<<8|K(O);V(J,O,p)},n=function(C,O,J,p){for(p=(J=(O|0)-1,[]);0<=J;J--)p[(O|0)-1-(J|0)]=C>>8*J&255;return p},lo=function(C,O,J,p,L,v){function l(){if(p.C==p){if(p.X){var z=[Y,O,C,void 0,L,v,arguments];if(2==J)var I=W(p,(e(z,p),false),false);else if(1==J){var b=!p.K.length;e(z,p),b&&W(p,false,false)}else I=p8(z,p);return I}L&&v&&L.removeEventListener(v,l,G)}}return l},zN=function(C,O){return T[O](T.prototype,{prototype:C,pop:C,call:C,splice:C,floor:C,replace:C,propertyIsEnumerable:C,parent:C,length:C,stack:C,document:C,console:C})},N=function(C,O){for(O=[];C--;)O.push(255*Math.random()|0);return O},W=function(C,O,J,p,L,v){if(C.K.length){C.O=!(C.K3=(C.O&&0(),O),0);try{p=C.j(),C.o=p,C.R=p,C.u=0,v=$c(C,O),L=C.j()-C.o,C.J+=L,L<(J?0:10)||0>=C.S--||(L=Math.floor(L),C.W.push(254>=L?L:254))}finally{C.O=false}return v}},Ic=function(C,O,J,p,L,v){for(J=(L=((p=(O=C[L8]||{},H(C)),O).Xl=H(C),O.v=[],C).C==C?(K(C)|0)-1:1,H(C)),v=0;v<L;v++)O.v.push(H(C));for((O.i=w(C,p),O).C3=w(C,J);L--;)O.v[L]=w(C,O.v[L]);return O},P=function(C,O,J,p,L,v,l,z,I){if(C.C=(C.H+=((I=(l=(L=(O||C.u++,0<C.l&&C.O&&C.K3&&1>=C.P&&!C.D&&!C.B)&&(!O||1<C.Z-J)&&0==document.hidden,(v=4==C.u)||L?C.j():C.R),l)-C.R,z=I>>14,C).N&&(C.N^=z*(I<<2)),z),z||C.C),v||L)C.R=l,C.u=0;if(!L||l-C.o<C.l-(p?255:O?5:2))return false;return C.B=((V(286,(p=(C.Z=J,w(C,O?215:286)),C),C.F),C).K.push([bo,p,O?J+1:J]),E),true},wV=function(C,O){((O.push(C[0]<<24|C[1]<<16|C[2]<<8|C[3]),O).push(C[4]<<24|C[5]<<16|C[6]<<8|C[7]),O).push(C[8]<<24|C[9]<<16|C[10]<<8|C[11])},x=function(C,O,J,p,L,v){if(!J.I){if(3<(C=((0==(p=w(J,((v=void 0,C)&&C[0]===a&&(v=C[2],O=C[1],C=void 0),358)),p.length)&&(L=w(J,215)>>3,p.push(O,L>>8&255,L&255),void 0!=v&&p.push(v&255)),O="",C)&&(C.message&&(O+=C.message),C.stack&&(O+=":"+C.stack)),w(J,430)),C)){J.C=(v=(O=(C-=(O=O.slice(0,(C|0)-3),O.length|0)+3,Ax(O)),J.C),J);try{A(J,n(O.length,2).concat(O),9,9)}finally{J.C=v}}V(430,J,C)}},tx=function(C,O,J,p,L,v){if(!C.Y){C.P++;try{for(p=(v=0,void 0),J=C.F;--O;)try{if((L=void 0,C).D)p=v_(C,C.D);else{if(v=w(C,286),v>=J)break;p=w(C,(L=(V(215,C,v),H(C)),L))}(p&&p[ew]&2048?p(C,O):x([a,21,L],0,C),P)(C,false,O,false)}catch(l){w(C,391)?x(l,22,C):V(391,C,l)}if(!O){if(C.Da){C.P--,tx(C,261929697120);return}x([a,33],0,C)}}catch(l){try{x(l,22,C)}catch(z){m(z,C)}}C.P--}},$c=function(C,O,J,p){for(;C.K.length;){p=(C.B=null,C.K.pop());try{J=p8(p,C)}catch(L){m(L,C)}if(O&&C.B){(O=C.B,O)(function(){W(C,true,true)});break}}return J},B_=function(C,O,J,p){function L(){}return p=H_(C,function(v){L&&(O&&E(O),J=v,L(),L=void 0)},(J=void 0,!!O))[0],{invoke:function(v,l,z,I){function b(){J(function(t){E(function(){v(t)})},z)}if(!l)return l=p(z),v&&v(l),l;J?b():(I=L,L=function(){E((I(),b))})}}},Qz=function(C,O){if(!(O=(C=null,c.trustedTypes),O)||!O.createPolicy)return C;try{C=O.createPolicy("bg",{createHTML:f8,createScript:f8,createScriptURL:f8})}catch(J){c.console&&c.console.error(J.message)}return C},rV=function(C,O,J){if("object"==(O=typeof C,O))if(C){if(C instanceof Array)return"array";if(C instanceof Object)return O;if("[object Window]"==(J=Object.prototype.toString.call(C),J))return"object";if("[object Array]"==J||"number"==typeof C.length&&"undefined"!=typeof C.splice&&"undefined"!=typeof C.propertyIsEnumerable&&!C.propertyIsEnumerable("splice"))return"array";if("[object Function]"==J||"undefined"!=typeof C.call&&"undefined"!=typeof C.propertyIsEnumerable&&!C.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==O&&"undefined"==typeof C.call)return"object";return O},Oc=function(C,O){return O[C]<<24|O[(C|0)+1]<<16|O[(C|0)+2]<<8|O[(C|0)+3]},K8=function(C,O,J,p){A(O,n((p=H((J=H(O),O)),w(O,J)),C),p)},G={passive:true,capture:true},Ax=function(C,O,J,p,L){for(C=C.replace(/\\r\\n/g,"\\n"),O=[],p=L=0;L<C.length;L++)J=C.charCodeAt(L),128>J?O[p++]=J:(2048>J?O[p++]=J>>6|192:(55296==(J&64512)&&L+1<C.length&&56320==(C.charCodeAt(L+1)&64512)?(J=65536+((J&1023)<<10)+(C.charCodeAt(++L)&1023),O[p++]=J>>18|240,O[p++]=J>>12&63|128):O[p++]=J>>12|224,O[p++]=J>>6&63|128),O[p++]=J&63|128);return O},H=function(C,O){if(C.D)return v_(C,C.U);return(O=D(true,C,8),O)&128&&(O^=128,C=D(true,C,2),O=(O<<2)+(C|0)),O},sc=function(C,O,J){if(3==C.length){for(J=0;3>J;J++)O[J]+=C[J];for(J=(C=0,[13,8,13,12,16,5,3,10,15]);9>C;C++)O[3](O,C%3,J[C])}},Vz=function(C,O,J,p,L){J=w(O,(L=H((J=(C&=(p=C&3,4),H(O)),O)),J)),C&&(J=Ax(""+J)),p&&A(O,n(J.length,2),L),A(O,J,L)},TN=function(C,O,J,p,L){for(L=(p=(O.j8=(O.wZ=zN({get:(O.El=(O.NL=O[R],O.c6=Yc,n8),function(){return this.concat()})},O.G),T[O.G](O.wZ,{value:{value:{}}})),0),[]);128>p;p++)L[p]=String.fromCharCode(p);W(O,true,(e(((e([(F((V((V(107,O,(V(443,O,(F(O,40,(V(430,(F(O,35,(F((F(O,(F(O,(V(9,(F(O,(V(265,O,(V(358,O,(F(O,(V(466,(F((F(O,387,(F(O,(F((F(O,(F(O,489,(F(O,((F(O,(F(O,457,(F(O,64,(F(O,261,(F(((F(O,287,(F(O,485,(V((F(O,477,(V(391,(F((F(O,(V(22,(F(O,496,(F(O,(V(498,O,(V(215,(V(286,((O.f3=function(v){this.C=v},O.H=(O.Y=void 0,O.l=0,p=window.performance||{},O.K=[],1),O).X=(O.W=[],O.L=void 0,O.I=false,(O.h=void 0,O).J=(O.K3=(O.S=25,O.D=void 0,false),O.B=null,O.C=O,O.Yx=(O.O=false,[]),(O.Z=8001,O.o=0,O).A=[],0),O.P=0,(O.F=0,O).g=(O.sl=(O.U=void 0,0),[]),O.R=0,O.u=(O.N=void 0,void 0),[]),O.hU=p.timeOrigin||(p.timing||{}).navigationStart||0,O),0),O),0),[0,0,0])),411),function(v,l,z,I,b,t,B,Q,r,Z,q,f){function k(u,S){for(;Z<u;)f|=K(v)<<Z,Z+=8;return f>>=(Z-=u,S=f&(1<<u)-1,u),S}for(Q=(z=(r=(f=Z=(t=H(v),0),(k(3)|0)+1),l=k(5),0),[]),I=0;z<l;z++)B=k(1),Q.push(B),I+=B?0:1;for(q=(z=((I|0)-1).toString(2).length,[]),I=0;I<l;I++)Q[I]||(q[I]=k(z));for(z=0;z<l;z++)Q[z]&&(q[z]=H(v));for(b=[];r--;)b.push(w(v,H(v)));F(v,t,function(u,S,io,d,y){for(io=(d=(S=0,[]),[]);S<l;S++){if(!(y=q[S],Q)[S]){for(;y>=d.length;)d.push(H(u));y=d[y]}io.push(y)}u.U=(u.D=uo(u,b.slice()),uo(u,io))})}),function(v,l){(v=(l=H(v),w(v.C,l)),v[0]).removeEventListener(v[1],v[2],G)})),O),{}),68),function(v){K8(4,v)}),O),230,function(v,l,z,I,b){0!==(l=w(v,(z=(I=w(v,(b=(l=(I=H((z=(b=H(v),H)(v),v)),H(v)),w(v.C,b)),I)),w(v,z)),l)),b)&&(l=lo(l,I,1,v,b,z),b.addEventListener(z,l,G),V(471,v,[b,z,l]))}),O),677),function(v,l,z,I){(I=(l=(z=H(v),K)(v),H)(v),V)(I,v,w(v,z)>>>l)})),417),O,[]),function(v,l){W_((l=w(v,H(v)),l),v.C)})),function(v,l,z,I){!P(v,true,l,false)&&(l=Ic(v),z=l.i,I=l.C3,v.C==v||z==v.f3&&I==v)&&(V(l.Xl,v,z.apply(I,l.v)),v.R=v.j())})),O).xx=0,O),3,function(v){K8(1,v)}),function(v,l,z,I,b){(l=H((b=(z=H(v),H(v)),v)),v.C==v)&&(I=w(v,z),l=w(v,l),b=w(v,b),I[b]=l,373==z&&(v.h=void 0,2==b&&(v.N=D(false,v,32),v.h=void 0)))})),function(v,l,z){(l=H((z=H(v),v)),V)(l,v,""+w(v,z))})),function(v,l,z,I){V((l=w(v,(I=w(v,(l=H((I=H(v),v)),z=H(v),I)),l)),z),v,+(I==l))})),O.gZ=0,347),function(v,l,z,I){V((l=w(v,(I=w((z=(I=H(v),H(v)),v),I),z)),z),v,l+I)}),O).bm=0,112),function(v){Jx(4,v)}),function(v,l,z,I){if(l=v.Yx.pop()){for(z=K(v);0<z;z--)I=H(v),l[I]=v.X[I];v.X=(l[l[358]=v.X[358],430]=v.X[430],l)}else V(286,v,v.F)})),17),function(v,l,z,I,b){for(l=(I=GN((b=H(v),v)),z=0,[]);z<I;z++)l.push(K(v));V(b,v,l)}),O),181,function(v){Vz(4,v)}),376),function(v,l,z,I,b,t){P(v,true,l,false)||(b=Ic(v.C),l=b.Xl,z=b.i,t=b.C3,b=b.v,I=b.length,z=0==I?new t[z]:1==I?new t[z](b[0]):2==I?new t[z](b[0],b[1]):3==I?new t[z](b[0],b[1],b[2]):4==I?new t[z](b[0],b[1],b[2],b[3]):2(),V(l,v,z))}),function(v,l,z,I){V((l=w((z=(I=(l=(z=H(v),H(v)),H)(v),w(v,z)),v),l),I),v,z in l|0)})),O),351,function(v,l,z){V((l=(l=w(v,(l=H(v),z=H(v),l)),rV(l)),z),v,l)}),O),0),252),function(v,l,z){P(v,true,l,false)||(l=H(v),z=H(v),V(z,v,function(I){return eval(I)}(ZC(w(v.C,l)))))}),[])),F(O,244,function(v,l,z,I,b,t){if(!P(v,true,l,true)){if("object"==(v=w((t=(b=(b=(t=(l=H((z=H(v),v)),H(v)),H(v)),l=w(v,l),w(v,b)),w)(v,t),v),z),rV(v))){for(I in z=[],v)z.push(I);v=z}for(z=(t=0<(I=0,t)?t:1,v.length);I<z;I+=t)l(v.slice(I,(I|0)+(t|0)),b)}}),[160,0,0])),504),function(v,l,z){0!=w((z=w(v,(z=H((l=H(v),v)),z)),v),l)&&V(286,v,z)}),O),N(4)),322),function(v,l,z,I,b,t,B){for(B=(t=(z=w(v,(I=(b=H(v),GN)(v),l="",484)),z).length,0);I--;)B=((B|0)+(GN(v)|0))%t,l+=L[z[B]];V(b,v,l)}),393),function(v,l,z,I){l=w(v,(I=(z=H((I=(l=H(v),H)(v),v)),w(v,I)),l)),V(z,v,l[I])}),O),442,function(v,l,z,I){(l=(z=H((I=H(v),v)),H(v)),V)(l,v,w(v,I)||w(v,z))}),function(){})),O),2048),function(v){Vz(3,v)})),O)),c)),471),O,0),O),486,function(v,l,z,I,b){V((l=w(v,(z=w(v,(b=H((z=(I=H(v),H(v)),l=H(v),v)),z)),b=w(v,b),l)),I),v,lo(l,z,b,v))}),qs)],O),e)([h,J],O),[Sw,C]),O),true))},Ns=function(C,O,J,p){try{p=C[((O|0)+2)%3],C[O]=(C[O]|0)-(C[((O|0)+1)%3]|0)-(p|0)^(1==O?p<<J:p>>>J)}catch(L){throw L;}},GN=function(C,O){return(O=K(C),O&128)&&(O=O&127|K(C)<<7),O},H_=function(C,O,J,p){return(p=g[C.substring(0,3)+"_"])?p(C.substring(3),O,J):Ec(O,C)},F=function(C,O,J){J[V(O,C,J),qs]=2796},g,V=function(C,O,J){if(286==C||215==C)O.X[C]?O.X[C].concat(J):O.X[C]=uo(O,J);else{if(O.I&&373!=C)return;265==C||9==C||417==C||358==C||498==C?O.X[C]||(O.X[C]=P_(118,C,J,O)):O.X[C]=P_(9,C,J,O)}373==C&&(O.N=D(false,O,32),O.h=void 0)},kc=function(C,O,J){return C.V(function(p){J=p},false,O),J},f8=function(C){return C},Ec=function(C,O){return C(function(J){J(O)}),[function(){return O}]},uo=function(C,O,J){return(J=T[C.G](C.j8),J)[C.G]=function(){return O},J.concat=function(p){O=p},J},C8=function(C,O,J,p,L){for(p=(C=(L=C[2]|0,C)[3]|0,0);14>p;p++)J=J>>>8|J<<24,J+=O|0,J^=L+2298,O=O<<3|O>>>29,C=C>>>8|C<<24,C+=L|0,L=L<<3|L>>>29,C^=p+2298,L^=C,O^=J;return[O>>>24&255,O>>>16&255,O>>>8&255,O>>>0&255,J>>>24&255,J>>>16&255,J>>>8&255,J>>>0&255]},K=function(C){return C.D?v_(C,C.U):D(true,C,8)},W_=function(C,O){(O.Yx.push(O.X.slice()),O.X)[286]=void 0,V(286,O,C)},ac=function(C,O,J,p){return(V(286,C,((p=w(C,286),C.g)&&p<C.F?(V(286,C,C.F),W_(J,C)):V(286,C,J),tx(C,O),p)),w)(C,22)},X,w=function(C,O){if((C=C.X[O],void 0)===C)throw[a,30,O];if(C.value)return C.create();return(C.create(4*O*O+-12*O+4),C).prototype},U=function(C,O,J){J=this;try{TN(O,this,C)}catch(p){m(p,this),O(function(L){L(J.Y)})}},P_=function(C,O,J,p,L,v,l,z){return J=[87,-12,-24,-71,(v=C&7,z=xc,14),-5,J,-72,-32,90],l=T[p.G](p.wZ),l[p.G]=function(I){v+=6+7*C,v&=(L=I,7)},l.concat=function(I){return(I=(I=(I=O%16+1,-224*L+(z()|0)*I-I*L+56*L*L+v+J[v+51&7]*O*I- -672*O*L-224*O*O*L+4*O*O*I),J[I]),L=void 0,J[(v+29&7)+(C&2)]=I,J)[v+(C&2)]=-12,I},l},D=function(C,O,J,p,L,v,l,z,I,b,t,B,Q,r){if(t=w(O,286),t>=O.F)throw[a,31];for(r=(v=(B=0,L=O.NL.length,J),t);0<v;)Q=r>>3,I=r%8,p=8-(I|0),p=p<v?p:v,l=O.g[Q],C&&(b=O,b.h!=r>>6&&(b.h=r>>6,z=w(b,373),b.L=C8([0,0,z[1],z[2]],b.N,b.h)),l^=O.L[Q&L]),B|=(l>>8-(I|0)-(p|0)&(1<<p)-1)<<(v|0)-(p|0),v-=p,r+=p;return V(286,(C=B,O),(t|0)+(J|0)),C},m=function(C,O){O.Y=((O.Y?O.Y+"~":"E:")+C.message+":"+C.stack).slice(0,2048)},c=this||self,E=c.requestIdleCallback?function(C){requestIdleCallback(function(){C()},{timeout:4})}:c.setImmediate?function(C){setImmediate(C)}:function(C){setTimeout(C,0)},p8=function(C,O,J,p,L){if((L=C[0],L)==M)O.S=25,O.s(C);else if(L==R){J=C[1];try{p=O.Y||O.s(C)}catch(v){m(v,O),p=O.Y}J(p)}else if(L==bo)O.s(C);else if(L==h)O.s(C);else if(L==Sw){try{for(p=0;p<O.A.length;p++)try{J=O.A[p],J[0][J[1]](J[2])}catch(v){}}catch(v){}(0,C[1])(function(v,l){O.V(v,true,l)},(O.A=[],function(v){(e((v=!O.K.length,[ew]),O),v)&&W(O,true,false)}))}else{if(L==Y)return p=C[2],V(247,O,C[6]),V(22,O,p),O.s(C);L==ew?(O.g=[],O.W=[],O.X=null):L==qs&&"loading"===c.document.readyState&&(O.B=function(v,l){function z(){l||(l=true,v())}(c.document.addEventListener("DOMContentLoaded",z,(l=false,G)),c).addEventListener("load",z,G)})}},L8=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),bo=[],ew=[],M=(U.prototype.kx=void 0,U.prototype.T="toString",[]),R=[],a=(U.prototype.Da=false,U.prototype.RF=void 0,{}),h=[],Sw=[],qs=[],Y=[],xc=(((wV,function(){})(N),Ns,function(){})(sc),void 0),T=a.constructor,n8=(((((((X=U.prototype,U).prototype.G="create",X.m5=function(C,O,J,p,L){for(L=p=0;L<C.length;L++)p+=C.charCodeAt(L),p+=p<<10,p^=p>>6;return(p=(p+=p<<3,p^=p>>11,C=p+(p<<15)>>>0,new Number(C&(1<<O)-1)),p)[0]=(C>>>O)%J,p},X.V=function(C,O,J,p,L){if((J="array"===rV(J)?J:[J],this).Y)C(this.Y);else try{p=!this.K.length,L=[],e([M,L,J],this),e([R,C,L],this),O&&!p||W(this,O,true)}catch(v){m(v,this),C(this.Y)}},X).aF=function(C,O,J,p,L,v){for(L=v=(p=[],0);L<C.length;L++)for(J=J<<O|C[L],v+=O;7<v;)v-=8,p.push(J>>v&255);return p},X.B6=function(C,O,J){return C^(O^=O<<13,O^=O>>17,(O=(O^O<<5)&J)||(O=1),O)},X).ML=function(){return Math.floor(this.J+(this.j()-this.o))},X.j=(window.performance||{}).now?function(){return this.hU+window.performance.now()}:function(){return+new Date},X).Ul=function(){return Math.floor(this.j())},U).prototype.s=function(C,O){return O=(xc=function(){return C==O?4:-46},C={},{}),function(J,p,L,v,l,z,I,b,t,B,Q,r,Z,q,f){t=C,C=O;try{if(B=J[0],B==h){I=J[1];try{for(f=(L=[],v=atob(I),Z=0);Z<v.length;Z++)p=v.charCodeAt(Z),255<p&&(L[f++]=p&255,p>>=8),L[f++]=p;V(373,this,(this.F=(this.g=L,this.g.length<<3),[0,0,0]))}catch(k){x(k,17,this);return}tx(this,8001)}else if(B==M)J[1].push(w(this,265).length,w(this,417).length,w(this,430),w(this,9).length),V(22,this,J[2]),this.X[101]&&ac(this,8001,w(this,101));else{if(B==R){b=(q=(L=J[2],n((w(this,265).length|0)+2,2)),this.C),this.C=this;try{z=w(this,358),0<z.length&&A(this,n(z.length,2).concat(z),265,10),A(this,n(this.H,1),265,109),A(this,n(this[R].length,1),265),v=0,v+=w(this,466)&2047,r=w(this,9),v-=(w(this,265).length|0)+5,4<r.length&&(v-=(r.length|0)+3),0<v&&A(this,n(v,2).concat(N(v)),265,15),4<r.length&&A(this,n(r.length,2).concat(r),265,156)}finally{this.C=b}if(Q=(((f=N(2).concat(w(this,265)),f)[1]=f[0]^6,f)[3]=f[1]^q[0],f[4]=f[1]^q[1],this).dZ(f))Q="!"+Q;else for(Q="",v=0;v<f.length;v++)l=f[v][this.T](16),1==l.length&&(l="0"+l),Q+=l;return w(this,(V(430,((w(this,(Z=Q,265)).length=L.shift(),w)(this,417).length=L.shift(),this),L.shift()),9)).length=L.shift(),Z}if(B==bo)ac(this,J[2],J[1]);else if(B==Y)return ac(this,8001,J[1])}}finally{C=t}}}(),U.prototype.oF=0,U.prototype).tU=0,/./);U.prototype.dZ=function(C,O,J,p){if(O=window.btoa){for(p=0,J="";p<C.length;p+=8192)J+=String.fromCharCode.apply(null,C.slice(p,p+8192));C=O(J).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else C=void 0;return C};var Yc,jw=(U.prototype[Sw]=[0,0,1,1,0,1,1],h).pop.bind(U.prototype[M]),ZC=((Yc=zN({get:jw},(n8[U.prototype.T]=jw,U.prototype.G)),U).prototype.v6=void 0,function(C,O){return(O=Qz())&&1===C.eval(O.createScript("1"))?function(J){return O.createScript(J)}:function(J){return""+J}}(c));(40<(g=c.botguard||(c.botguard={}),g).m||(g.m=41,g.bg=B_,g.a=H_),g).hDL_=function(C,O,J){return[(J=new U(C,O),function(p){return kc(J,p)})]};}).call(this);'));
}).call(this);
#6 JavaScript::Eval (size: 62) - SHA256: 656ddb7093a608f140df5a991c579e27ad31e247a6ded28fa406e948965cf12a
0,
function(v, l, z) {
    z = (l = (z = H(v), H(v)), v.X[z]) && w(v, z), V(l, v, z)
}
#7 JavaScript::Eval (size: 2109) - SHA256: 332fc70229df83d659cfae8df64f0a8739cf2626a107aa8a31ad93e519295c0f
               (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-bc8d59f796233b632b8846bc72a15192')) {
                       var callback = function() {
                           (new Image()).src = '//snappedanticipation.com/clk.gif?landing_id=3569806&placement_id=15928454&sid=H4sIAAAAAAAC%2F1RTzYscxRuuzi%2F5gehFySUgMgcPCu5uVXdXfxhEjDESjElIIjnX50y5PV1NVff0ZE%2FBQAgedPCkt953Nlk%2Fgpg%2FQJRZLzEgZDzIHFwE%2F4RAzjKThdEXqt73eZ86PE%2B9Vbd3m0OEoWGLyx%2FaHVMUbItu4t5r100pbet7F6%2F1CN7Ep3vXTZnEp3vj5eZGbxJMN%2FHrvfeV2LZbISYYE0x654xT2o63ViyY6n5ONnO8GYebhMYwdv%2FFvgnAswDk6BC9BEbOTwwePgAjZlAOfzir%2FHZtqzfeGzYFq62Dkdz%2FqNwubVvCcF1qF4Au949Og%2FVzhL48BrbcP3IAdrS3dADczFHwBwFe7h%2FJBD66%2B0wpL0CVwOXz0I5moIoDMGwGwt4CIx8jACHh4iUoh%2FcuWteyG89YtmTn6PjTJ2DaOTr%2B50koh9%2BfKcy4d9UWTW1s6WGsOzDjGZj%2BDKrmAOqdAEx7AKL%2BBIz8DW09vQDlcO%2BSLywYuXhV5bGKOIk2sjDlG3GeZRtZGGYbLFaJIERKqtTqioyZgdEzKNQEmA%2BgWS4TQKMDaKoAhnLRYzTXGKea6yjKYiFEFAlBs0RSGcWZxtCIpYcJ1NUERDEB4W5C5W7CtvlijtDDvx%2Bf%2BAtc8zP4weJrpvI0liqkWCpJmMwThVMcKy3iDIcy11oJHaYspESGXEYixYmMwjTGhBOaMh1muU4TlmZZzpJQxYnkguiUUa0Fz7BiIo0ZyTIZc0Y4JSTKFSER1iGmScxFnigWR5rqNCdpSvNQUZFjTSlVmKRZynmqeEbAywB8jWAkO2gVgtYjaBmC1iBoawTtqLsrCx%2F67p4sfMPJUQ6PctRNbd3fZXdt3Vcl2q0O0YurST954TZsq0WPi0zSXKd5EkYRT6KQZ1mccJGGjFCSh%2BBNB8YfW81lx8zRyUUMlZmjY69MgLMD8MUBCHMSWHMCWDuNMAY2mIYUw075Uz1QTelrW1WMF0oqVg%2BGTAxMqfxmqWqQtoOqPg71jWC3OESnVtKS8WegxCN0FCBcB5Xr4GPzC4J%2BcWd6xbZo74ptPXpwqarN0Oyw5QO9WrNa%2Ff%2FbD9SN1jp5%2FqyffPOOWBLL8v415esLrJSm7Hv03RkjpXLnrBMK%2FXjeX1f8cuMHZxpXNtWFy%2B%2BeOz%2BsnPLe2HIGzDxWv4Iwc%2FTcp2%2Btvt7LXz0F42bgmg6GzVqpsQcgqpvgq3XPWwSuWGNeIWibbupCvm4WBkGh1pjxDvy%2FMF%2FXu%2F4O9F0ArL4F5bCDketgVHTAign45n%2FTunKP3v49WgXwIpjywqE9Xrglbxa9jOdU5zqhmUhTHYUJphRLmWmuGccxh9rPxeen%2Bv8AAAD%2F%2FwEAAP%2F%2FRajURE0FAAA%3D&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();

Executed Writes (1)
#1 JavaScript::Write (size: 4) - SHA256: b1ab1e892617f210425f658cf1d361b5489028c8771b56d845fe1c62c1fbc8b0
2022


HTTP Transactions (103)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2790
Expires: Tue, 06 Dec 2022 11:15:21 GMT
Date: Tue, 06 Dec 2022 10:28:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5812
Cache-Control: max-age=92360
Date: Tue, 06 Dec 2022 10:28:51 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 12:08:11 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 10:18:38 GMT
cache-control: public,max-age=3600
age: 613
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14575
Expires: Tue, 06 Dec 2022 14:31:46 GMT
Date: Tue, 06 Dec 2022 10:28:51 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: TZswYYE/CvnDofIShgUv1S9ECSf5hFLh2Gym7QiHdnlrCfyimtzLxtffDDl9M/AXlKe+HHsHdxo=
x-amz-request-id: 5BH9Y6F75D48N7VC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 09:47:03 GMT
age: 2508
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    53341dea33f4f3d9b4966f80589f429a
Sha1:   20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:51 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 10:11:20 GMT
cache-control: public,max-age=3600
age: 1052
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /2022/03/ausmalbilder-pferde-fur-kinder-kids-n.html HTTP/1.1 
Host: jazmyneziemann.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.217.21.161
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: https://jazmyneziemann.blogspot.com/2022/03/ausmalbilder-pferde-fur-kinder-kids-n.html
Content-Encoding: gzip
Date: Tue, 06 Dec 2022 10:28:52 GMT
Expires: Tue, 06 Dec 2022 10:28:52 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 222
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   222
Md5:    b0c2ae845bf92c2b7252f067848ffcee
Sha1:   011d9aea4c9994254017e9712205b29a94eec47d
Sha256: b65c54120935de2e42e573c9dcb86ff987e3712dd0cace21fbd4db20254d24ef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5798
Cache-Control: max-age=87278
Date: Tue, 06 Dec 2022 10:28:52 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:43:30 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mLbwqfpP9ZXLMZr3eQfvaA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.238.3.246
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nqFtEK8tcqhfuURP8lwa4D2r74k=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /2022/03/ausmalbilder-pferde-fur-kinder-kids-n.html HTTP/1.1 
Host: jazmyneziemann.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         172.217.21.161
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
content-security-policy: upgrade-insecure-requests
content-security-policy-report-only: default-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; report-uri https://www.blogger.com/cspreport
expires: Tue, 06 Dec 2022 10:28:53 GMT
date: Tue, 06 Dec 2022 10:28:53 GMT
cache-control: private, max-age=0
last-modified: Mon, 05 Dec 2022 13:02:08 GMT
etag: W/"cefec7529a84f4dee2fe531391aa093ebca6b945b0db737985dbb3ce9c230fc9"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 33223
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7085)
Size:   33223
Md5:    9363038b7ed843d50b3e69ced9255268
Sha1:   214c61aca3674f16c9a025ee7e09fd747b842b6c
Sha256: 1449bfd1967262f7cd182595382c3230fe22028ccfe9c908c79d5ccef93fd265
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:01:43 GMT
expires: Wed, 29 Nov 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
age: 592030
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30596)
Size:   6620
Md5:    6f46e6f68353c7911fe34f31faa1518f
Sha1:   ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
Sha256: 0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
                                        
                                            GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:44:05 GMT
expires: Wed, 29 Nov 2023 13:44:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
age: 593088
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1441)
Size:   6573
Md5:    f60e5037324bf7fd2256c16929886f09
Sha1:   aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
Sha256: 71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
                                        
                                            GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 156915
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 05:43:30 GMT
expires: Wed, 06 Dec 2023 05:43:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 08:51:54 GMT
age: 17123
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   156915
Md5:    64d62574443f9d2148012af05abf60ac
Sha1:   16fc9b9b71eb94dbfdc15da12e9b3f21dfe1636e
Sha256: c752966435826f865df5163012e3066bd9f0339b1959098323533be261741246
                                        
                                            GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.234
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 04 Dec 2022 07:58:22 GMT
expires: Mon, 04 Dec 2023 07:58:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 181831
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32180)
Size:   29707
Md5:    f16500423cc2867eff8b773df637c48f
Sha1:   1cd32d75b59a89c3a70274e383151a61ce0594f4
Sha256: 6ca5dc8ad67639c69117ace46c93703cf5fff82824cfc0bada0cf0fb3b2d41d7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.238
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Tue, 06 Dec 2022 10:28:53 GMT
expires: Tue, 06 Dec 2022 10:28:53 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1279)
Size:   20984
Md5:    7ac44ef24e267df17ff72f195b252806
Sha1:   62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
Sha256: aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /www.kinder-malvorlagen.com/_thmbs/tiere-pferde/pferd-galoppiert.gif HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:53 GMT
content-length: 2020
last-modified: Tue, 06 Dec 2022 10:28:53 GMT
expires: Thu, 05 Dec 2024 22:28:53 GMT
cache-control: public, max-age=63115200
link: <http://www.kinder-malvorlagen.com/_thmbs/tiere-pferde/pferd-galoppiert.gif>; rel="canonical"
x-content-type-options: nosniff
etag: "ea1ab901395246e3"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2020
Md5:    3d00f0ba7aef2fc2c51ae831d9c1f3ff
Sha1:   f8b0eadef036fae87147ec3c6e7e58fe451be525
Sha256: bc6adf3591513b236d751ae10ff8c1716ed600ef20e5e640923481be1af8d163
                                        
                                            GET /blogger_img_proxy/ANbyha1Y0PPPlw2i5zTThfu3gwWTXjw4qwb4o3Xe40cCkbh_trsoDdWGR362P9ynRbCOmkrLHASOwqH9_6JKoJ1JkndaDVvQlXyeKrom7m-3i8HEFSo_v_odz6S-0_m7SOlQqPloSKm6xySZJVlU8Q=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.225
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:53 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1747
Md5:    ac087d32f2b8cacc3f93426dabe1d630
Sha1:   f2b1f6e4b4e5dd7204f89bf094c684726e19e921
Sha256: d6b7116edeec75644566ba6ed20d004127e7d5b52fd2c6a6ef8c778f8f1d7cca
                                        
                                            GET /blogger_img_proxy/ANbyha3ecUGBFfZqFOZeFmhj5FDWcIeWyY-gxEyDKxiAjjdRWWQRcso0dmXpNUPcn8Q1Wo3YKEnesC6NmaFGBX0wN8PeeArynRaNVg31c_PbXdtpumPvxGsLz3XBg6soCR7NY87I8eEzqL4UeSrgHnXZ143nljY9I9OAWgjqU7Q=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.225
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:53 GMT
server: fife
content-length: 1768
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1768
Md5:    b323747a3d7fb45712956a06732afe91
Sha1:   17bb2fef1a957739ab9d239d2a3e7a68adf01de5
Sha256: 30c576cd1445bb4c8c7b6a5b67968b2bcad91f4ceded5f9936dfb260514f8d16
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /www.ausmalbilder-gratis.de/ausmalbilder-pferde-05/bilder-gross/010-pferde-springen-001.jpg HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:53 GMT
content-length: 25666
last-modified: Tue, 06 Dec 2022 10:28:53 GMT
expires: Thu, 05 Dec 2024 22:28:53 GMT
cache-control: public, max-age=63115200
link: <http://www.ausmalbilder-gratis.de/ausmalbilder-pferde-05/bilder-gross/010-pferde-springen-001.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6ca3753f221b2fd5"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   25666
Md5:    c0c53ed7030427b405b541ebd7624009
Sha1:   7e8f7cf5023fe03e151513e3db70091e8fc1b910
Sha256: a86a5183c56c500b63177a74955f8e566b1c350ff7afe724947535e526b08969
                                        
                                            GET /blogger_img_proxy/ANbyha1_uxnTziFRqe3F654bvG3Najab52tEAsmS_SFuIpd1rA5MeyEQurscWFfQ0SYPX51v_wjZPaqq4os1sewOSwLfJJLBcSxP3seI_lUJBwQ1Hh1cXm2WagnNA-BlnQdMZ6KkrFmNgXeZGOHEzXbxQjWrZVz_kqFG4O4Ki8P4SoUTYCRUtvtPgGfpbXmfZASaaPEAyra-h6GJPFB_CYJM9Oc=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Wed, 07 Dec 2022 10:28:53 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:53 GMT
server: fife
content-length: 4349
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   4349
Md5:    a98029a1830f58cdcb78599b4ea75850
Sha1:   0dabf8b49c1063ff915c1a7867065fb15ee3ec8b
Sha256: b922bef61a0a0e073e3171a2c37ec76b7f7ecb16a82ca08b0aa391a8c9a5a905
                                        
                                            GET /blogger_img_proxy/ANbyha1351qi5Sxk5clvrE3qziZZIkIibXLpJdVwGyRTUZwGt53vNzccpdLy4C7_XzCI53NaUh_ONrcP1QJT6osAYY0lB0S5Vooe2vuNLzG3rXeHH0TleS-oo5H87vp8nm7uqd72=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Wed, 07 Dec 2022 10:28:53 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:53 GMT
server: fife
content-length: 5656
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   5656
Md5:    9ba12a8442967c2c4ab7984db438c3e3
Sha1:   dde71b96abcb261fc5d1f3cab6c52c15a1920b91
Sha256: b0d49ee123ef20c978b1cdcede96c25719d4f8fab82c8d64acb641ac3d3dd8a8
                                        
                                            GET /www.schule-und-familie.de/assets/images/Malen/pferde/_th7_Malvorlage_maedchen_auf_pferd.jpg HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:53 GMT
content-length: 24108
last-modified: Tue, 06 Dec 2022 10:28:53 GMT
expires: Thu, 05 Dec 2024 22:28:53 GMT
cache-control: public, max-age=63115200
link: <http://www.schule-und-familie.de/assets/images/Malen/pferde/_th7_Malvorlage_maedchen_auf_pferd.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4c82340521af72ed"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 500x558, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   24108
Md5:    6819d6e8e002a96c87823ca2cf44277e
Sha1:   3d3c5e3625829fcf2724153dd9d33e3dd0645304
Sha256: 71412f24ce8e4289c27e0b65f60d2c61170801ad4835447ce7d58161d96fd028
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=143048
Date: Tue, 06 Dec 2022 10:28:53 GMT
Etag: "638ea52d-118"
Expires: Thu, 08 Dec 2022 02:13:01 GMT
Last-Modified: Tue, 06 Dec 2022 02:13:01 GMT
Server: nginx
Content-Length: 280

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-P3DOmXqEiCM/VkOW8tkzxGI/AAAAAAAAMpE/cBX9b0xTPU8/s1600/sosmed2.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.65
HTTP/2 200 OK
content-type: image/png
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="sosmed2.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4505
x-xss-protection: 0
date: Tue, 06 Dec 2022 10:28:53 GMT
expires: Sun, 06 Nov 2022 06:29:00 GMT
cache-control: public, max-age=86400, no-transform
etag: "v3292"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 200 x 226, 8-bit/color RGBA, non-interlaced\012- data
Size:   4505
Md5:    55c54ce0dd4f713f0e1b4061b668ad72
Sha1:   d07dedceb9634e2e619d879eb885e05f7d3ab88e
Sha256: 8ee2dd52049ec5ed4a9f10a9128419a11bd7f610129b458396137a4227e7fa6f
                                        
                                            GET /www.malvorlagen-bilder.de/malvorlage/pferde/ausmalbild-pferde.jpg HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:53 GMT
content-length: 28948
last-modified: Tue, 06 Dec 2022 10:28:53 GMT
expires: Thu, 05 Dec 2024 22:28:53 GMT
cache-control: public, max-age=63115200
link: <http://www.malvorlagen-bilder.de/malvorlage/pferde/ausmalbild-pferde.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0a47a0449d3ff0a1"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 600x900, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   28948
Md5:    fa781455e2d7cdf654369412b6e2589f
Sha1:   5b63d03f3bfad6002e016d02cb0ff2ebfeaf08fb
Sha256: c1389ff00dc992eaeaa9c9dbfc889e8de843f5b28c2fe101a3fcef51ccd6dc16
                                        
                                            GET /www.malvorlagen-bilder.de/malvorlage/pferde/ausmalbilder-pferde-mit-maehne.jpg HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:53 GMT
content-length: 25972
last-modified: Tue, 06 Dec 2022 10:28:53 GMT
expires: Thu, 05 Dec 2024 22:28:53 GMT
cache-control: public, max-age=63115200
link: <http://www.malvorlagen-bilder.de/malvorlage/pferde/ausmalbilder-pferde-mit-maehne.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e7bfa6acaf141457"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 600x894, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   25972
Md5:    1be8b67e7dcb00868f5b772d22e31f3e
Sha1:   079aa7942f559e26dd8a027fb51888680ace460d
Sha256: 39e604edd68a7e79da073465c669d1e8eb274a6a5284447619983080bbe37e1f
                                        
                                            GET /raskrasil.com/wp-content/uploads/Raskrasil-loshad-8.jpg HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:53 GMT
content-length: 29120
last-modified: Tue, 06 Dec 2022 10:28:53 GMT
expires: Thu, 05 Dec 2024 22:28:53 GMT
cache-control: public, max-age=63115200
link: <http://raskrasil.com/wp-content/uploads/Raskrasil-loshad-8.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "65275d0f36190e7b"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 900x1101, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   29120
Md5:    cd3128f3a33f9438eff194d628b3bb7c
Sha1:   84a4f6994911a0082d55aa50a1d962ba6fd5087a
Sha256: 33eaa6962d6532cd7b6ef3f651513aac5f19d7242ea372e1bf06e1b132cfaaf7
                                        
                                            GET /blogger_img_proxy/ANbyha07X7gKraORRcKw9xL_n9qJk74rtpl1mXX-Qv6-R-kGFntsbEnAF2y6SBSrAdtelof7wLAKpiSGVmWjhRvfJPaxuHGNJJLTQPhAOKDla2Bk7HfxyCTvsJ7F4Fsosb-pR6O6KKdIYFAzkg31iSM=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Wed, 07 Dec 2022 10:28:53 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:53 GMT
server: fife
content-length: 4444
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   4444
Md5:    555c1bc3d8cc2ca0173e4705ceb9c24b
Sha1:   4dcaa09ee28e3c9b0ed3d3bc31317218af22dcc0
Sha256: fe2a4f83718cc794795121481fd8318e8126b594d2101b33713a28265d30159f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=143048
Date: Tue, 06 Dec 2022 10:28:53 GMT
Etag: "638ea52d-118"
Expires: Thu, 08 Dec 2022 02:13:01 GMT
Last-Modified: Tue, 06 Dec 2022 02:13:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4928
Cache-Control: max-age=165273
Date: Tue, 06 Dec 2022 10:28:53 GMT
Etag: "638ee8bf-116"
Expires: Thu, 08 Dec 2022 08:23:26 GMT
Last-Modified: Tue, 06 Dec 2022 07:01:19 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /malen-lernen.org/wp-content/uploads/2019/06/ausmalbilder-pferde.jpg HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:53 GMT
content-length: 119466
last-modified: Tue, 06 Dec 2022 10:28:53 GMT
expires: Thu, 05 Dec 2024 22:28:53 GMT
cache-control: public, max-age=63115200
link: <http://malen-lernen.org/wp-content/uploads/2019/06/ausmalbilder-pferde.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "54fb7db970696b27"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 848x530, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   119466
Md5:    192626b3311a977db677191bdb57c4c4
Sha1:   b933b22d5ca1c79fbcbc2d2b5d144bccefcb1a9d
Sha256: 40285d88ebdfacf108a168e4b6f505cbb6002c091202ec9956cab81bb4ea04f1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4928
Cache-Control: max-age=165273
Date: Tue, 06 Dec 2022 10:28:53 GMT
Etag: "638ee8bf-116"
Expires: Thu, 08 Dec 2022 08:23:26 GMT
Last-Modified: Tue, 06 Dec 2022 07:01:19 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /-jSUS8v5kwpQ/U8Z_6Ufr-PI/AAAAAAAAEYY/o4cQPKvt8vQ/s1600/loading.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.65
HTTP/2 404 Not Found
content-type: image/png
                                        
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:53 GMT
server: fife
content-length: 832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size:   832
Md5:    596246739a83bb45e30e13437e0810d9
Sha1:   203d99f5cb1f2c816d6f9974cc5a73cf412892a6
Sha256: 94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
                                        
                                            GET /blogger_img_proxy/ANbyha0YiVYubyf1D4Ug9g50BXiSXi0bHjEi4eLYKz5kcgOljAvjBhoR70c11GFxLfDRvqkmisCcXf7Nq3t2ycG6rZUIHrtRJ-uXaqkpeXrF8wrs-8Zq8_IuKw-epMmS-AfZJk8BVjBX_UlLgOnvC3WC6C3hZM77dR481ATN=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Wed, 07 Dec 2022 10:28:53 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:53 GMT
server: fife
content-length: 2409
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   2409
Md5:    546831edcf12c7eaff420fdf7b4728b3
Sha1:   bef19bce5623740ae7e91ad438e15b71e487e791
Sha256: e26aef392793f4d85624f52382b1f47afd6bc2c07b58152ced418450f56ab4b0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /www.kribbelbunt.de/fileadmin/user_upload/Bild-2_Pferd_M%C3%A4hne.jpg HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:53 GMT
content-length: 101072
last-modified: Tue, 06 Dec 2022 10:28:53 GMT
expires: Thu, 05 Dec 2024 22:28:53 GMT
cache-control: public, max-age=63115200
link: <http://www.kribbelbunt.de/fileadmin/user_upload/Bild-2_Pferd_M%C3%A4hne.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e8f3f1c0bf769a8c"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   101072
Md5:    6b25a73e60f9f139421f1edfecb39a50
Sha1:   6b590f8946dfa8720f8c7f7ee20b6e2f7227083a
Sha256: f6ea5fcd0e1f0e8715814806a17d0c0a04312a417f0a45a7245a0fa3a1371eb6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jazmyneziemann.blogspot.com
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         188.114.98.234
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 06 Dec 2022 10:28:54 GMT
content-length: 64464
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "4b5a84aaf1c9485e060c503a0ff8cadb"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 06/09/2022 10:24:04
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: db3e8470ed672d6f3ad1c08bc6752337
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7754565d3cdab50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Size:   64464
Md5:    4b5a84aaf1c9485e060c503a0ff8cadb
Sha1:   574ea2698c03ae9477db2ea3baf460ee32f1a7ea
Sha256: 3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
                                        
                                            GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jazmyneziemann.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 21:31:58 GMT
expires: Tue, 05 Dec 2023 21:31:58 GMT
cache-control: public, max-age=31536000
age: 46616
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17908, version 1.0\012- data
Size:   17908
Md5:    e46b4e2e3b47cc232937ebf72b4c537e
Sha1:   2675bc06ee643b8c935370325a327efb74746e6a
Sha256: d8543b5dcaea1fc4a0301dc12b5b2adc9079e0794dd6a45879588fb844f3438e
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jazmyneziemann.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 56173
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /blogger_img_proxy/ANbyha15kx9PQ43ljhL9MFdHrPWkppnonBBw9vzIhA_fq_7bJfiD9Nk1Fzm_gCsw5ELQgVpMycTcapIGoJpQkxuyZOFUKpVXX_Qua2M9cYbwuPMZVOEppxYkgpiuuZmfljI2zP1JDSO3EcZOg5qvcukcrKiQy93k7A=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/png
                                        
access-control-expose-headers: Content-Length
expires: Wed, 07 Dec 2022 10:28:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:54 GMT
server: fife
content-length: 867
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size:   867
Md5:    6b70cc15e6fbe75ab7461143c042952d
Sha1:   7cd553e8c316138be39ce1020517cac209f99f75
Sha256: 9bf340f5adcf7121f9b7710ca2f9f520991b18a3696553a8793d5148b0f0a1a3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /store-images.s-microsoft.com/image/apps.60911.13510798887508285.337bd3ad-943b-499b-8c18-e2b4ab44babf.86836586-bdd1-4458-afb0-394916f99df4?mode=scale&q=90&h=300&w=300 HTTP/1.1 
Host: i1.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:54 GMT
content-length: 19419
last-modified: Tue, 06 Dec 2022 10:28:54 GMT
expires: Thu, 05 Dec 2024 22:28:54 GMT
cache-control: public, max-age=63115200
link: <http://store-images.s-microsoft.com/image/apps.60911.13510798887508285.337bd3ad-943b-499b-8c18-e2b4ab44babf.86836586-bdd1-4458-afb0-394916f99df4?90>; rel="canonical"
x-content-type-options: nosniff
etag: "22e95997e8ae02cb"
x-bytes-saved: 49654
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Size:   19419
Md5:    2c2ae2416c582746738020cbfae02bcd
Sha1:   d99eea2e3224ff743d8b074cf1bfbdb8f9ec9e42
Sha256: c406896c813aaca13a5f385713943dd1bdd35519834ab7f277c8b7e52afd8cba
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9254
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 10:28:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9254
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 10:28:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9254
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 10:28:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9254
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 10:28:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9254
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 10:28:54 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:09:28 GMT
age: 44366
etag: "36082b7329d473829178f280cb71a83b1531e486"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11224
Md5:    b15136d60fd0a5e0f657a4f5c75d540f
Sha1:   36082b7329d473829178f280cb71a83b1531e486
Sha256: 79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcfc1e29-0017-4346-aacf-66d3875076ce.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5790
x-amzn-requestid: 2e409a5f-ce04-4b9b-b3a2-74e5bbd256d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvoEoUoAMFsxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64ca-72e1bb13187b18aa26c8566f;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jr6GWYa2SFKmDWscGBd9-g7b0RKr6j4GrgNisS0-DYiojh7Kv1oMJQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:06 GMT
etag: "1f25392db4cf3693259202b24e898f21093b8bf9"
age: 45708
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5790
Md5:    18bbcbf84b00d3bc602830478ff1bd7f
Sha1:   1f25392db4cf3693259202b24e898f21093b8bf9
Sha256: cb2b44e1f74a9bb43fab48536f6146e273c728b34e4889ff3f18a411d14d2282
                                        
                                            GET /css?family=Open+Sans:300italic,400italic,600italic,400,300,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 10:28:53 GMT
date: Tue, 06 Dec 2022 10:28:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   11517
Md5:    36c0333b0f8bb72163e5b7a1c78b6f53
Sha1:   6f333f66cc0cc2eced63c412d1a05ef56c8a1905
Sha256: 267833eaa869b9254d4c9453016d05d091e7865da04be50071b4256b2c2372d7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4827
x-amzn-requestid: 26ac5a48-3e41-4638-88d6-c94ba8b7a6c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csS3nFxPoAMFcpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64fd-28f8cb92130706e3652eb971;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:39:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YUk1Nt1XioDColWXDiEZsL8BmFpyWaV5tRbsbmAiR6A2psM_Gx3j_A==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:41:49 GMT
age: 46025
etag: "0f1c7567b89cc3de60196e47e37879296359bc78"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4827
Md5:    73b9f329cd3a39d0756de62dd5f190b7
Sha1:   0f1c7567b89cc3de60196e47e37879296359bc78
Sha256: e15711efe27a3d302a9869cf01d27fd65bd0beca9d03a19d93bbf11e28f3e1d8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10183
x-amzn-requestid: 0cdea572-aab4-4d52-948b-976170a787a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_uLHQZoAMF4hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1327-7948052f39c4f6071b4a0e0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WDqUFMBT59kulx4WLxNh5XTsHzr4_u524juvZJnGMYBH-mUaJclnTg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:49:44 GMT
age: 45550
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10183
Md5:    99d1ff8fa2e095dcf2bda3d1e1af1221
Sha1:   f914f04a0e1fb45a221d31d2105bfc73015b03e6
Sha256: 90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb60ffdb0-9abd-43ed-ba00-442492cc7b45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8287
x-amzn-requestid: 185e51d2-36b6-4d31-a35f-49520d8fba85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csTNcGGWIAMF-Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6589-43a985971c5fb18a03fb4a92;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DnKkiHQS_AhhZQOADenY0FbD4Fh_vQXoZAmL59WX0ReInKipGCXJlg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:41:53 GMT
etag: "cec2ccf17ae08fe009c09563d214564c3499ad4c"
age: 46021
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8287
Md5:    4c0e37b32bf91d9877ad7cb9f4f875a5
Sha1:   cec2ccf17ae08fe009c09563d214564c3499ad4c
Sha256: 4cec4e669ba4b149573de59df16d8cae06a6d4393092d7e06150596f38dc6856
                                        
                                            GET /blogger_img_proxy/ANbyha1q3mfHlY7JFbImpw9bT48l6phedWXZxOddUOQ9JfB4NqX5cgFmd97wPW2CIWMiTpgRqL-ZvMaNNxuK9LQi6Z7ruHgKzLJS1nC727VJFXSy87uBw6yLGA3RUTXQPEMUse5LajNXpyN9g9IyqwChSO-rtRg=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Wed, 07 Dec 2022 10:28:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:54 GMT
server: fife
content-length: 2470
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   2470
Md5:    1112d0f9aa29c56ba0f074b67caadbfd
Sha1:   83b43fb9c5cceae65d5b07759d403876aae425e4
Sha256: 99cc002c7483922445ed64d6f164af959127c00e6f86ac2acc8cd53edf1135f7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.211.4
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Tue, 06 Dec 2022 10:28:54 GMT
date: Tue, 06 Dec 2022 10:28:54 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 665
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1034), with no line terminators
Size:   665
Md5:    34e37af4d526255a20a2056cd5f4addf
Sha1:   bcac186d6a49539e69a3f67aa08d0188966f5623
Sha256: 51a2c479b272414cb9d7e1ec62edffbad01217068b73d516d33cb8f26a4fc634
                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 19:09:57 GMT
expires: Tue, 05 Dec 2023 19:09:57 GMT
cache-control: public, max-age=31536000
age: 55137
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (730)
Size:   162976
Md5:    79d18cf4265108d7cecca1bf4ada6109
Sha1:   e51d0285a545381d4c39e9e0292a650ffeeecbb9
Sha256: 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Dec 2022 10:28:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.238
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
date: Tue, 06 Dec 2022 10:28:54 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+643; expires=Thu, 05-Dec-2024 10:28:54 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 06 Dec 2022 10:28:54 GMT
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            GET /blogger_img_proxy/ANbyha29IYCandxK7Iz5lkduAvox1fWVU76Qf0SagLVCClFbfVUiv_1Gqr6y_9boUU0c121IboUFkRPOCqCpSgNEfcWfQ9ZP7aen7VVyDXDuoC4RyX1WyLLciV40l0ID-Fz6JjoxkdEehDtnjdfizMkUYScR3c8=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Wed, 07 Dec 2022 10:28:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:54 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   1747
Md5:    80e06a3c9f6ebd1549c8e906e23b0f2e
Sha1:   ee54d5cf729dd1c408de53c8a57d69f2d9eab91a
Sha256: 1483535fa5e2cee44e3d16c2f9469bf07e808c0e511cb6e2169bdd74f5f87db1
                                        
                                            GET /blogger_img_proxy/ANbyha3-YzQnZ7ei4nOhdarHYFqkvdKsZodW67g665Zlxm83d5dSkYYtS-it2A7AgO9Cs4qu3QqK_GMdh31LrXwMlfbsyJAe8qxVp8aLBWxw7wAJhGYYzajAjQ-rxjhqq5HNf6ofHkKaVu42qHi12A3Ji53o=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.225
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Wed, 07 Dec 2022 10:28:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 10:28:54 GMT
server: fife
content-length: 3424
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   3424
Md5:    097fee3f47e201439f6a4205f8bff050
Sha1:   0cbcfc31333fafbf7961398ebe60193d75276823
Sha256: 9a03c708c24f92c919a19f266dd254839c113d90db2657c25a251923fb8e11dd
                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/styles__ltr.css HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 19:53:03 GMT
expires: Tue, 05 Dec 2023 19:53:03 GMT
cache-control: public, max-age=31536000
age: 52551
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (52913), with no line terminators
Size:   24262
Md5:    f4bb161deae4e93f1a82e52f82ea2af9
Sha1:   74cd72b02999ea35cde6dd6c1d58ca9aec94da07
Sha256: 3330fe65fd8dbe742211f1609fbfe70b3b94434ad5639223942d921f085ea589
                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 19:09:57 GMT
expires: Tue, 05 Dec 2023 19:09:57 GMT
cache-control: public, max-age=31536000
age: 55137
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (730)
Size:   162976
Md5:    79d18cf4265108d7cecca1bf4ada6109
Sha1:   e51d0285a545381d4c39e9e0292a650ffeeecbb9
Sha256: 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DC83276272D5CDAD4697E22328492A0EF356E3C1CBC3C91EAE4E4C35433532E1"
Last-Modified: Sun, 04 Dec 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16814
Expires: Tue, 06 Dec 2022 15:09:08 GMT
Date: Tue, 06 Dec 2022 10:28:54 GMT
Connection: keep-alive

                                        
                                            GET /bc8d59f796233b632b8846bc72a15192/invoke.js HTTP/1.1 
Host: accompanycollapse.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.19.5
Date: Tue, 06 Dec 2022 10:28:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fd1e58d98c873954c75a1ee8cb29699c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (27018), with no line terminators
Size:   9838
Md5:    9a71ee4cba200646e624ee211d437c7c
Sha1:   320a9287d76e07ec6190712ac8d436e1d180977c
Sha256: 815dbae1ff3a16ba7323eecbda6e8e32f63318c04e8939ac3152f7e940aa1e99
                                        
                                            GET /recaptcha/api2/logo_48.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 14:40:09 GMT
expires: Sat, 10 Dec 2022 14:40:09 GMT
cache-control: public, max-age=604800
age: 244125
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   2228
Md5:    ef9941290c50cd3866e2ba6b793f010d
Sha1:   4736508c795667dcea21f8d864233031223b7832
Sha256: 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:03 GMT
expires: Fri, 01 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 391251
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 409691
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102115
Date: Tue, 06 Dec 2022 10:28:54 GMT
Etag: "638df297-1d7"
Expires: Wed, 07 Dec 2022 14:50:49 GMT
Last-Modified: Mon, 05 Dec 2022 13:31:03 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: v-0ajCDApvMJsnWm2OWZF-K8kXEnuW5sRlXZRkvI8LIGxp6683q4_Q==
Age: 4786

                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jazmyneziemann.blogspot.com
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         52.28.211.11
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 06 Dec 2022 10:28:55 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: https://jazmyneziemann.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=e94e3b13-827b-4988-8228-a4e6c11dd5ee:1:1; expires=Fri, 03 Dec 2032 10:28:55 GMT; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    816421dc27aae1fa7bb0219a93c522e5
Sha1:   81335ae4bf492a436b500eabc789f13ebe066f95
Sha256: 03c1664c912937963c20079877f2e2621677e7c086e087eaad726383d10296bc
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3A077FEE8160980F7464B72287FC9336A0921209AE8B00A73D4565FBA0B56FE2"
Last-Modified: Mon, 05 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9227
Expires: Tue, 06 Dec 2022 13:02:42 GMT
Date: Tue, 06 Dec 2022 10:28:55 GMT
Connection: keep-alive

                                        
                                            GET /da/ce/88/dace887d039f088ae0d9952a8b8cb060.js HTTP/1.1 
Host: snappedanticipation.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.13
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.17.6
Date: Tue, 06 Dec 2022 10:28:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2a19c852dc0935201f3a36a3117b3797
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (37128), with no line terminators
Size:   13411
Md5:    fa2e4d4710c4667df1950e057a2ba6e1
Sha1:   4eef0cf36eece9fe36bb23bc7d6681a68641c0ec
Sha256: 78a9769ceef5ea3bf1cca96aa6dbfa3212a7c9f4f9e498113d7a41c58dbd9468
                                        
                                            GET /watch.823311187359.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22ausmalbilder%22%2C%22pferde%22%2C%22f%C3%BCr%22%2C%22kinder%22%2C%22kids%22%2C%22n%22%2C%22fun%22%2C%22de%22%2C%2263%22%2C%22ausmalbilder%22%2C%22von%22%2C%22pferde%22%2C%22-%22%2C%22jazmyne%22%2C%22ziemann%22%5D&refer=https%3A%2F%2Fjazmyneziemann.blogspot.com%2F2022%2F03%2Fausmalbilder-pferde-fur-kinder-kids-n.html&tz=0&dev=e&res=12.1055&uuid=e94e3b13-827b-4988-8228-a4e6c11dd5ee%3A1%3A1 HTTP/1.1 
Host: snappedanticipation.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jazmyneziemann.blogspot.com
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.13
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.17.6
Date: Tue, 06 Dec 2022 10:28:55 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://jazmyneziemann.blogspot.com
Access-Control-Allow-Origin: https://jazmyneziemann.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://snappedanticipation.com/watch.823311187359.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22ausmalbilder%22%2C%22pferde%22%2C%22f%C3%BCr%22%2C%22kinder%22%2C%22kids%22%2C%22n%22%2C%22fun%22%2C%22de%22%2C%2263%22%2C%22ausmalbilder%22%2C%22von%22%2C%22pferde%22%2C%22-%22%2C%22jazmyne%22%2C%22ziemann%22%5D&refer=https%3A%2F%2Fjazmyneziemann.blogspot.com%2F2022%2F03%2Fausmalbilder-pferde-fur-kinder-kids-n.html&tz=0&dev=e&res=12.1055&uuid=e94e3b13-827b-4988-8228-a4e6c11dd5ee%3A1%3A1&shu=ae974de250ded1ad96e0704efc4802d9ffecf27a251d2bd3c706d327401b157af289f76a7889a62e46dbc1f7a5ffcb80eac74a188d4ba1b51139e1130f20564bc96ea43f5f79177592e5c90f555e01787bb7eb81&pst=1670322595&rmtc=t
Set-Cookie: u_pl=15928454; expires=Wed, 07 Dec 2022 10:28:55 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.4sEvKchWEhdKotvbOJ5nwzwGcE_NJHrvQKVbxLoDkJU; expires=Tue, 06 Dec 2022 10:29:55 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 76edd879e45fd84bcdef06a9066ab042
Strict-Transport-Security: max-age=0; includeSubdomains

                                        
                                            GET /www.schule-und-familie.de/assets/images/Malen/pferde/Malvorlage_herz_fuer_pferde.jpg HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 06 Dec 2022 10:28:55 GMT
content-length: 34264
last-modified: Tue, 06 Dec 2022 10:28:55 GMT
expires: Thu, 05 Dec 2024 22:28:55 GMT
cache-control: public, max-age=63115200
link: <http://www.schule-und-familie.de/assets/images/Malen/pferde/Malvorlage_herz_fuer_pferde.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "bcb245d4c351a55b"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 566x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   34264
Md5:    0e8b0ad5112ee49194d6aa20a162b566
Sha1:   dd72ae944f243c2a36a7a635007c5eafe4445a03
Sha256: 3e86436d21a0c7ee45a5202fd009457ed18e98ef9f7d21c25e1a072659aa3654
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 344
ETag: "4DFBBD61F47A45A39622F70938F29114FE41648E5F74C0AAD269D4A0252DE5E6"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1819
Expires: Tue, 06 Dec 2022 10:59:14 GMT
Date: Tue, 06 Dec 2022 10:28:55 GMT
Connection: keep-alive

                                        
                                            GET /watch.823311187359.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22ausmalbilder%22%2C%22pferde%22%2C%22f%C3%BCr%22%2C%22kinder%22%2C%22kids%22%2C%22n%22%2C%22fun%22%2C%22de%22%2C%2263%22%2C%22ausmalbilder%22%2C%22von%22%2C%22pferde%22%2C%22-%22%2C%22jazmyne%22%2C%22ziemann%22%5D&refer=https%3A%2F%2Fjazmyneziemann.blogspot.com%2F2022%2F03%2Fausmalbilder-pferde-fur-kinder-kids-n.html&tz=0&dev=e&res=12.1055&uuid=e94e3b13-827b-4988-8228-a4e6c11dd5ee%3A1%3A1&shu=ae974de250ded1ad96e0704efc4802d9ffecf27a251d2bd3c706d327401b157af289f76a7889a62e46dbc1f7a5ffcb80eac74a188d4ba1b51139e1130f20564bc96ea43f5f79177592e5c90f555e01787bb7eb81&pst=1670322595&rmtc=t HTTP/1.1 
Host: snappedanticipation.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jazmyneziemann.blogspot.com
Referer: https://jazmyneziemann.blogspot.com/
Connection: keep-alive
Cookie: u_pl=15928454; ain=eyJhbGciOiJIUzI1NiJ9.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.4sEvKchWEhdKotvbOJ5nwzwGcE_NJHrvQKVbxLoDkJU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.13
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.17.6
Date: Tue, 06 Dec 2022 10:28:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://jazmyneziemann.blogspot.com
Access-Control-Allow-Origin: https://jazmyneziemann.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e94e3b13-827b-4988-8228-a4e6c11dd5ee:1:1; expires=Tue, 13 Dec 2022 10:28:55 GMT; secure; SameSite=None iprc917c8f49f2d929531279a09e69db2446=3569806; expires=Tue, 06 Dec 2022 14:28:55 GMT; secure; SameSite=None pdhtkv=true; expires=Wed, 07 Dec 2022 10:28:55 GMT; secure; SameSite=None uncs=1; expires=Wed, 07 Dec 2022 10:28:55 GMT; secure; SameSite=None pdhtkv5=true; expires=Wed, 07 Dec 2022 10:28:55 GMT; secure; SameSite=None uncs5=1; expires=Wed, 07 Dec 2022 10:28:55 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3dd334f7cf371e257a7fb07b269beeb4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (2647)
Size:   2104
Md5:    7d79ae43ef72abde5aa9bd536139eb27
Sha1:   7038efdecbdf9b28847f57acf6eae74311498837
Sha256: b3fd7ff2a4f24998854db2e307d046e10cf56b060dec0ecb44286d54e02efbc7
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "C82E514BD4836DD8F600A005575285D5938D20AF9A78D108BBE746E041A35ABC"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17281
Expires: Tue, 06 Dec 2022 15:16:56 GMT
Date: Tue, 06 Dec 2022 10:28:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3B1904AE01A75C6C530B0D4E952F53B823B8EBC3BD4EAF62794DAC74999D6B23"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14702
Expires: Tue, 06 Dec 2022 14:33:57 GMT
Date: Tue, 06 Dec 2022 10:28:55 GMT
Connection: keep-alive

                                        
                                            GET /sfp.js HTTP/1.1 
Host: friendshipmale.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.64.202.23
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 06 Dec 2022 10:28:55 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: f6f19c0ab4f400df6f387746af02faab
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 06 Dec 2022 10:28:55 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oOBXGvbwzPuFyAxGV6etLOOLgnNoo5K5DhsZwp903ZUpLOpybMZlO86fTcac2bWpiOz6%2BiJGiLY6FBwLK2DGvCkB1ZSjqnZdpNxhR7vCUE78iZCAGjrOW075YjEqnJ%2Fbg0ap9gA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77545667c8277505-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size:   31483
Md5:    7c24af9e17ead7b434963dc3e2614de0
Sha1:   fea2f347b20d7661443ea185a98097eeed4fff9b
Sha256: 9a113739de15f140ac5145ae4402b5b0f1e2e983610589abc733a862e8705c31
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B0C82753F01003C61FA71CF5542EAD1FE90F11A9863592B374A8D3C13DA4B306"
Last-Modified: Tue, 06 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1036
Expires: Tue, 06 Dec 2022 10:46:11 GMT
Date: Tue, 06 Dec 2022 10:28:55 GMT
Connection: keep-alive

                                        
                                            GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1 
Host: cdn.cloudimagesb.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.133.44.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Dec 2022 10:28:55 GMT
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Thu, 08 Dec 2022 10:28:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size:   144379
Md5:    33c304429dc1a4408a96e6a74ffa2feb
Sha1:   c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
Sha256: dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
                                        
                                            GET /stats/0.php?4606357&@f16&@g1&@h1&@i1&@j1670322535844&@k0&@l1&@mAusmalbilder%20Pferde%20F%C3%BCr%20Kinder%20%2F%20Kids%20N%20Fun%20De%2063%20Ausmalbilder%20Von%20Pferde%20-%20Jazmyne%20Ziemann&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-51812361&@b3:1670322536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fjazmyneziemann.blogspot.com%2F2022%2F03%2Fausmalbilder-pferde-fur-kinder-kids-n.html&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         149.56.240.129
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Tue, 06 Dec 2022 10:28:56 GMT
Content-Length: 51
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   51
Md5:    7347f0ce1dab1102af0caf2b24e3adff
Sha1:   34c518c74e2cac0f800cfeddc3af42cfb822e228
Sha256: a8d53cb04698e5e92302e29e17ca2bb17e92814700ba6397ef11c1e70873e5a9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CB95C64F511E6665A9E7ED3A918C4AD1C65942AE7883604A8689B0C6F01A1D1A"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20736
Expires: Tue, 06 Dec 2022 16:14:32 GMT
Date: Tue, 06 Dec 2022 10:28:56 GMT
Connection: keep-alive

                                        
                                            GET /pxf.gif?uuid=e94e3b13-827b-4988-8228-a4e6c11dd5ee&eb=10f387f87b313393a6d69bc0ef8596f8&te=8a361a1ceecdc6c0004ea425d91e176f&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10 HTTP/1.1 
Host: unseenreport.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.19.5
Date: Tue, 06 Dec 2022 10:28:56 GMT
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b85255792a376918e581eb470cc0f650
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    93b885adfe0da089cdf634904fd59f71
Sha1:   5ba93c9db0cff93f52b521d7420e43f6eda2784f
Sha256: 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /css?family=Oswald:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 10:28:53 GMT
date: Tue, 06 Dec 2022 10:28:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /01bestbestfree.js HTTP/1.1 
Host: bestbestfree.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jazmyneziemann.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.18.186
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 06 Dec 2022 10:28:53 GMT
last-modified: Tue, 18 Jan 2022 15:57:35 GMT
vary: Accept-Encoding
etag: W/"61e6e36f-34b8"
expires: Sat, 31 Dec 2022 13:21:01 GMT
cache-control: public, max-age=2592000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 421672
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=giy3YChhwaT5rb0Am3bV1cA0oS4zqYmAFwB7z656U05Wk712AyF%2B8ea%2FG%2B0XUwr4QYGyfHVbuLq5VFjKrecTXiSLPhlx6ux6RUGKR2eOrJX%2FhbJHipn4Ym2xu5Ti5sZoMtui"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7754565be90a1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---