r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7462
Expires: Thu, 02 Feb 2023 13:55:28 GMT
Date: Thu, 02 Feb 2023 11:51:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14538
Expires: Thu, 02 Feb 2023 15:53:24 GMT
Date: Thu, 02 Feb 2023 11:51:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 11:43:31 GMT
content-type: application/json
age: 455
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10610
Expires: Thu, 02 Feb 2023 14:47:56 GMT
Date: Thu, 02 Feb 2023 11:51:06 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YSyaUMP6ErjgE9SXdILVZogA35UsyD7cQtwZza9Aez/lyFncylr/x9EQWr0wxrMnzYQSgPebGxo=
x-amz-request-id: BZ268S8HA019JFM6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 10:51:57 GMT
age: 3549
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:51:07 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
188.114.98.234200 OK 6.9 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP 188.114.98.234:0
File type ASCII text, with very long lines (27303)
Hash cbf8915e56f5efdf55a4da5c71837b9c
db61665daaf3bee57a3a6eb075fdd9affcd44dfe
2410e6da0ec1d910a51c92e147f56180ac8ec3789cb1a3ed09990366546e196c
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:07 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 565, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 2021-06-08 19:04:20
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: e9a84d03a1f7c6aa17012c712a6e5dd5
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 20782915
Server: cloudflare
CF-RAY: 7932b68da8760b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
alphamaletraits.blogspot.com/search/label/album'
172.217.21.161200 OK 45 kB URL HTTP/1.1 alphamaletraits.blogspot.com/search/label/album'
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7817)
Hash 4986f9f7f35a10bc894fb3e3dc7dd7f5
f0364dac3b78cb3b903bc147e969ce5ac6c5e6f1
e42076b09283393bdaa37ca91c8a1ad0173abfcf4b1db2476e0e66bdb74f4031
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
GET /search/label/album' HTTP/1.1
Host: alphamaletraits.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Thu, 02 Feb 2023 11:51:06 GMT
Date: Thu, 02 Feb 2023 11:51:06 GMT
Cache-Control: private, max-age=0
Last-Modified: Fri, 25 Nov 2022 12:13:54 GMT
ETag: W/"d53a2539d1a45e55a8e61ecfef45040938e017688a43cf2e6c3730454a1762fc"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 45280
Server: GSE
fonts.googleapis.com/css?family=Montserrat:400,700
142.250.74.138200 OK 521 B URL HTTP/1.1 fonts.googleapis.com/css?family=Montserrat:400,700
IP 142.250.74.138:0
Hash b52e405858cd07e929b5387c0ed0d1de
8dc157b5ece5222f0f175eee9379a699dee76cd8
e289bd897465ef8c6c74d81d09ee98cf500d744073df727158f6323caf335547
GET /css?family=Montserrat:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 02 Feb 2023 11:51:07 GMT
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3d29f78f39e32e907ddeeb9cddb2460e
79697c5da8c1a7f0a8c1e4e73c155695ea7a4fce
d5161650375a0a70a98fd4b3f2f2d2d8150133d6cb1722a1dc64973a0ad42934
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alphamaletraits.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 alphamaletraits.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: alphamaletraits.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/search/label/album'
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 28 Jan 2023 21:17:19 GMT
Expires: Sat, 04 Feb 2023 21:17:19 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 28 Jan 2023 19:49:32 GMT
Content-Type: text/javascript
Age: 398028
ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
142.250.74.74200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (32341)
Hash 856f85cc1b07156fa844b44a10c236c2
7cef457c0e1cd0c20f4e699564ea8997f0332021
c61aa9ce7b32f93630abac1a4b27382f9333e0ff69477c9d9099070ae0742b01
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:03:20 GMT
expires: Tue, 30 Jan 2024 18:03:20 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 236867
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
142.250.74.41200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 142.250.74.41:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 09:41:18 GMT
expires: Wed, 31 Jan 2024 09:41:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 14:52:06 GMT
content-type: text/css
age: 180589
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.infolinks.com/js/infolinks_main.js
172.66.41.9200 OK 2.1 kB URL HTTP/1.1 resources.infolinks.com/js/infolinks_main.js
IP 172.66.41.9:0
File type ASCII text, with very long lines (3530)
Hash c8cb13eefc1562fb573286d711dd92c5
dd2491dc9fb4fcdcee955e0497f8573fa2cbe0b1
c01b6b9abd3382aedcdf736d84a14c1659a5bdbca3cd588b387f9012baf79ecc
GET /js/infolinks_main.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 14:55:07 GMT
ETag: W/"dcb-5f3a4a251e392"
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 12:05:21 GMT
Via: 1.1 google
CF-Cache-Status: HIT
Age: 2746
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b68e5f020b49-OSL
Content-Encoding: gzip
3.bp.blogspot.com/-eJil1F3LxAw/U0rbIiX0RHI/AAAAAAAAAPQ/yoSB82RUZHc/s72-c/Alpha+Male+Body+language+Tips+.jpeg
142.250.74.161200 OK 3.0 kB URL HTTP/1.1 3.bp.blogspot.com/-eJil1F3LxAw/U0rbIiX0RHI/AAAAAAAAAPQ/yoSB82RUZHc/s72-c/Alpha+Male+Body+language+Tips+.jpeg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a8df995070c38fc1a74682e311d59996
464850471342fb9e4bfbd13585e69e559371aeb2
4f5e1b1695b36c4c53fef7ecf54a486b2e2f078be47393c80cc0b483e3770de6
GET /-eJil1F3LxAw/U0rbIiX0RHI/AAAAAAAAAPQ/yoSB82RUZHc/s72-c/Alpha+Male+Body+language+Tips+.jpeg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Alpha Male Body language Tips .jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2980
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 11:51:07 GMT
Expires: Sun, 29 Jan 2023 21:17:19 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf5"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-p7lczwr1bJ8/U0nVkOIbiaI/AAAAAAAAAOo/nomZ8GlFWWk/s72-c/Don+Draper+.jpg
142.250.74.161200 OK 1.8 kB URL HTTP/1.1 4.bp.blogspot.com/-p7lczwr1bJ8/U0nVkOIbiaI/AAAAAAAAAOo/nomZ8GlFWWk/s72-c/Don+Draper+.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 69b81ee769320d0e2f5cb4e8b99fd16a
26930a6affaa7c20f97098367db67909f0e773ea
e2dda84a6bf1f2a9b5022a2f792265592982ee2d65feeb5046a510c4bfa3137b
GET /-p7lczwr1bJ8/U0nVkOIbiaI/AAAAAAAAAOo/nomZ8GlFWWk/s72-c/Don+Draper+.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "veb"
Expires: Fri, 03 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Don Draper .jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 02 Feb 2023 11:51:07 GMT
Server: fife
Content-Length: 1849
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/1149436903-widgets.js
142.250.74.41200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1149436903-widgets.js
IP 142.250.74.41:0
File type ASCII text, with very long lines (2221)
Hash b78721b4cce75b522d9ec0d1fae9e007
4ceaa4752e3e81867193004fe928875abc0af5ce
e85f67824ac9f31deedecf0b1d58878b6b3993bad9f2b48e8312928154012f06
GET /static/v1/widgets/1149436903-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 02:15:05 GMT
expires: Thu, 01 Feb 2024 02:15:05 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 23:23:14 GMT
content-type: text/javascript
age: 120962
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.popcash.net/pop.js
151.139.128.11200 OK 38 kB IP 151.139.128.11:0
File type ASCII text, with very long lines (65390)
Hash 98cfe0446b61a1f2a2df62468da0202c
156362703ec16548fe52ef46832fdad94d493463
903349d17d20a9010f59b6feed6519fda179cf5606bbde8abcd58db81525b527
Analyzer Verdict Alert fortinet Malware
GET /pop.js HTTP/1.1
Host: cdn.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:07 GMT
Content-Encoding: gzip
Content-Type: application/javascript
Last-Modified: Wed, 02 Nov 2022 15:55:59 GMT
Accept-Ranges: bytes
ETag: W/"6362930f-1f3e1"
Cache-Control: max-age=2592000, public
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p3GV0C8mJYYsFZ5jILTOFPivV4YZ61dG05K5L69VVBSlod34hnCbvBXbsxrNwdGVNv6TChhVOEHNzNV0%2BNmvasKO9crjfF%2BnNavpkBq1VUFjDd2YK5z5p%2BTVmFEf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76814901bb4ab517-OSL
Vary: Accept-Encoding
X-HW: 1675338667.cds203.sk1.h2,1675338667.cds216.sk1.c
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Length: 38289
4.bp.blogspot.com/-yXOOYN5xpoc/VaY_QG2naKI/AAAAAAAAAiA/qYM0SQV3ldY/s72-c/How%2BTo%2BDress%2BSharp%2B.jpg
142.250.74.161200 OK 2.9 kB URL HTTP/1.1 4.bp.blogspot.com/-yXOOYN5xpoc/VaY_QG2naKI/AAAAAAAAAiA/qYM0SQV3ldY/s72-c/How%2BTo%2BDress%2BSharp%2B.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 3d388ac110efbe0ef21a9db5061968b8
3e7a909e5ec811fcb7acbef01bf143d272dab21f
432a3e4f96d827007d448ad5417e91b690be80a35fac902cdb767f120ef9d27e
GET /-yXOOYN5xpoc/VaY_QG2naKI/AAAAAAAAAiA/qYM0SQV3ldY/s72-c/How%2BTo%2BDress%2BSharp%2B.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v221"
Expires: Fri, 03 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="How To Dress Sharp .jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 02 Feb 2023 11:51:07 GMT
Server: fife
Content-Length: 2938
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1263a80e4bed64529b9e8ca61ccea9b8
97356de87ac091a56de8bb5485ce99712408d62b
f174c72446dbd9a2d0f1b6f74f02bec21d15d8da763b976d7bb9e598e786a7ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-B-gKgJZeyts/U_H0WB1IxnI/AAAAAAAAAXk/HGWPLn1rP8s/s72-c/alpha%2Bmale%2Bdating%2Btips%2B.jpg
142.250.74.161200 OK 2.8 kB URL HTTP/1.1 3.bp.blogspot.com/-B-gKgJZeyts/U_H0WB1IxnI/AAAAAAAAAXk/HGWPLn1rP8s/s72-c/alpha%2Bmale%2Bdating%2Btips%2B.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash cc8bb11d3b4a76beaf6fc19a349146d6
e6f1241593d274ee650e4f8991cf5cf7543cf54b
3dfcf6d43dc152efb54c24107df52d834bd63aa4906dcc2e438bc53b59831ecc
GET /-B-gKgJZeyts/U_H0WB1IxnI/AAAAAAAAAXk/HGWPLn1rP8s/s72-c/alpha%2Bmale%2Bdating%2Btips%2B.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="alpha male dating tips .jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2800
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 11:51:07 GMT
Expires: Sun, 29 Jan 2023 21:17:19 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v17a"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-2cQt0VltUMw/VGUxMPIXJsI/AAAAAAAAAZc/2x7B7p5Tg6s/s1600/alpha%2Bmale.PNG
142.250.74.161200 OK 4.7 kB URL HTTP/1.1 3.bp.blogspot.com/-2cQt0VltUMw/VGUxMPIXJsI/AAAAAAAAAZc/2x7B7p5Tg6s/s1600/alpha%2Bmale.PNG
IP 142.250.74.161:0
File type PNG image data, 567 x 114, 8-bit/color RGB, non-interlaced\012- data
Hash db9da7a1ecfa1e4838cab7294ae95221
32e2aad9aec08b69e21080bcf9a38f6d9768efcf
1116bde13c177be871a2f5d1a1e539fb12792f2797196c2c1a6e1f3bf74771a1
GET /-2cQt0VltUMw/VGUxMPIXJsI/AAAAAAAAAZc/2x7B7p5Tg6s/s1600/alpha%2Bmale.PNG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v198"
Expires: Fri, 03 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="alpha male.PNG"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 02 Feb 2023 11:51:07 GMT
Server: fife
Content-Length: 4727
X-XSS-Protection: 0
apis.google.com/js/platform.js
142.250.74.46200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Thu, 02 Feb 2023 11:51:07 GMT
expires: Thu, 02 Feb 2023 11:51:07 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3d29f78f39e32e907ddeeb9cddb2460e
79697c5da8c1a7f0a8c1e4e73c155695ea7a4fce
d5161650375a0a70a98fd4b3f2f2d2d8150133d6cb1722a1dc64973a0ad42934
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-dJ7kH3jZcR8/VyDnpVShD9I/AAAAAAAAB74/TMF10thlfQ8D5wr0S_fa_sA4SYIl0Xb7QCLcB/s72-c/lilwaynesmile.jpg
142.250.74.161200 OK 3.0 kB URL HTTP/2 3.bp.blogspot.com/-dJ7kH3jZcR8/VyDnpVShD9I/AAAAAAAAB74/TMF10thlfQ8D5wr0S_fa_sA4SYIl0Xb7QCLcB/s72-c/lilwaynesmile.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d0096d58b80e33ecdf08fce2f8ddedda
3d5f99fa31deb8fbefd1af18b640e2c224ce6321
80f1312594f17cdcdf3b3b1e99a9b0fed7c0f14297317b35f090b13fc5c5ae36
GET /-dJ7kH3jZcR8/VyDnpVShD9I/AAAAAAAAB74/TMF10thlfQ8D5wr0S_fa_sA4SYIl0Xb7QCLcB/s72-c/lilwaynesmile.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="lilwaynesmile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3017
x-xss-protection: 0
date: Thu, 02 Feb 2023 11:51:07 GMT
expires: Thu, 26 Jan 2023 21:02:25 GMT
cache-control: public, max-age=86400, no-transform
etag: "v7c0"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-j9b7IhL_8tY/Vz5VWcdrGBI/AAAAAAAACUE/GMT0wfjOLIUXAAD6IP7hnWcyb6uevlswwCLcB/s72-c/life%2B%2B.jpg
142.250.74.161200 OK 2.3 kB URL HTTP/2 4.bp.blogspot.com/-j9b7IhL_8tY/Vz5VWcdrGBI/AAAAAAAACUE/GMT0wfjOLIUXAAD6IP7hnWcyb6uevlswwCLcB/s72-c/life%2B%2B.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 68055110038f8ed953642f2936386cf0
1f76eca1a0c4977a0e13bc44275fcfb7a948dbbb
8ba87b52c86d5206b9c7b858e7e218c4a92a91b90c182340d8c2f48d2799a87c
GET /-j9b7IhL_8tY/Vz5VWcdrGBI/AAAAAAAACUE/GMT0wfjOLIUXAAD6IP7hnWcyb6uevlswwCLcB/s72-c/life%2B%2B.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="life .jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2263
x-xss-protection: 0
date: Thu, 02 Feb 2023 11:51:07 GMT
expires: Thu, 26 Jan 2023 21:02:25 GMT
cache-control: public, max-age=86400, no-transform
etag: "v943"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-UYsNFpVopXY/Uz79P7GU4NI/AAAAAAAAALY/pwxjOLmP92A/s72-c/Beta+male+characteristics++.jpg
142.250.74.161200 OK 2.5 kB URL HTTP/2 2.bp.blogspot.com/-UYsNFpVopXY/Uz79P7GU4NI/AAAAAAAAALY/pwxjOLmP92A/s72-c/Beta+male+characteristics++.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google, copyright=olly - Fotolia], baseline, precision 8, 72x72, components 3\012- data
Hash 8794b3cab6c59413042c019bf49d859d
af6fdea70f7722e09f7f8309bcf92c3dbb0916b2
e64234574bb2d391f21eb0d09c4f16b46b71a7a89db6b78a638a88a3fbc0682f
GET /-UYsNFpVopXY/Uz79P7GU4NI/AAAAAAAAALY/pwxjOLmP92A/s72-c/Beta+male+characteristics++.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vb7"
expires: Fri, 03 Feb 2023 11:51:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Beta male characteristics .jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 11:51:07 GMT
server: fife
content-length: 2524
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-WYmL4tMLhok/Vr9Xs5OMBbI/AAAAAAAABLM/K4tJSy-mtBo/s72-c/alpha%2Bmale%2Bpersonality.png
142.250.74.161200 OK 12 kB URL HTTP/2 3.bp.blogspot.com/-WYmL4tMLhok/Vr9Xs5OMBbI/AAAAAAAABLM/K4tJSy-mtBo/s72-c/alpha%2Bmale%2Bpersonality.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 8f86899dd4960f2a0c4dc641c3a3c957
977b4648cd71e9622efbb82087a5577c8a1bf7a0
c4c684ffaca8e66c33ad1e81dc79a21e789c36311c6c4f1a19d4e983ead762ca
GET /-WYmL4tMLhok/Vr9Xs5OMBbI/AAAAAAAABLM/K4tJSy-mtBo/s72-c/alpha%2Bmale%2Bpersonality.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="alpha male personality.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 12459
x-xss-protection: 0
date: Thu, 02 Feb 2023 11:51:07 GMT
expires: Sun, 29 Jan 2023 21:17:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v4b4"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-b5C9nfbhMaM/VxeLfUDWr2I/AAAAAAAABs0/ZnMXb-4F2SAZVy2z70kezQJSxZU9o3gAACLcB/s72-c/Happy.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/2 1.bp.blogspot.com/-b5C9nfbhMaM/VxeLfUDWr2I/AAAAAAAABs0/ZnMXb-4F2SAZVy2z70kezQJSxZU9o3gAACLcB/s72-c/Happy.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5219a9801e4c5ec8f09aec7dd872a88c
07383a11f47f5624e18917a9354a48b55d9eea56
7594e57bee0496f49930c4d7f261c6e4a4410c638d49e7e064566bd55924bebd
GET /-b5C9nfbhMaM/VxeLfUDWr2I/AAAAAAAABs0/ZnMXb-4F2SAZVy2z70kezQJSxZU9o3gAACLcB/s72-c/Happy.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6ce"
expires: Fri, 03 Feb 2023 11:51:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Happy.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 11:51:07 GMT
server: fife
content-length: 3073
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-LMTKMsV6Jfk/VyDcwJiysvI/AAAAAAAAB6w/ZZmxq96-oDAIleVSbh3TdfCIEY18bswBACLcB/s72-c/dani.jpg
142.250.74.161200 OK 3.7 kB URL HTTP/2 4.bp.blogspot.com/-LMTKMsV6Jfk/VyDcwJiysvI/AAAAAAAAB6w/ZZmxq96-oDAIleVSbh3TdfCIEY18bswBACLcB/s72-c/dani.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 1ab62059d9289b10dadd175913acadad
dd32cbe99039d5c6709d3b0e87f28dba595ea930
17e6107b108c8f0faa9bb096927eddc2d8a82ea287ee9eab9a26144950529d70
GET /-LMTKMsV6Jfk/VyDcwJiysvI/AAAAAAAAB6w/ZZmxq96-oDAIleVSbh3TdfCIEY18bswBACLcB/s72-c/dani.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="dani.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3662
x-xss-protection: 0
date: Thu, 02 Feb 2023 11:51:07 GMT
expires: Sun, 29 Jan 2023 21:17:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v7af"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p95578.clksite.com/adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true
52.116.53.147301 Moved Permanently 162 B URL HTTP/1.1 p95578.clksite.com/adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true
IP 52.116.53.147:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true HTTP/1.1
Host: p95578.clksite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 02 Feb 2023 11:51:07 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://mybettermb.com/adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p95578.clksite.com/adServe/banners?tid=95578_312094_1&type=footer&size=37
52.116.53.147301 Moved Permanently 178 B URL HTTP/1.1 p95578.clksite.com/adServe/banners?tid=95578_312094_1&type=footer&size=37
IP 52.116.53.147:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /adServe/banners?tid=95578_312094_1&type=footer&size=37 HTTP/1.1
Host: p95578.clksite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 02 Feb 2023 11:51:07 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://beta.mybettermb.com/adServe/banners?tid=95578_312094_1&type=footer&size=37
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bdv.bidvertiser.com/BidVertiser.dbm?pid=558468%26bid=1855359
54.241.51.109200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=558468%26bid=1855359
IP 54.241.51.109:0
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=558468%26bid=1855359 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
bdv.bidvertiser.com/BidVertiser.dbm?pid=558468&bid=1801988
54.241.51.109200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=558468&bid=1801988
IP 54.241.51.109:0
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=558468&bid=1801988 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
188.114.98.234200 OK 67 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 188.114.98.234:0
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:07 GMT
Content-Type: font/woff2
Content-Length: 66624
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "db812d8a70a4e88e888744c1c9a27e89"
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 08/15/2022 13:52:58
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 723
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: 20e9741808dce72525745320c5807fe8
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 226429
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b6908e5cb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 30928
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 10:05:15 GMT
Expires: Sat, 27 Jan 2024 10:05:15 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 11 Jul 2022 18:57:39 GMT
Content-Type: font/woff2
Age: 524752
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 11:49:05 GMT
age: 122
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=558468%26bid=1855359
54.241.51.109200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=558468%26bid=1855359
IP 54.241.51.109:0
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=558468%26bid=1855359 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 3546a97c4ba959684304adfe8fbc7f6e
27c8cbe5b90e8544e98805214ae4cec344889faa
c1ec98910e65a7975e3855059eb90747402886860bc7376aa7c0caae16e5d522
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 07:25:42 GMT
Expires: Thu, 09 Feb 2023 07:25:41 GMT
Etag: "27c8cbe5b90e8544e98805214ae4cec344889faa"
Cache-Control: max-age=588273,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7932b691ea1a0afa-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 3546a97c4ba959684304adfe8fbc7f6e
27c8cbe5b90e8544e98805214ae4cec344889faa
c1ec98910e65a7975e3855059eb90747402886860bc7376aa7c0caae16e5d522
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 07:25:42 GMT
Expires: Thu, 09 Feb 2023 07:25:41 GMT
Etag: "27c8cbe5b90e8544e98805214ae4cec344889faa"
Cache-Control: max-age=588273,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7932b6920968b4f7-OSL
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14763
Expires: Thu, 02 Feb 2023 15:57:10 GMT
Date: Thu, 02 Feb 2023 11:51:07 GMT
Connection: keep-alive
www.blogger.com/dyn-css/authorization.css?targetBlogID=5595517656967011807&zx=fce2caac-a6ea-4a23-9a51-849b9474008f
142.250.74.41200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=5595517656967011807&zx=fce2caac-a6ea-4a23-9a51-849b9474008f
IP 142.250.74.41:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=5595517656967011807&zx=fce2caac-a6ea-4a23-9a51-849b9474008f HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 11:51:07 GMT
last-modified: Thu, 02 Feb 2023 11:51:07 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.93.186101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.93.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tAdFe9vvyssaP2mnxBqzIg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FwvdzQosTGw7DgOeOf9P6DH42R8=
www.statcounter.com/counter/counter_xhtml.js
104.20.219.77200 OK 14 kB URL HTTP/1.1 www.statcounter.com/counter/counter_xhtml.js
IP 104.20.219.77:0
File type ASCII text, with very long lines (43632), with no line terminators
Hash ec70672a2f4620ce69dbd93d41715fb2
68d559ba806e8aa338221616ba9a85ae582e03a3
f6cd20fa5ef3de2a6bd894efa434c1650f12cf6b3c9df03d45489aff18c44b7e
GET /counter/counter_xhtml.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:08 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 01 Feb 2023 16:47:28 GMT
ETag: W/"aa70-5f3a634209d4b"
Cache-Control: max-age=43200
Expires: Thu, 02 Feb 2023 18:09:51 GMT
Access-Control-Allow-Origin: *
P3P: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
User-Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 20477
Server: cloudflare
CF-RAY: 7932b6950c93b4f9-OSL
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Thu, 02 Feb 2023 10:03:19 GMT
Expires: Thu, 02 Feb 2023 12:03:19 GMT
Cache-Control: public, max-age=7200
Age: 6469
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.211.2200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.211.2:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 12:42:13 GMT
Expires: Wed, 15 Feb 2023 12:42:13 GMT
Cache-Control: public, max-age=1209600
Age: 83335
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=114400352&t=pageview&_s=1&dl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27&ul=en-us&de=UTF-8&dt=Alpha%20Male%20Traits%3A%20album%27&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1544456647&gjid=93221359&cid=1332233782.1675338694&tid=UA-48708924-1&_gid=1934372317.1675338694&_r=1&_slc=1&z=923020717
216.239.36.178200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=114400352&t=pageview&_s=1&dl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27&ul=en-us&de=UTF-8&dt=Alpha%20Male%20Traits%3A%20album%27&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1544456647&gjid=93221359&cid=1332233782.1675338694&tid=UA-48708924-1&_gid=1934372317.1675338694&_r=1&_slc=1&z=923020717
IP 216.239.36.178:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=114400352&t=pageview&_s=1&dl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27&ul=en-us&de=UTF-8&dt=Alpha%20Male%20Traits%3A%20album%27&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1544456647&gjid=93221359&cid=1332233782.1675338694&tid=UA-48708924-1&_gid=1934372317.1675338694&_r=1&_slc=1&z=923020717 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://alphamaletraits.blogspot.com
date: Thu, 02 Feb 2023 11:51:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d5aa8840f812da83fc823da528a74c1a
9e7bad3462506164bd4bdb87a761352ef8131ba9
abaa07021a967e89f7786ac14efa3ce48f24e4c032376a36421cca12f5ecaeeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 737fb1a7e54ea78dd56b4ac44a2c1de8
4fc7537db04c8cedc6a98ea38cfcaa6ba5c8a3a7
596cb4e532b0f523b844981b7e60fba87eb3a904b0a40dfdc3802a02650f790e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AL5GRJUU-P0DTXHr6W_hJDFRYsD2AX8DZTyFQYE2wyHobw=s48-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 1.3 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJUU-P0DTXHr6W_hJDFRYsD2AX8DZTyFQYE2wyHobw=s48-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 48x48, components 3\012- data
Hash 86f624812975997401d27cffc81ba519
df864880e66ce207dcb44772f5e9802a9e2e15a7
f8c219efd19e742159dfb087a8ad18d380f9c6332b42a5682072d7e1aded541e
GET /ytc/AL5GRJUU-P0DTXHr6W_hJDFRYsD2AX8DZTyFQYE2wyHobw=s48-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1305
x-xss-protection: 0
date: Thu, 02 Feb 2023 11:51:08 GMT
expires: Thu, 26 Jan 2023 21:02:26 GMT
cache-control: public, max-age=86400, no-transform
etag: "v9b"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 737fb1a7e54ea78dd56b4ac44a2c1de8
4fc7537db04c8cedc6a98ea38cfcaa6ba5c8a3a7
596cb4e532b0f523b844981b7e60fba87eb3a904b0a40dfdc3802a02650f790e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 6108b2c5025baa1a36572dce7b8602e6
ff89e4f4b2b14b4a6250659644a71013c5a1835d
c72807f5e33fccbd7325899b0b3f712941496436beb78a8726c22c94902bf396
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 06 Feb 2023 10:18:44 GMT
ETag: "ff89e4f4b2b14b4a6250659644a71013c5a1835d"
Last-Modified: Thu, 02 Feb 2023 10:18:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3425
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b6973ef3b51b-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/border_3.gif
142.250.74.131200 OK 43 B URL HTTP/1.1 ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/border_3.gif
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f6815f3311f2ad7bacb9c9156b5151bb
4042dfd5b2a00af6857acf15e63dc0672592e7d6
c8de81a1acb5f3788959ecc04eaa6526d5bdb29991157cecbef71042268c0374
GET /s2/oz/images/stars/po/bubblev1/border_3.gif HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 21:43:14 GMT
Expires: Thu, 01 Feb 2024 21:43:14 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Thu, 03 Oct 2019 10:15:00 GMT
Content-Type: image/gif
Age: 50874
ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/bubbleDropR_3.png
142.250.74.131200 OK 116 B URL HTTP/1.1 ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/bubbleDropR_3.png
IP 142.250.74.131:0
File type PNG image data, 5 x 1, 4-bit colormap, non-interlaced\012- data
Hash ab32284ad12b62cfe18e6fc3004dbd91
95c739ea1fff8024b0728b882698f83289c9a429
6c7884164b248cb8d87de9edf64dc810e5753bb8ec0cd015800d7f39e08371c1
GET /s2/oz/images/stars/po/bubblev1/bubbleDropR_3.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 116
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 30 Jan 2023 15:34:52 GMT
Expires: Tue, 30 Jan 2024 15:34:52 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Thu, 03 Oct 2019 10:15:00 GMT
Content-Type: image/png
Age: 245776
ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/bubbleSprite_3.png
142.250.74.131200 OK 318 B URL HTTP/1.1 ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/bubbleSprite_3.png
IP 142.250.74.131:0
File type PNG image data, 39 x 33, 8-bit colormap, non-interlaced\012- data
Hash 117295a03bf8194590ad92d6f044b4a6
6f6ef687b76a7579d8fb17f1e9a39005f76a753b
232334d177f358c07f8271994e6fc0c018abfce7c8910deb604de1440d741c45
GET /s2/oz/images/stars/po/bubblev1/bubbleSprite_3.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 318
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 09:30:30 GMT
Expires: Fri, 02 Feb 2024 09:30:30 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Thu, 03 Oct 2019 10:15:00 GMT
Content-Type: image/png
Age: 8438
ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/bubbleDropB_3.png
142.250.74.131200 OK 117 B URL HTTP/1.1 ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/bubbleDropB_3.png
IP 142.250.74.131:0
File type PNG image data, 1 x 5, 4-bit colormap, non-interlaced\012- data
Hash 91f7f433b47f76d152ac4dc8cbb8324e
ffce61c56ddbfaf6c2d02d3bb2dcda9b49bee460
984601230d8cbfe18370425e8e897037cc1a7adf831a691a9ede573cf44479d4
GET /s2/oz/images/stars/po/bubblev1/bubbleDropB_3.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 117
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 09:30:30 GMT
Expires: Fri, 02 Feb 2024 09:30:30 GMT
Cache-Control: public, max-age=31536000
Age: 8438
Last-Modified: Thu, 03 Oct 2019 10:15:00 GMT
Content-Type: image/png
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.131200 OK 5.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.131:0
Hash 6c4d021869c34612a042f86d2d7aaa18
faba06956bd8d6274f66d3f191b6e207225e5d28
2471299b80dab08460ee32e5d3c7052e4b617bc68395f7c018f4540fcc3b5a6f
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 22:24:54 GMT
expires: Sun, 28 Jan 2024 22:24:54 GMT
cache-control: public, max-age=31536000
age: 393974
last-modified: Sat, 21 Jan 2023 03:10:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/spacer.gif
142.250.74.131200 OK 43 B URL HTTP/2 ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/spacer.gif
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d44ebb7184c776b663f036174faa361a
53a278eedce146c3a979d190af4affaec3d7cfeb
ed1b73c6b4690cde9b521865b58e031293209bc0b2ba2b5716ecf4bf9885ee4b
GET /s2/oz/images/stars/po/bubblev1/spacer.gif HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 18:30:10 GMT
expires: Mon, 29 Jan 2024 18:30:10 GMT
cache-control: public, max-age=31536000
age: 321658
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/border_3.gif
142.250.74.131200 OK 43 B URL HTTP/2 ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/border_3.gif
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f6815f3311f2ad7bacb9c9156b5151bb
4042dfd5b2a00af6857acf15e63dc0672592e7d6
c8de81a1acb5f3788959ecc04eaa6526d5bdb29991157cecbef71042268c0374
GET /s2/oz/images/stars/po/bubblev1/border_3.gif HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 09:30:26 GMT
expires: Fri, 02 Feb 2024 09:30:26 GMT
cache-control: public, max-age=31536000
age: 8442
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dcba.popcash.net/znWaa3gu
34.195.57.98204 No Content 0 B URL HTTP/2 dcba.popcash.net/znWaa3gu
IP 34.195.57.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /znWaa3gu HTTP/1.1
Host: dcba.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 11:51:08 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dc641ecde9f4b5e744f743ac1f506ac7
95a2deaaf8ff6d00803eb54d0b5926e1a576f396
fa4f48c42bafe1cd6b822e78418d8818fc19ef78848e6f1cca1064cc58094d08
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 00:20:51 GMT
Expires: Mon, 06 Feb 2023 00:20:50 GMT
Etag: "95a2deaaf8ff6d00803eb54d0b5926e1a576f396"
Cache-Control: max-age=303581,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7932b696bebf0afa-OSL
alphamaletraits.blogspot.com/feeds/posts/summary/-/http://alphamaletraits.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1
172.217.21.161400 Bad Request 193 B URL HTTP/1.1 alphamaletraits.blogspot.com/feeds/posts/summary/-/http://alphamaletraits.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 83b482393f028e6de91b032e7fae746b
50bad14cd7b4602d7b9f1ef6d769288588594fc8
031cbc91f964c96aa1975380c3bd66f5fe254439f3281bf0e06bc385c3912aa2
GET /feeds/posts/summary/-/http://alphamaletraits.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1 HTTP/1.1
Host: alphamaletraits.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/search/label/album'
Cookie: sc_is_visitor_unique=rx9666362.1675338694.BEA94097FFBE4FA261EB9146DC6EAB84.1.1.1.1.1.1.1.1.1
HTTP/1.1 400 Bad Request
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
Date: Thu, 02 Feb 2023 11:51:09 GMT
Server: Blogger Render Server 1.0
Content-Length: 193
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.chitika.net/getads.js
143.204.55.12301 Moved Permanently 167 B URL HTTP/1.1 cdn.chitika.net/getads.js
IP 143.204.55.12:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /getads.js HTTP/1.1
Host: cdn.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://cdn.chitika.net/getads.js
X-Cache: Redirect from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tigaugVrBxsrROgb6pqFUAgDfHEBB5H4-b0fOre3skb8oFNG6APzyg==
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Thu, 02 Feb 2023 11:51:09 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
connect.facebook.net/en_US/all.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Thu, 02 Feb 2023 11:51:09 GMT
Connection: keep-alive
Content-Length: 0
c1.popads.net/pop.js
185.76.9.18200 OK 9.9 kB IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type HTML document, ASCII text, with very long lines (1568), with CRLF line terminators
Hash d2f092c2525456135a6412df048cb9e1
73d6962cb750fd9cc5a06ac6db82718c90bd6296
4ff692ff710346275b517e846bdaf0df85bc82f25484ecc6954b5462e98caf9e
GET /pop.js HTTP/1.1
Host: c1.popads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
Last-Modified: Sun, 03 Jul 2022 20:49:14 GMT
ETag: W/"62c200ca-7b48"
Access-Control-Allow-Origin: *
X-Accel-Expires: @1675544508
Server: CDN77-Turbo
X-77-NZT: AblMCQ0cXv//8a0MAA
X-77-NZT-Ray: c0a4cc2847430b7dada3db63a38e3805
X-Cache: HIT
X-Age: 830961
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Encoding: gzip
resources.infolinks.com/js/1845.006-3.025/ice.js
172.66.41.9200 OK 57 kB URL HTTP/1.1 resources.infolinks.com/js/1845.006-3.025/ice.js
IP 172.66.41.9:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c6ee2f5ee5d8108c139d7995eb7235be
fe8501fa91bf7692c9b40163c95089fc699c56e1
c79263ce4c0b60c655507bc9530cdcbeb56b09a745b060ce1902179795ee6e7c
GET /js/1845.006-3.025/ice.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 14:23:04 GMT
ETag: W/"2d3a3-5f3175edcfc76"
Cache-Control: max-age=2592000
Expires: Sat, 04 Mar 2023 11:18:05 GMT
Via: 1.1 google
CF-Cache-Status: HIT
Age: 1984
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b699ca160b49-OSL
Content-Encoding: gzip
4.bp.blogspot.com/-p7lczwr1bJ8/U0nVkOIbiaI/AAAAAAAAAOo/nomZ8GlFWWk/s150/Don+Draper+.jpg
142.250.74.161200 OK 3.6 kB URL HTTP/1.1 4.bp.blogspot.com/-p7lczwr1bJ8/U0nVkOIbiaI/AAAAAAAAAOo/nomZ8GlFWWk/s150/Don+Draper+.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 100x150, components 3\012- data
Hash 76a85d3cd7959cf8c5ad24e1a501656f
177c0b07f174848498410ae70a2bf481641a296e
3deb78bee16d9b7e11d9924be0545f50fee6a95bbed6dc638139e3bb9f351f3f
GET /-p7lczwr1bJ8/U0nVkOIbiaI/AAAAAAAAAOo/nomZ8GlFWWk/s150/Don+Draper+.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Don Draper .jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3636
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 11:51:09 GMT
Expires: Thu, 26 Jan 2023 21:02:27 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "veb"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-B-gKgJZeyts/U_H0WB1IxnI/AAAAAAAAAXk/HGWPLn1rP8s/s150/alpha%2Bmale%2Bdating%2Btips%2B.jpg
142.250.74.161200 OK 6.1 kB URL HTTP/1.1 3.bp.blogspot.com/-B-gKgJZeyts/U_H0WB1IxnI/AAAAAAAAAXk/HGWPLn1rP8s/s150/alpha%2Bmale%2Bdating%2Btips%2B.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 104x150, components 3\012- data
Hash ec406b3e5013cc3d5a8804195af6b335
e56a2e8d8f2c9e7173f5fb0f60a836ff4f92b919
d39a020991954937555c2391913bf7e2d44700e493fed27d25d8cbdf5c68e3c2
GET /-B-gKgJZeyts/U_H0WB1IxnI/AAAAAAAAAXk/HGWPLn1rP8s/s150/alpha%2Bmale%2Bdating%2Btips%2B.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v17a"
Expires: Fri, 03 Feb 2023 11:51:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="alpha male dating tips .jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 02 Feb 2023 11:51:09 GMT
Server: fife
Content-Length: 6104
X-XSS-Protection: 0
bdv.bidvertiser.com/BidVertiser.dbm?pid=558468&bid=1855359&RD=2310251244607&DIF=1&bd_ref_v=alphamaletraits.blogspot.com&tref=1&win_name=null&docref=&jsrand=2310251244607&js1loc=-&loctitle=YOUR%20KEYWORDS%20HERE
54.241.51.109200 OK 6.6 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=558468&bid=1855359&RD=2310251244607&DIF=1&bd_ref_v=alphamaletraits.blogspot.com&tref=1&win_name=null&docref=&jsrand=2310251244607&js1loc=-&loctitle=YOUR%20KEYWORDS%20HERE
IP 54.241.51.109:0
Hash 80d5a926d2e0bb996c3b9beb610d040d
30a70fc8eae7e22c4bf7156af388e062a03f059a
d46cd9ef028b4917eb862105913147f77bb8cd6ecd69814acc6c5232fe1859e6
GET /BidVertiser.dbm?pid=558468&bid=1855359&RD=2310251244607&DIF=1&bd_ref_v=alphamaletraits.blogspot.com&tref=1&win_name=null&docref=&jsrand=2310251244607&js1loc=-&loctitle=YOUR%20KEYWORDS%20HERE HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thursday, 02-Feb-2023 11:51:08 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 02-Feb-2022 11:51:08 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 333
CONNECTION: Close
3.bp.blogspot.com/-eJil1F3LxAw/U0rbIiX0RHI/AAAAAAAAAPQ/yoSB82RUZHc/s150/Alpha+Male+Body+language+Tips+.jpeg
142.250.74.161200 OK 6.1 kB URL HTTP/1.1 3.bp.blogspot.com/-eJil1F3LxAw/U0rbIiX0RHI/AAAAAAAAAPQ/yoSB82RUZHc/s150/Alpha+Male+Body+language+Tips+.jpeg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 150x100, components 3\012- data
Hash d8b1855afbc67ac43153d9855f306ab4
0d3e1f9d354469f0009741483f3475e055e84997
3fcc688ac5073a8a231f25ad039735ff0908e788af1c57b0dc2e81bb080b45b0
GET /-eJil1F3LxAw/U0rbIiX0RHI/AAAAAAAAAPQ/yoSB82RUZHc/s150/Alpha+Male+Body+language+Tips+.jpeg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Alpha Male Body language Tips .jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 6051
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 11:51:09 GMT
Expires: Sun, 29 Jan 2023 21:17:20 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf5"
Content-Type: image/jpeg
Age: 0
mybettermb.com/adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true
52.116.53.155403 Forbidden 7.7 kB URL HTTP/2 mybettermb.com/adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true
IP 52.116.53.155:0
Hash 83f023e737d6a4918443e938ceb18add
bd17b2a1c94b95376cb7eae96bde1295586430c7
d799231af87cd6c275c8a1668ee6e6c89b09c2a992daa0272dedf6c5e394430c
GET /adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Thu, 02 Feb 2023 11:51:08 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-language: en
content-encoding: gzip
X-Firefox-Spdy: h2
alphamaletraits.blogspot.com/favicon.ico
172.217.21.161200 OK 409 B URL HTTP/1.1 alphamaletraits.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash d7e202d6052be1753514b63bf999912e
e0e3c2246afde4198927f21a2f9b10685cfa29be
79c42fc92db7564387d3d2a1b00d548db2eb189203644a7afef51f797011c3a5
GET /favicon.ico HTTP/1.1
Host: alphamaletraits.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/search/label/album'
Cookie: sc_is_visitor_unique=rx9666362.1675338694.BEA94097FFBE4FA261EB9146DC6EAB84.1.1.1.1.1.1.1.1.1; _ga=GA1.3.1332233782.1675338694; _gid=GA1.3.1934372317.1675338694; _gat=1
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Thu, 02 Feb 2023 11:51:09 GMT
Date: Thu, 02 Feb 2023 11:51:09 GMT
Cache-Control: private, max-age=86400
Last-Modified: Fri, 25 Nov 2022 12:13:54 GMT
ETag: W/"d53a2539d1a45e55a8e61ecfef45040938e017688a43cf2e6c3730454a1762fc"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 409
Server: GSE
d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
54.230.245.108200 OK 1.2 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
IP 54.230.245.108:0
File type ASCII text, with CRLF line terminators
Hash 263303c015aaddbd3c417327b3b50823
c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb
871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617
GET /activejs/bdv_fsthd.js HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1199
Connection: keep-alive
Last-Modified: Thu, 14 Jan 2021 11:27:17 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Thu, 02 Feb 2023 05:13:20 GMT
ETag: "977ef3668ead61:0"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1Gjx57byntlaZxLJz8zpm0PZTsYhszMIak2144GcimObocWwtcA9Rw==
Age: 23869
d2b9l3u54v5v39.cloudfront.net/css/default.css
54.230.245.108200 OK 1.5 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/default.css
IP 54.230.245.108:0
File type ASCII text, with CRLF line terminators
Hash 8ea20baef891abad5a169261301f1b0d
b983c5b36da773d38fc2d9d56fb1e462080ac0f8
27306e4a14ab04d39e59d9d73d6fac0fca90bbab3da5d9358c0000b9119c90af
GET /css/default.css HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1489
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Thu, 02 Feb 2023 06:53:34 GMT
ETag: "70d0ec1947f4d01:0"
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: byoBqBhuwfDHR7lxELKUnhUc0koJfYPIp4RrnV0YUVr_9eIRoBuB1A==
Age: 17854
d2b9l3u54v5v39.cloudfront.net/css/248x298.css?cbst=2
54.230.245.108200 OK 2.8 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/248x298.css?cbst=2
IP 54.230.245.108:0
File type ASCII text, with CRLF line terminators
Hash f020440d7f52ee37d70575b0cd5e5b24
82e5372b0edc7d3f383460166f8e0f1e6280aa81
a2df6be8c0eb6d9e62a747d71755fdb0251668c571c984d040d7d6108ffaa5ef
GET /css/248x298.css?cbst=2 HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2817
Connection: keep-alive
Last-Modified: Thu, 18 Jan 2018 16:20:30 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Thu, 02 Feb 2023 06:37:53 GMT
ETag: "183bf427890d31:0"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7ODTF5Vr93fWlWomyW5Hlfz4myFKOuhvDLzLrHEcb0sD7hg5s9QviQ==
Age: 18796
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4b32d45a75459dc3d6106bdaa187bad2
ac8c14aab07ccf9e2361b6e97dd99533a7cf663c
78d2731715d2c9787631e6e6d3d073b6e96af3e5373a25080d298b8214591bbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 00:04:31 GMT
Expires: Thu, 09 Feb 2023 00:04:30 GMT
Etag: "ac8c14aab07ccf9e2361b6e97dd99533a7cf663c"
Cache-Control: max-age=561800,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7932b69afb730afa-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 89693a781b6fd4661b5135e995c020e0
31556087e2debc22777fa52b4d3b61f97ad3f4c2
566e15d9c91a95c23293a34abb7456037353f2abd75ed440d38ca880d3c42099
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 06:34:07 GMT
Expires: Tue, 07 Feb 2023 06:34:06 GMT
Etag: "31556087e2debc22777fa52b4d3b61f97ad3f4c2"
Cache-Control: max-age=412376,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7932b69a1b9bb4f7-OSL
router.infolinks.com/usync/manage?pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27
172.66.41.9200 OK 0 B URL HTTP/2 router.infolinks.com/usync/manage?pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27
IP 172.66.41.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/manage?pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 11:51:09 GMT
content-length: 0
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7932b69aacebb4eb-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11974
Expires: Thu, 02 Feb 2023 15:10:43 GMT
Date: Thu, 02 Feb 2023 11:51:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11974
Expires: Thu, 02 Feb 2023 15:10:43 GMT
Date: Thu, 02 Feb 2023 11:51:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11974
Expires: Thu, 02 Feb 2023 15:10:43 GMT
Date: Thu, 02 Feb 2023 11:51:09 GMT
Connection: keep-alive
c.adsco.re/
104.17.166.186200 OK 30 kB IP 104.17.166.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 815ef37110ac6b63648f05ba53184bee
bebecd11757b35c25edcbb317a4c54c5c8d23697
36bf07548480e148703dd77a427ddd38209b3a2c5f805ca04e563d5d3bef1a1f
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Sun, 05 Mar 2023 11:51:09 GMT
ETag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 2728631
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b69c7fe2b521-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11974
Expires: Thu, 02 Feb 2023 15:10:43 GMT
Date: Thu, 02 Feb 2023 11:51:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ad49e3ca0f9935c7ff8f922039e5864
6382ee41cb26e42293e1ba5d9f0d3af64ddb672c
7a838e4e1aff60581fbf939920955ea67dae8fb3fa4e31572787c773404d071e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14809
x-amzn-requestid: fc920367-4bb1-40fd-9f1d-1d50b27cfc77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaXEQEoAMF3Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-0f70e0252fc3a3e5248bb372;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I17pgyVy4NV1ZxwkL5KKrpyoYd9-GdlEww87kyAME1OPagMUY87m1A==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 09:19:04 GMT
age: 9125
etag: "6382ee41cb26e42293e1ba5d9f0d3af64ddb672c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
c.adsco.re/
104.17.166.186200 OK 27 kB IP 104.17.166.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 65581e7893e8e634c67493eb22d51c61
1eb6427ecaaf853ca9337d70f4af9ab1c7e8be11
127b526a300c91362df31b1727c44ff590040635f2dbae6cb20b3a80ab2ea256
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 11:51:09 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Sun, 05 Mar 2023 11:51:09 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 2728630
vary: Accept-Encoding
server: cloudflare
cf-ray: 7932b69b6cefb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 16501
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bdv.bidvertiser.com/bidvertiser.dbm?pid=558468&bid=1801988&RD=1847694742097&DIF=2
54.241.51.109200 OK 6.8 kB URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=558468&bid=1801988&RD=1847694742097&DIF=2
IP 54.241.51.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f1d06527f75868ea84da730b7c8b5660
6c0cb65a477d6bc7d013529411d5735bd39e3d46
2ff4fb12b9ac4dff67bf89cc69f1bfce3ffa738696f904172044a5a537a704c9
GET /bidvertiser.dbm?pid=558468&bid=1801988&RD=1847694742097&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thursday, 02-Feb-2023 11:51:09 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 02-Feb-2022 11:51:09 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
mybettermb.com/adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true
52.116.53.155403 Forbidden 7.8 kB URL HTTP/2 mybettermb.com/adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true
IP 52.116.53.155:0
Hash 84be4cec3583f971b98c757e3b77185e
6c2b87faadba2f4330fa1fcc655f97f6556cf8b8
f184cd5773679ca3811b85cf95c57cb4344f7837a9836eccd32105621de075d3
GET /adServe/banners?tid=95578_312094_0&tagid=2&hybridPop=true HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Thu, 02 Feb 2023 11:51:08 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-language: en
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 48571
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 49998
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bdv.bidvertiser.com/bidvertiser.dbm?pid=558468&bid=1855359&RD=066452318152&DIF=2
54.241.51.109200 OK 395 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=558468&bid=1855359&RD=066452318152&DIF=2
IP 54.241.51.109:0
Hash 5cd9f9cfbe0d47334aa58eb9a7dbd81c
a0ba8ad8e23e449e2c98493534ef24516076851f
215cd6f2f53a9b0180ee3102524b373ffeecefbae27adf04fb2e8406159941fb
GET /bidvertiser.dbm?pid=558468&bid=1855359&RD=066452318152&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thursday, 02-Feb-2023 11:51:09 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 02-Feb-2022 11:51:09 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 333
CONNECTION: Close
beta.mybettermb.com/adServe/banners?tid=95578_312094_1&type=footer&size=37
52.116.53.155403 Forbidden 389 B URL HTTP/2 beta.mybettermb.com/adServe/banners?tid=95578_312094_1&type=footer&size=37
IP 52.116.53.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (614), with no line terminators
Hash ffc5d30267c8d48352d0447975f30e82
c63f357953279c0c6cce59ff036ea999b628e120
c259c4f5ea62f8b7778240730db7a7cd39fe656dbb4b7bcef21251d7f1481684
GET /adServe/banners?tid=95578_312094_1&type=footer&size=37 HTTP/1.1
Host: beta.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Thu, 02 Feb 2023 11:51:08 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-language: en
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e0a948480d7d508509dd5f1fd0266a9e
3ed44103da4a44408f58684b5435447a44d2cfb7
9613e21ab48ded62206a68b88b967ee7ba1543757f58c65bdd9c284153877838
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9613E21AB48DED62206A68B88B967EE7BA1543757F58C65BDD9C284153877838"
Last-Modified: Tue, 31 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 02 Feb 2023 14:26:55 GMT
Date: Thu, 02 Feb 2023 11:51:09 GMT
Connection: keep-alive
cn8mtqponwlf.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 cn8mtqponwlf.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: cn8mtqponwlf.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
c.adsco.re/
104.17.166.186304 Not Modified 0 B IP 104.17.166.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c.adsco.re/
If-None-Match: W/"xkCBFtC0Wl/JiS60JFipuQ=="
HTTP/1.1 304 Not Modified
Date: Thu, 02 Feb 2023 11:51:09 GMT
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Sun, 05 Mar 2023 11:51:09 GMT
ETag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
CF-Cache-Status: HIT
Age: 2728631
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b69e1a7fb521-OSL
alt-svc: h2=":443"; ma=60
6.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://c.adsco.re/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b69e2f2e1c12-OSL
alt-svc: h2=":443"; ma=60
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116423 bytes)
Hash d5b9b7a3accd3b7b7de639c072ae3ee2
9583b5c046d78af5c6379d844219f828aa2222d0
648dad6716bb917c7d981e7772fca499d9583717fd83ffef47b0534cb9132b60
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116423
date: Thu, 02 Feb 2023 11:51:09 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
alphamaletraits.blogspot.com/search/label/album'
172.217.21.161304 Not Modified 0 B URL HTTP/1.1 alphamaletraits.blogspot.com/search/label/album'
IP 172.217.21.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
GET /search/label/album' HTTP/1.1
Host: alphamaletraits.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/search/label/album'
Cookie: sc_is_visitor_unique=rx9666362.1675338694.BEA94097FFBE4FA261EB9146DC6EAB84.1.1.1.1.1.1.1.1.1; _ga=GA1.3.1332233782.1675338694; _gid=GA1.3.1934372317.1675338694; _gat=1
If-Modified-Since: Fri, 25 Nov 2022 12:13:54 GMT
If-None-Match: W/"d53a2539d1a45e55a8e61ecfef45040938e017688a43cf2e6c3730454a1762fc"
HTTP/1.1 304 Not Modified
Expires: Thu, 02 Feb 2023 11:51:09 GMT
Date: Thu, 02 Feb 2023 11:51:09 GMT
Cache-Control: private, max-age=0
ETag: W/"d53a2539d1a45e55a8e61ecfef45040938e017688a43cf2e6c3730454a1762fc"
Server: GSE
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4236
Cache-Control: max-age=110641
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:09 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 18:35:10 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 71c7f56efcacb9f713211540755eb4f4
8eef0dad4742bc7f27582ea3e9dda3c9ed428310
3978faff2dae698b9dd24b1cea92f3b3461b81e8404be435c5941f1a3208bb4d
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ac902c68b1be930c0dc0a3b51391d9a5
etag: "178947f3ebe90492ad6556fb5aa0249e"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 02 Feb 2023 11:54:56 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ccf1bvysufcTIRVAdV609A==
x-fb-debug: rp+jcXzg2SLzy4YUbQT3g5gnf4N0WeS6dQw9j1OSU3gwIEBC/pQWGwBQpxmIBwa1i9IW3YhZern8A2iR8heaww==
content-length: 1687
x-fb-trip-id: 1904183273
date: Thu, 02 Feb 2023 11:51:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
alphamaletraits.blogspot.com/search/label/album'
172.217.21.161200 OK 45 kB URL HTTP/1.1 alphamaletraits.blogspot.com/search/label/album'
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7817)
Hash 4986f9f7f35a10bc894fb3e3dc7dd7f5
f0364dac3b78cb3b903bc147e969ce5ac6c5e6f1
e42076b09283393bdaa37ca91c8a1ad0173abfcf4b1db2476e0e66bdb74f4031
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
GET /search/label/album' HTTP/1.1
Host: alphamaletraits.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/search/label/album'
Cookie: sc_is_visitor_unique=rx9666362.1675338694.BEA94097FFBE4FA261EB9146DC6EAB84.1.1.1.1.1.1.1.1.1; _ga=GA1.3.1332233782.1675338694; _gid=GA1.3.1934372317.1675338694; _gat=1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Thu, 02 Feb 2023 11:51:09 GMT
Date: Thu, 02 Feb 2023 11:51:09 GMT
Cache-Control: private, max-age=0
Last-Modified: Fri, 25 Nov 2022 12:13:54 GMT
ETag: W/"d53a2539d1a45e55a8e61ecfef45040938e017688a43cf2e6c3730454a1762fc"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 45280
Server: GSE
router.infolinks.com/gsd?evt=afterGSD&pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27&jsv=1845.006-3.025&_cb=16753386951650
172.66.41.9200 OK 0 B URL HTTP/1.1 router.infolinks.com/gsd?evt=afterGSD&pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27&jsv=1845.006-3.025&_cb=16753386951650
IP 172.66.41.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gsd?evt=afterGSD&pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27&jsv=1845.006-3.025&_cb=16753386951650 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:09 GMT
Content-Length: 0
Connection: keep-alive
Via: 1.1 google
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7932b69e6cbdb518-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4236
Cache-Control: max-age=110641
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:51:09 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 18:35:10 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
router.infolinks.com/usync/lcmanage?pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27
172.66.41.9200 OK 0 B URL HTTP/2 router.infolinks.com/usync/lcmanage?pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27
IP 172.66.41.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/lcmanage?pid=2489734&wsid=0&pdom=alphamaletraits.blogspot.com&purl=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%27 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 11:51:09 GMT
content-length: 0
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7932b69e5918b4eb-OSL
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js?hash=20843e2d86f5e8f1c80117fa2e746597
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=20843e2d86f5e8f1c80117fa2e746597
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash 2cca1e27603101c635c4d2b33c46ac28
a77bbafc2ab3a0cf16bf3c437c05fcd509de8a93
5467b039c7c85b30e77c7249244b7b34a54ee52d2baa8b9b4bf74319b015d391
GET /en_US/all.js?hash=20843e2d86f5e8f1c80117fa2e746597 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: d1b19d3e9ba1dc17c6b3153438cd5c81
etag: "590fc9447236cf77f672372c94b04d94"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 02 Feb 2024 09:20:29 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: LMoeJ2AxAcY1xNKzPEasKA==
x-fb-debug: dbdWzZ5TguLQFMYiKlV6E9lfCZ57wGxP0n3eCA7nnjXCy9BeGQENOaRD2lihR6lwCZjfyKEx9SpHFGE8OpLmUg==
priority: u=3,i
content-length: 88302
x-fb-trip-id: 1904183273
date: Thu, 02 Feb 2023 11:51:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash c1fc3440d41088c3851da03328edc9f4
e40a58d11ff677f666afbc09f0ec5522fd8f90a3
e3d48f671e288af8ec3f05e59b55b2da1e5dbc50a0c877b1c017a5cb2ad2c0ac
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=104538
Date: Thu, 02 Feb 2023 11:51:09 GMT
Etag: "63da93b4-1d7"
Expires: Fri, 03 Feb 2023 16:53:27 GMT
Last-Modified: Wed, 01 Feb 2023 16:30:44 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KK984df4Z6YHBIja9FW3jrxOTGuZA80nrX8zRCYD0XpooQloruXF-w==
Age: 1363
cdn.chitika.net/getads.js
143.204.55.12200 OK 0 B URL HTTP/2 cdn.chitika.net/getads.js
IP 143.204.55.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getads.js HTTP/1.1
Host: cdn.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
date: Thu, 02 Feb 2023 03:03:19 GMT
last-modified: Fri, 19 Apr 2019 16:40:37 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iL1wdoOnO4ogHR6ZcCbylIfCSMgoB660ZZBG9oGlEVFRabNq6flbRg==
age: 31672
X-Firefox-Spdy: h2
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=8256
date: Thu, 02 Feb 2023 11:51:10 GMT
X-Firefox-Spdy: h2
cn8mtqponwlf.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 cn8mtqponwlf.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: cn8mtqponwlf.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Thu, 02 Feb 2023 11:51:10 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
adsco.re/p
162.252.214.5200 OK 414 B IP 162.252.214.5:0
File type ASCII text, with very long lines (487), with no line terminators
Hash 7471fd680bd9d2f949ebaf4c8ed6f747
671bf14927635bba7249256807de1f7a32ef8eb5
a70f7621053aca78569e073efa8495ff0cfa42c59bd70b0112cfb6b83443041f
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 2470
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: http://alphamaletraits.blogspot.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5b740ddf4480b2c80d7d67cc7334fc69
604fabefb8366b2c64f286c5fd80d35534384cf0
dd1d9106a0841ba9432a0998c68638311563f11793cbca939ebe8f2f163366e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD1D9106A0841BA9432A0998C68638311563F11793CBCA939EBE8F2F163366E4"
Last-Modified: Tue, 31 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10158
Expires: Thu, 02 Feb 2023 14:40:28 GMT
Date: Thu, 02 Feb 2023 11:51:10 GMT
Connection: keep-alive
static.xx.fbcdn.net/rsrc.php/v3/yv/l/0,cross/L2c2KcRw3O7.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/l/0,cross/L2c2KcRw3O7.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash 4a81eff2261c7e21ee5d446e07910ce3
dd1bff1f84efc1662fefa76791152d19e4967f0f
f922afbce45103f6f3d30fec5753f77e5f0d62063c25908c6817e2cb184326d5
GET /rsrc.php/v3/yv/l/0,cross/L2c2KcRw3O7.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 01 Feb 2024 22:15:24 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: SoHv8iYcfiHuXURuB5EM4w==
x-fb-debug: N0EOinlFnAQdQp0YW0m2kAMcbiV0ZP7I6rQAV8S8YrrlfdMmdWrxB0bJFbtzkIPXHNvQuef09LVT4f5YdTOhOQ==
content-length: 5083
x-fb-trip-id: 1904183273
date: Thu, 02 Feb 2023 11:51:10 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=63dba3c7fff0dece&bkl=0&bl=1&pdt=598&sid=63dba3c7fff0dece&pub=ra-546b7d23003f3d90&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=alphamaletraits.blogspot.com&fp=search%2Flabel%2Falbum%2527&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=YOUR%20KEYWORDS%20HERE&colc=1675338696106&jsl=129&uvs=63dba3c716cb61e6000&skipb=1&callback=addthis.cbs.jsonp__0077644343759981640
23.38.200.123200 OK 91 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63dba3c7fff0dece&bkl=0&bl=1&pdt=598&sid=63dba3c7fff0dece&pub=ra-546b7d23003f3d90&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=alphamaletraits.blogspot.com&fp=search%2Flabel%2Falbum%2527&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=YOUR%20KEYWORDS%20HERE&colc=1675338696106&jsl=129&uvs=63dba3c716cb61e6000&skipb=1&callback=addthis.cbs.jsonp__0077644343759981640
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 346b431be3b00724d45aa51051bfa118
432dbe980a6815e94588aa51ec9a802bad8ad9f2
aaba06f114b2507e249e53a2a3627d00e546ad82103dc80e44385245a56f01a4
GET /live/red_lojson/300lo.json?si=63dba3c7fff0dece&bkl=0&bl=1&pdt=598&sid=63dba3c7fff0dece&pub=ra-546b7d23003f3d90&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=alphamaletraits.blogspot.com&fp=search%2Flabel%2Falbum%2527&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=YOUR%20KEYWORDS%20HERE&colc=1675338696106&jsl=129&uvs=63dba3c716cb61e6000&skipb=1&callback=addthis.cbs.jsonp__0077644343759981640 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 91
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Thu, 02 Feb 2023 11:51:10 GMT
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-546b7d23003f3d90/_ate.track.config_resp
23.38.200.123200 OK 583 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-546b7d23003f3d90/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with very long lines (1849), with no line terminators
Hash 347ba26111defb72e62a441725565847
aebf382bb4f1e579af3bdb0b6018e059c3c13c16
70d32d7dd6f40a47e622f49a18310ad2f86866eb18a0e7301f5dec9f0f570d23
GET /live/boost/ra-546b7d23003f3d90/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 583
etag: 789427365--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=58, s-maxage=86400
date: Thu, 02 Feb 2023 11:51:10 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Thu, 02 Feb 2023 11:51:10 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
serve.popads.net/c?_=BQFiAAAAAAAACZUAAoKRTHDiNPNJHXeR2YOGDGyjqEsvMbgZRmUF0bCVKzhW4Anl1vW_DB1OOeon35g3EvJGz6w9dKgKIaLcOz8WESosES-SrIfer4FflPI-jSN5Zq6cuHJXpA13QXi8BYGeCJs4FooUWnW7G6fxVAHGT8ImH6FTn2zMXw15-l6Ei9NaFSKg6pvGR9vl10drKIPYs1gcK4a1_7P9bkDl89PJsdCJUexpC2MSvlDW4j8mmd82F2KhVtpZ32zDskV5OLccPLXj-EbsmMkO9LOYlko2kXz4mLXjCD6Vg7OG9EybRn4ayN7M-USnqGP-gYIiMyGMA8SIHTKhCp9_vBCttF_qZ4wTKjOicifWE18Pa6ooC3eJOMoskxBojerjI9e2lKmrM7R3HHUJjJvuftbZHW7uPoePE1YKppAbhSwhc7NLc38iJWSnfF12U--k_p-2EcZY1xwI7_wxWJqPGCI_9OhWI3I&v=4&siteId=928097&minBid=&popundersPerIP=0,0&blockedCountries=&documentRef=&s=1280,1024,1,1280,1024,0
216.21.13.10200 OK 44 B URL HTTP/1.1 serve.popads.net/c?_=BQFiAAAAAAAACZUAAoKRTHDiNPNJHXeR2YOGDGyjqEsvMbgZRmUF0bCVKzhW4Anl1vW_DB1OOeon35g3EvJGz6w9dKgKIaLcOz8WESosES-SrIfer4FflPI-jSN5Zq6cuHJXpA13QXi8BYGeCJs4FooUWnW7G6fxVAHGT8ImH6FTn2zMXw15-l6Ei9NaFSKg6pvGR9vl10drKIPYs1gcK4a1_7P9bkDl89PJsdCJUexpC2MSvlDW4j8mmd82F2KhVtpZ32zDskV5OLccPLXj-EbsmMkO9LOYlko2kXz4mLXjCD6Vg7OG9EybRn4ayN7M-USnqGP-gYIiMyGMA8SIHTKhCp9_vBCttF_qZ4wTKjOicifWE18Pa6ooC3eJOMoskxBojerjI9e2lKmrM7R3HHUJjJvuftbZHW7uPoePE1YKppAbhSwhc7NLc38iJWSnfF12U--k_p-2EcZY1xwI7_wxWJqPGCI_9OhWI3I&v=4&siteId=928097&minBid=&popundersPerIP=0,0&blockedCountries=&documentRef=&s=1280,1024,1,1280,1024,0
IP 216.21.13.10:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /c?_=BQFiAAAAAAAACZUAAoKRTHDiNPNJHXeR2YOGDGyjqEsvMbgZRmUF0bCVKzhW4Anl1vW_DB1OOeon35g3EvJGz6w9dKgKIaLcOz8WESosES-SrIfer4FflPI-jSN5Zq6cuHJXpA13QXi8BYGeCJs4FooUWnW7G6fxVAHGT8ImH6FTn2zMXw15-l6Ei9NaFSKg6pvGR9vl10drKIPYs1gcK4a1_7P9bkDl89PJsdCJUexpC2MSvlDW4j8mmd82F2KhVtpZ32zDskV5OLccPLXj-EbsmMkO9LOYlko2kXz4mLXjCD6Vg7OG9EybRn4ayN7M-USnqGP-gYIiMyGMA8SIHTKhCp9_vBCttF_qZ4wTKjOicifWE18Pa6ooC3eJOMoskxBojerjI9e2lKmrM7R3HHUJjJvuftbZHW7uPoePE1YKppAbhSwhc7NLc38iJWSnfF12U--k_p-2EcZY1xwI7_wxWJqPGCI_9OhWI3I&v=4&siteId=928097&minBid=&popundersPerIP=0,0&blockedCountries=&documentRef=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: serve.popads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Thu, 02 Feb 2023 11:51:10 GMT
www.odnoklassniki.ru/dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
217.20.147.1302 0 B URL HTTP/1.1 www.odnoklassniki.ru/dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 217.20.147.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: www.odnoklassniki.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 302
Server: Apache
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Length: 0
Connection: keep-alive
Location: https://connect.ok.ru/dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
www.odnoklassniki.ru/dk?st.cmd=extLike&uid=0&ref=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
217.20.147.1302 0 B URL HTTP/1.1 www.odnoklassniki.ru/dk?st.cmd=extLike&uid=0&ref=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 217.20.147.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dk?st.cmd=extLike&uid=0&ref=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: www.odnoklassniki.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 302
Server: Apache
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Length: 0
Connection: keep-alive
Location: https://connect.ok.ru/dk?st.cmd=extLike&uid=0&ref=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
cn8mtqponwlf.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 cn8mtqponwlf.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: cn8mtqponwlf.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash e58f69046d274fd646b186a964c35738
3461d20805276f7ed0b8f75aa8cf2166c43938c3
946cc6c6afd5f5b0f628c0b9d0a092d967752e2f3ebdfe9ca17abbec9d3bd03e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 06 Feb 2023 08:58:10 GMT
ETag: "3461d20805276f7ed0b8f75aa8cf2166c43938c3"
Last-Modified: Thu, 02 Feb 2023 08:58:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2113
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b6a47e4bb518-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash e58f69046d274fd646b186a964c35738
3461d20805276f7ed0b8f75aa8cf2166c43938c3
946cc6c6afd5f5b0f628c0b9d0a092d967752e2f3ebdfe9ca17abbec9d3bd03e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 06 Feb 2023 08:58:10 GMT
ETag: "3461d20805276f7ed0b8f75aa8cf2166c43938c3"
Last-Modified: Thu, 02 Feb 2023 08:58:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2113
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b6a47f42b4ff-OSL
s7.addthis.com/static/100.17feec3d215fd90d3df4.js
23.38.200.123200 OK 423 B URL HTTP/2 s7.addthis.com/static/100.17feec3d215fd90d3df4.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (748), with no line terminators
Hash d7316e741ee91ce7e2f1b2619b70eb7a
244753ff8875cfb3950e4fe646ed0c4c2e798418
a5b148ef03b6547813221988df13f95885e68d91603972f9d1311f601306e94a
GET /static/100.17feec3d215fd90d3df4.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-2ec"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 423
date: Thu, 02 Feb 2023 11:51:10 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
s7.addthis.com/static/14.2dfb61b890959f78272d.js
23.38.200.123200 OK 304 B URL HTTP/2 s7.addthis.com/static/14.2dfb61b890959f78272d.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (397), with no line terminators
Hash ca0f404238de96a7e72a7412a43229ba
4f73f2828bffb15fe09660886210e4ec40eeaa8b
d44d9599170c634d819deecceaa0e7964c0eab00f2e424e882c2840b1363dd36
GET /static/14.2dfb61b890959f78272d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-18d"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 304
date: Thu, 02 Feb 2023 11:51:10 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
s7.addthis.com/static/142.feb3b57b86599b08d012.js
23.38.200.123200 OK 634 B URL HTTP/2 s7.addthis.com/static/142.feb3b57b86599b08d012.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (1226), with no line terminators
Hash e6adb730355ddf46435468ff0051e85e
83b4e408228cf84cdd81770317de3b04e6bf69e0
288f119a66be0f09bda90ac2e2c951f59e6a79a1320faabfae1bf5a45ce15aaf
GET /static/142.feb3b57b86599b08d012.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-4ca"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 634
date: Thu, 02 Feb 2023 11:51:10 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
s7.addthis.com/static/143.3d8bb49f121080f7c65c.js
23.38.200.123200 OK 404 B URL HTTP/2 s7.addthis.com/static/143.3d8bb49f121080f7c65c.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (625), with no line terminators
Hash 1867e14fd787b9160fd8a739ce2582cc
f0fc278e95f1927ae9235f7fc003894631d54cc8
14d6144e5868eb31342870609d7de9af2d465441c13c757344b8343f335dcce1
GET /static/143.3d8bb49f121080f7c65c.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-271"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 404
date: Thu, 02 Feb 2023 11:51:10 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
vk.com/share.php?act=count&index=0&url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
87.240.132.72301 Moved Permanently 164 B URL HTTP/1.1 vk.com/share.php?act=count&index=0&url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 87.240.132.72:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 6d359f551ba4cb27d59e94a6cddaec09
d230318bd921ad8167c2eb9dfdc7b1d7d2c7373f
9ecd8531025e89f5e1ca23d81203a9feddbd5b4b75ca79c9868cb53762293bc8
GET /share.php?act=count&index=0&url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: kittenx
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Type: text/html
Content-Length: 164
Connection: keep-alive
Location: https://vk.com/share.php?act=count&index=0&url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
X-Frontend: front220206
Access-Control-Expose-Headers: X-Frontend
vk.com/share.php?act=count&index=1&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
87.240.132.72301 Moved Permanently 164 B URL HTTP/1.1 vk.com/share.php?act=count&index=1&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 87.240.132.72:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 6d359f551ba4cb27d59e94a6cddaec09
d230318bd921ad8167c2eb9dfdc7b1d7d2c7373f
9ecd8531025e89f5e1ca23d81203a9feddbd5b4b75ca79c9868cb53762293bc8
GET /share.php?act=count&index=1&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: kittenx
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Type: text/html
Content-Length: 164
Connection: keep-alive
Location: https://vk.com/share.php?act=count&index=1&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
X-Frontend: front220206
Access-Control-Expose-Headers: X-Frontend
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 0e3f4d4b61cf17c419778668f99f7a95
6aa04e57afb7de6374b0ff77a49b95c684f1983f
44aba020f0732225f5a974f77589d738b28bac271cd2f6a96ec5a0e70c57286c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 11:51:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 06 Feb 2023 10:44:24 GMT
ETag: "6aa04e57afb7de6374b0ff77a49b95c684f1983f"
Last-Modified: Thu, 02 Feb 2023 10:44:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 477
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7932b6a5a9c8b51b-OSL
widgets.pinterest.com/v1/urls/count.json?url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527&callback=window._ate.cbs.rcb_e9ie0
151.101.128.84200 OK 105 B URL HTTP/1.1 widgets.pinterest.com/v1/urls/count.json?url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527&callback=window._ate.cbs.rcb_e9ie0
IP 151.101.128.84:0
File type ASCII text, with no line terminators
Hash 2b5e11c7f46acbed0ab921406ca3bcf7
e18ede4632f50c280901037100417b9165c4b145
78996a4078a57bc3938453d497804a8e685127957b5dec38d21242632547844e
GET /v1/urls/count.json?url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527&callback=window._ate.cbs.rcb_e9ie0 HTTP/1.1
Host: widgets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Connection: keep-alive
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Thu, 02 Feb 2023 12:06:10 GMT
x-envoy-upstream-service-time: 4
x-pinterest-rid: 1767763245649211
Date: Thu, 02 Feb 2023 11:51:10 GMT
Age: 0
transfer-encoding: chunked
widgets.pinterest.com/v1/urls/count.json?url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527&callback=window._ate.cbs.rcb_c2w90
151.101.128.84200 OK 104 B URL HTTP/1.1 widgets.pinterest.com/v1/urls/count.json?url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527&callback=window._ate.cbs.rcb_c2w90
IP 151.101.128.84:0
File type ASCII text, with no line terminators
Hash 4518a5c8721e62f33ead9db26d7b2a8d
e158fe70c573a40f03525c5b9095b2c073f71c17
18c1510ed7aac780107e040cf905213cac0b253350428d728610f7890a6971b0
GET /v1/urls/count.json?url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527&callback=window._ate.cbs.rcb_c2w90 HTTP/1.1
Host: widgets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Connection: keep-alive
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Thu, 02 Feb 2023 12:06:10 GMT
x-envoy-upstream-service-time: 4
x-pinterest-rid: 1422667162408027
Date: Thu, 02 Feb 2023 11:51:10 GMT
Age: 0
transfer-encoding: chunked
vk.com/share.php?act=count&index=0&url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
87.240.132.72200 OK 41 B URL HTTP/2 vk.com/share.php?act=count&index=0&url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 87.240.132.72:0
File type ASCII text, with no line terminators
Hash 6de86497641c67868bfddcbf5a8bf434
6065bb53c9addbda818a6b172597326ebc31e8dc
51d446e1b704e289975e53c6945dee986d432bb439d02a2afcee7ce1b5bddcf8
GET /share.php?act=count&index=0&url=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Thu, 02 Feb 2023 11:51:11 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.113230
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Tue, 30 Jan 2024 03:40:31 GMT; path=/; domain=.vk.com
remixstlid=9051904926019631759_fAxj9lsgN9WVTuPIg7HKJYtf3fchUXXbgR8YDXjfS6L; expires=Fri, 02 Feb 2024 11:51:11 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front220206
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
vk.com/share.php?act=count&index=1&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
87.240.132.72200 OK 41 B URL HTTP/2 vk.com/share.php?act=count&index=1&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 87.240.132.72:0
File type ASCII text, with no line terminators
Hash 3f77d16e5ee6f885ace889f41c568ce7
0cda01541b407a0ec1f1e38156451b3b5a0744da
5888e8718fb8a45511011f83f29a0af4c5c112e437170374a2ed6bbbc5f21023
GET /share.php?act=count&index=1&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Thu, 02 Feb 2023 11:51:11 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.113230
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Wed, 07 Feb 2024 04:43:23 GMT; path=/; domain=.vk.com
remixstlid=9055986313181963874_8njH4ul2CwZq356mdI8Z0t9NgyQT9rnMXnNGOKJ4UqP; expires=Fri, 02 Feb 2024 11:51:11 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front220206
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
q.addthis.com/feeds/1.0/views2.json?pubid=ra-546b7d23003f3d90&domain=alphamaletraits.blogspot.com&limit=50&callback=_ate.cbs.fds_ra546b7d23003f3d90views2json0
23.38.200.123200 OK 767 B URL HTTP/2 q.addthis.com/feeds/1.0/views2.json?pubid=ra-546b7d23003f3d90&domain=alphamaletraits.blogspot.com&limit=50&callback=_ate.cbs.fds_ra546b7d23003f3d90views2json0
IP 23.38.200.123:0
File type ASCII text, with very long lines (5526), with no line terminators
Hash 202dc3e31a4f01842ca1b9bb4cf93154
681fab5563c9efa0cdd8a8eee941ce9cc4dbff89
4b02e8a9c328b1cc5dc24fc08cba529e0c4a64b9fd2058578ff7166f1f93bfab
GET /feeds/1.0/views2.json?pubid=ra-546b7d23003f3d90&domain=alphamaletraits.blogspot.com&limit=50&callback=_ate.cbs.fds_ra546b7d23003f3d90views2json0 HTTP/1.1
Host: q.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript;charset=UTF-8
content-length: 767
surrogate-key: ra-546b7d23003f3d90
cache-tag: ra-546b7d23003f3d90
cache-control: max-age=0, s-maxage=3600
last-modified: Thu, 02 Feb 2023 11:51:11 GMT
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
date: Thu, 02 Feb 2023 11:51:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api-public.addthis.com/url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
23.38.200.123200 OK 2 B URL HTTP/2 api-public.addthis.com/url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 23.38.200.123:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
content-length: 2
cache-control: no-transform, max-age=0, s-maxage=14400
surrogate-key: sFbt=https://alphamaletraits.blogspot.com/search/label/album%27
last-modified: Thu, 02 Feb 2023 11:00:00 GMT
access-control-allow-origin: http://alphamaletraits.blogspot.com
access-control-allow-credentials: true
strict-transport-security: max-age=15724800; includeSubDomains
date: Thu, 02 Feb 2023 11:51:11 GMT
X-Firefox-Spdy: h2
1.bp.blogspot.com/-4tWsdJbK-dM/Vxi4rfpMiZI/AAAAAAAABuo/kOUfoPYRyc82dy9PnWCfi8x3Hvc_SuYIgCLcB/w1200-h630-p-k-no-nu/Pro.jpg
142.250.74.161200 OK 56 kB URL HTTP/1.1 1.bp.blogspot.com/-4tWsdJbK-dM/Vxi4rfpMiZI/AAAAAAAABuo/kOUfoPYRyc82dy9PnWCfi8x3Hvc_SuYIgCLcB/w1200-h630-p-k-no-nu/Pro.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 500x263, components 3\012- data
Hash 8c16390f344e0046f8215d12a80ac775
ed5c49b7b972c6835ba931fcd4e0b1b0a5d426d1
bfe39db93ce5ecbbdcac39790eeb850ddf04c6356dac798dae0938d265d33cc3
GET /-4tWsdJbK-dM/Vxi4rfpMiZI/AAAAAAAABuo/kOUfoPYRyc82dy9PnWCfi8x3Hvc_SuYIgCLcB/w1200-h630-p-k-no-nu/Pro.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Pro.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 55789
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 11:51:11 GMT
Expires: Tue, 31 Jan 2023 20:57:22 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v6ed"
Content-Type: image/jpeg
Age: 0
www.facebook.com/plugins/like_box.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df15b873491aec38%26domain%3Dalphamaletraits.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Falphamaletraits.blogspot.com%252Ffc13e94943a38e%26relation%3Dparent.parent&color_scheme=light&container_width=300&header=true&href=https%3A%2F%2Fwww.facebook.com%2Falphamaleteam&locale=en_US&sdk=joey&show_border=true&show_faces=true&stream=false
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like_box.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df15b873491aec38%26domain%3Dalphamaletraits.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Falphamaletraits.blogspot.com%252Ffc13e94943a38e%26relation%3Dparent.parent&color_scheme=light&container_width=300&header=true&href=https%3A%2F%2Fwww.facebook.com%2Falphamaleteam&locale=en_US&sdk=joey&show_border=true&show_faces=true&stream=false
IP 31.13.72.36:0
GET /plugins/like_box.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df15b873491aec38%26domain%3Dalphamaletraits.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Falphamaletraits.blogspot.com%252Ffc13e94943a38e%26relation%3Dparent.parent&color_scheme=light&container_width=300&header=true&href=https%3A%2F%2Fwww.facebook.com%2Falphamaleteam&locale=en_US&sdk=joey&show_border=true&show_faces=true&stream=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: JluOK3h82iA0IJJobTZ3sq8rNoZRlL+KZ3ms4AwuWywT6dbfmRsFsHd8gGqfz3MJo6mxvXREs6G10SEBIIL4Gw==
date: Thu, 02 Feb 2023 11:51:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Falphamaletraits.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
142.250.74.109200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Falphamaletraits.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 142.250.74.109:0
GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Falphamaletraits.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 11:51:08 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-hDGT9m54pCBwgpLgT5JA2A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=558468&bid=1855359&RD=3535893979524&DIF=1&bd_ref_v=alphamaletraits.blogspot.com&tref=1&win_name=null&docref=&jsrand=3535893979524&js1loc=-&loctitle=YOUR%20KEYWORDS%20HERE
54.241.51.109200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=558468&bid=1855359&RD=3535893979524&DIF=1&bd_ref_v=alphamaletraits.blogspot.com&tref=1&win_name=null&docref=&jsrand=3535893979524&js1loc=-&loctitle=YOUR%20KEYWORDS%20HERE
IP 54.241.51.109:0
GET /BidVertiser.dbm?pid=558468&bid=1855359&RD=3535893979524&DIF=1&bd_ref_v=alphamaletraits.blogspot.com&tref=1&win_name=null&docref=&jsrand=3535893979524&js1loc=-&loctitle=YOUR%20KEYWORDS%20HERE HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thursday, 02-Feb-2023 11:51:07 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 02-Feb-2022 11:51:07 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 333
CONNECTION: Close
connect.ok.ru/dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
217.20.147.3200 OK 0 B URL HTTP/2 connect.ok.ru/dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 217.20.147.3:0
GET /dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Thu, 02 Feb 2023 11:51:10 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-2268200657796175369; Domain=.ok.ru; Expires=Tue, 20-Feb-2091 15:05:17 GMT; Path=/; Secure; HttpOnly
_statid=0a14a099-e1ef-468b-b8e4-a377dcc18c86; Domain=.ok.ru; Expires=Tue, 20-Feb-2091 15:05:17 GMT; Path=/; Secure; HttpOnly
landref=alphamaletraits.blogspot.com; Domain=.ok.ru; Path=/; Secure
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob: data:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubdomains;preload
access-control-allow-origin: *
access-control-allow-credentials: true
rendered-blocks: WidgetExtLike
content-encoding: br
X-Firefox-Spdy: h2
clksite.com/static/advertisement.js
52.116.53.147200 OK 0 B URL HTTP/2 clksite.com/static/advertisement.js
IP 52.116.53.147:0
GET /static/advertisement.js HTTP/1.1
Host: clksite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:51:08 GMT
content-type: application/javascript
last-modified: Mon, 12 Jun 2017 13:33:59 GMT
vary: Accept-Encoding
etag: W/"593e9847-1b"
expires: Sat, 04 Feb 2023 11:51:08 GMT
cache-control: max-age=172800
content-encoding: gzip
X-Firefox-Spdy: h2
connect.ok.ru/dk?st.cmd=extLike&uid=0&ref=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
217.20.147.3200 OK 0 B URL HTTP/2 connect.ok.ru/dk?st.cmd=extLike&uid=0&ref=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527
IP 217.20.147.3:0
GET /dk?st.cmd=extLike&uid=0&ref=http%3A%2F%2Falphamaletraits.blogspot.com%2Fsearch%2Flabel%2Falbum%2527 HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alphamaletraits.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Thu, 02 Feb 2023 11:51:10 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-6979344519827840225; Domain=.ok.ru; Expires=Tue, 20-Feb-2091 15:05:17 GMT; Path=/; Secure; HttpOnly
_statid=e7249274-8735-4571-af64-400a6810c466; Domain=.ok.ru; Expires=Tue, 20-Feb-2091 15:05:17 GMT; Path=/; Secure; HttpOnly
landref=alphamaletraits.blogspot.com; Domain=.ok.ru; Path=/; Secure
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob: data:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubdomains;preload
access-control-allow-origin: *
access-control-allow-credentials: true
rendered-blocks: WidgetExtLike
content-encoding: br
X-Firefox-Spdy: h2
c.statcounter.com/t.php?sc_project=9666362&u1=BEA94097FFBE4FA261EB9146DC6EAB84&java=1&security=0d5d90ef&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//alphamaletraits.blogspot.com/search/label/album%27&t=Alpha%20Male%20Traits%3A%20album%27&invisible=1&sc_rum_e_s=1730&sc_rum_e_e=1739&get_config=true
104.20.218.77200 OK 0 B URL HTTP/2 c.statcounter.com/t.php?sc_project=9666362&u1=BEA94097FFBE4FA261EB9146DC6EAB84&java=1&security=0d5d90ef&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//alphamaletraits.blogspot.com/search/label/album%27&t=Alpha%20Male%20Traits%3A%20album%27&invisible=1&sc_rum_e_s=1730&sc_rum_e_e=1739&get_config=true
IP 104.20.218.77:0
GET /t.php?sc_project=9666362&u1=BEA94097FFBE4FA261EB9146DC6EAB84&java=1&security=0d5d90ef&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//alphamaletraits.blogspot.com/search/label/album%27&t=Alpha%20Male%20Traits%3A%20album%27&invisible=1&sc_rum_e_s=1730&sc_rum_e_e=1739&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://alphamaletraits.blogspot.com
Connection: keep-alive
Referer: http://alphamaletraits.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 11:51:09 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc9666362.1675338669.0; SameSite=None; Secure; Expires=Tuesday, 01-Feb-2028 11:51:09 +00; Path=/; Domain=.statcounter.com
access-control-allow-origin: http://alphamaletraits.blogspot.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7932b69b698cb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2