Report - adulttech.blogspot.com.cy/

Report Overview

Submitted URL
adulttech.blogspot.com.cy/
IP
142.250.74.161
ASN
#15169 GOOGLE
Submitted
2022-10-05 20:47:37
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
bedrapiona.com	34930	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	419 B	3.7 kB	139.45.197.234
logv33.xiti.com	776887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	923 B	1.9 kB	54.230.217.59
inklinkor.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	353 B	1.1 kB	104.21.91.63
www.widgeo.net	774083	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	178 kB	104.26.10.22
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
datatechonert.com	46154	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	489 B	139.45.195.253
tzegilo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	351 B	824 B	104.21.84.149
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	35 kB	142.250.74.163
adulttech.blogspot.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	631 B	18 kB	142.250.74.161
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	2.2 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.6 kB	9.8 kB	142.250.74.3
adf.ly	49660	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	905 B	44 kB	104.20.66.244
my.rtmark.net	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	750 B	139.45.195.8
3.bp.blogspot.com	11048	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	113 kB	142.250.74.161
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	489 B	46 kB	216.58.207.195
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	963 B	172.64.155.188
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	7.4 kB	31.13.72.36
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
1.bp.blogspot.com	8403	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	25 kB	142.250.74.161
i9.ytimg.com	2370	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	14 kB	142.250.74.110
adulttech.blogspot.com.cy	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	605 B	142.250.74.161
www.blogger.com	8975	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	68 kB	216.58.207.201
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	888 B	80 kB	142.250.74.174
4.bp.blogspot.com	11215	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	20 kB	142.250.74.161
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	717 B	92 kB	31.13.72.12
onmarshtompor.com	24517	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	889 B	2.6 kB	139.45.197.243
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
resources.blogblog.com	13274	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	25 kB	216.58.207.201
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.162.110.205
2.bp.blogspot.com	11071	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	22 kB	142.250.74.161
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	746 B	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-05	medium	datatechonert.com	Sinkholed

JavaScript (55)

	URL	Size	First Seen	Last Seen
	www.blogger.com/static/v1/jsbin/3048763460-lbx__bn.js	388 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/static/v1/jsbin/3048763460-lbx__bn.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash ef312e199479220caaece450cbfc6b99 486e36d46eb043d2793a2f59e618331975a811f4 48528949dcf71f47d2b66c617d178e31b55c60c805973534d365653a39f1058e Loading...

	www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-05-11
Pretty URL www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-11 01:26:40 Times Seen43984 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	www.blogger.com/static/v1/jsbin/3664959736-video_compiled.js	35 kB	2023-03-07	2023-03-17
Pretty URL www.blogger.com/static/v1/jsbin/3664959736-video_compiled.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:54 Last Seen2023-03-17 12:55:31 Times Seen1 Hash a9af72808ea73d267a89781b67ca4431 06d80f6e2343abeea1a166a23c2d5c2cb35b46f5 9366f32ebc3558e4aab9285689183c96296ec9a68c831237ea8fa1362def3961 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/exm=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs	34 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/exm=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:32:32 Last Seen2023-03-17 12:55:31 Times Seen1 Hash 598ef319a24e3b4e049e4ef12e0dd6bf 3433639786d3a685b68d156b2ab7a28756d72e7b a3edf346bbfdcd0a111b42ca8277846aacdb66a705b778c4388e9629038ff116 Loading...

	www.widgeo.net/tcm_t_u.js	4.4 kB	2023-03-07	2024-02-14
Pretty URL www.widgeo.net/tcm_t_u.js IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:34 Last Seen2024-02-14 06:53:42 Times Seen16 Hash 974f1267eac98e5c600272a7dace1d25 0c6025eaf6e8576115a7e837b99e10601c8b4c6d df7e8c9da077e16872738580b32e8d9370f1e0488b4abd02e1d5808e792c04b0 Loading...

	adulttech.blogspot.com/	269 B	2023-03-07	2024-05-10
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-10 19:11:23 Times Seen28472 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	adulttech.blogspot.com/	334 B	2023-03-08	2023-03-08
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 6ad5737dc675e48710989e17c56a5d54 8ca6e1f7e5e665ec5aa8271cf6d9be8f37b60e02 a01869e899efc6140ab86f514026760eb00e3ef879eb10e11c0890e31761fbed Loading...

	adulttech.blogspot.com/	302 B	2023-03-07	2024-05-10
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-10 19:11:23 Times Seen29180 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	www.widgeo.net/geocompteur/geocompteur.php?c=geoall3&id=2092421&adult=adult&cat=art&fonce=&claire=	5.3 kB	2023-03-08	2023-03-08
Pretty URL www.widgeo.net/geocompteur/geocompteur.php?c=geoall3&id=2092421&adult=adult&cat=art&fonce=&claire= IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash a3cacbf6ed1310685a0d1fb145a623a4 30dd21294981e206fc6148fa1cbfe8e4a13990cf 4837bb6c55f5eb7c3134e8e7893b32b5041dceb32b54ee555258d0435bca15a4 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js	91 kB	2023-03-07	2024-05-10
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-05-10 07:45:38 Times Seen2005 Hash a34f78c3aecd182144818eb4b7303fda 6fca78dac2797c02d86a4bf6514eda398b7dbe62 c784376960f3163dc760bc019e72e5fed78203745a5510c69992a39d1d8fe776 Loading...

	www.blogger.com/navbar.g?targetBlogID=8499365185724483646&blogName=TECH+WORLD+AND+ADULT+ZONE&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://adulttech.blogspot.com/search&blogLocale=bn&v=2&homepageUrl=adulttech.blogspot.com/&vt=7922274568381643921&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fadulttech.blogspot.com&pfname=&rpctoken=27246873	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=8499365185724483646&blogName=TECH+WORLD+AND+ADULT+ZONE&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://adulttech.blogspot.com/search&blogLocale=bn&v=2&homepageUrl=adulttech.blogspot.com/&vt=7922274568381643921&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fadulttech.blogspot.com&pfname=&rpctoken=27246873 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	adulttech.blogspot.com/	336 B	2023-03-08	2023-03-08
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash d65fd73a0c2fc243b868e562d8666b28 8a86b22606f3e6ad526d1080c3f24b07fd2a5f82 a4a74f3f5d0f47931895b6843c6a36596023e1f335b4e67962af17b6ec6f0a64 Loading...

	www.widgeo.net/tcm.js	4.2 kB	2023-03-08	2023-03-08
Pretty URL www.widgeo.net/tcm.js IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 07:00:33 Times Seen1 Hash 1d803ad7add92455d98214aba4fa0af7 7d789a817c5ab03b2a45b5af501f7e3f691175d9 bd9ccc6b0f86839d16bf67c16806251a2aa5e040373dd9f83299a41ab923b2f2 Loading...

	apis.google.com/js/platform.js	53 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 15765e8758982081f08a222a54783683 6282653ca157f529d587b92c552f2f9db446ad96 0da425eaadbec3853cae0b85493ea7ad6934972097b4f59d2a05dbb130585444 Loading...

	unknown	0 B	2023-03-07	2024-05-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 01:48:15 Times Seen37532927 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.widgeo.net/geocompteur/geocompteur_html.php?id=2092421&c=geoall3&size=&nostats=&title=TECH%20WORLD%20AND%20ADULT%20ZONE&ref=adulttech.blogspot.com	29 B	2023-03-08	2023-03-08
Pretty URL www.widgeo.net/geocompteur/geocompteur_html.php?id=2092421&c=geoall3&size=&nostats=&title=TECH%20WORLD%20AND%20ADULT%20ZONE&ref=adulttech.blogspot.com IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash cf881ea7d714b0a800437fa098a26aaa ea400b82184cf7efb8634cb47f27c44eb3a4e640 f49cf5f15bb321a83799ee8e8f0dade8b3f008c8592f117fa5e448e97d5df984 Loading...

	adulttech.blogspot.com/	453 B	2023-03-08	2024-02-15
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2024-02-15 02:48:11 Times Seen5 Hash b2a6dd7f2caeaadb966674b802989568 c6ac4f1cf304886382b6d1323949da4ecacc8f6d dbc3b34e6027c58261b4ed490b7ae84aa621782929cf39bc09e995cf79c781ba Loading...

	www.blogger.com/navbar.g?targetBlogID=8499365185724483646&blogName=TECH+WORLD+AND+ADULT+ZONE&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://adulttech.blogspot.com/search&blogLocale=bn&v=2&homepageUrl=adulttech.blogspot.com/&vt=7922274568381643921&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fadulttech.blogspot.com&pfname=&rpctoken=27246873	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=8499365185724483646&blogName=TECH+WORLD+AND+ADULT+ZONE&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://adulttech.blogspot.com/search&blogLocale=bn&v=2&homepageUrl=adulttech.blogspot.com/&vt=7922274568381643921&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fadulttech.blogspot.com&pfname=&rpctoken=27246873 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	adulttech.blogspot.com/	134 B	2023-03-07	2024-05-10
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-05-10 20:49:45 Times Seen14086 Hash 7e2a455be32f5870991d61ec53c7dc39 5b4ae6802be8b8b8033c315ae65a16eeaf7682aa 8f0eb730a7427cc79a611009ff5de0a3d74e5249ea9a9db98d1954e2b933d91d Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	3.1 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:35:13 Times Seen1 Hash e26ef0a0c91ed92833a5a3bfee6e779a 195f09305fcfba9bd573a4633f1d673668958940 132fb88de18c6547d7428b43fe6ec49e5cbbd47c96ceb96ce7155c2ae632c4ea Loading...

	www.blogger.com/video.g?token=AD6v5dxuG1WqfiVlLXiTISJNaIW7IkwVuV8a8MbAiO73wgcv1YF9OtknCdkkz1YclOZCdZNqRstDYXo0myaw0_zKYOC2m9e0bno2T1ZBAXe2qkJbkrnf5OMdEPm9tyK2gfg2pMmsJFA	895 B	2023-03-08	2023-03-08
Pretty URL www.blogger.com/video.g?token=AD6v5dxuG1WqfiVlLXiTISJNaIW7IkwVuV8a8MbAiO73wgcv1YF9OtknCdkkz1YclOZCdZNqRstDYXo0myaw0_zKYOC2m9e0bno2T1ZBAXe2qkJbkrnf5OMdEPm9tyK2gfg2pMmsJFA IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash a72753685d441163355c967fd9140954 bf62135f987f390798e8637f48c1fc552ba2311d b73553d66e34a82c31526cfcf650183cf2ff69f284387577dfc71ae319c14f45 Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-05-10
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-10 19:11:24 Times Seen48882 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	adf.ly/static/js/entry_scriptV1.2.js	3.8 kB	2023-03-07	2023-03-17
Pretty URL adf.ly/static/js/entry_scriptV1.2.js IP 104.20.66.244 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:00:06 Last Seen2023-03-17 12:34:14 Times Seen1 Hash 751221dc9f325f754834a2fe83bd37f0 fedcadef2cfad69e38c6d198dd378541b15eb013 fe7d1edb47f135e15fd1371ad1764a6b6839ab7a53b3cd3da992a32fbf6cc1f6 Loading...

	adulttech.blogspot.com/	282 B	2023-03-07	2024-05-09
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:09 Last Seen2024-05-09 23:23:39 Times Seen529 Hash b5138adee320c7ae47b72dab3167e9e3 7cebb9126c042eb28be7992a1f09e776ed70f9ac 3a8bcec777c30670b3cd623dbfd5682f0906f99bf5a41e84fa6a95856a02ec45 Loading...

	inklinkor.com/tag.min.js	72 kB	2023-03-08	2023-03-08
Pretty URL inklinkor.com/tag.min.js IP 104.21.91.63 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:22:17 Last Seen2023-03-08 08:51:36 Times Seen1 Hash f3f2f653a80990829a0fb0815f2d256f b64af7b038440fc91abaf420dc1c358dc444e1e3 80cba9ab122210d254d35a009bcf3d0deea04e7c869e569205cb4665d4eec4ec Loading...

	www.widgeo.net/hitparade.php?pagexiti=geoall3	564 B	2023-03-08	2024-02-25
Pretty URL www.widgeo.net/hitparade.php?pagexiti=geoall3 IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2024-02-25 05:21:24 Times Seen8 Hash 1dad30330e789243be5658de2f47be05 3bf8eea874585235f4180c2c7ae7e1f2ee3fbc43 a91434cab716a8003a39d749ba6818c75cce6d99913f632adb8c8b286cc63a92 Loading...

	tzegilo.com/stattag.js	33 kB	2023-03-07	2023-03-17
Pretty URL tzegilo.com/stattag.js IP 104.21.84.149 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:21 Last Seen2023-03-17 12:47:57 Times Seen1 Hash df875929410d71d763e9fa10b830bb2a b0711a8d2bf6ad4ffa4640534588b423f2ef7fec 0be796b658c6cee0d55aa164994d0d83f9ec7aa7ecf1eb41c1ddf208bba9e3b1 Loading...

	www.widgeo.net/geocompteur/geowidget_js.js	916 B	2023-03-07	2024-05-09
Pretty URL www.widgeo.net/geocompteur/geowidget_js.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:03 Last Seen2024-05-09 07:49:35 Times Seen607 Hash 2af0ddc8de5b4b8a39275fe7cc93de56 d71fb389df022f82380a4d4f2182039ae153afe3 ec482ce87b4f7f6f06450ba94fdbf5ad7062e8d2af9172607a645e5199cfcfeb Loading...

	www.widgeo.net/geocompteur/geocompteur_html.php?id=2092421&c=geoall3&size=&nostats=&title=TECH%20WORLD%20AND%20ADULT%20ZONE&ref=adulttech.blogspot.com	371 B	2023-03-08	2023-03-08
Pretty URL www.widgeo.net/geocompteur/geocompteur_html.php?id=2092421&c=geoall3&size=&nostats=&title=TECH%20WORLD%20AND%20ADULT%20ZONE&ref=adulttech.blogspot.com IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash eec8a02754d5e469e7fe3cddf191100e d50bc787d9380855636fa41e6e7479b48ac91dbe 2104181c261c38d46b56fda22ee6c4717cc6ebfd9625f2672f4a798e98cd3b86 Loading...

	adulttech.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-05-10
Pretty URL adulttech.blogspot.com/js/cookienotice.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-05-10 21:04:31 Times Seen116726 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	adulttech.blogspot.com/	119 B	2023-03-08	2023-03-08
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 22ff9c45ae502412d664280de2ba7500 0e3448fe4126aaa4ca82e003c1905493505e3946 694db59007204b2c6cec2f6d30e792014dacab6ed5c4f676f5b6300caa05ccb3 Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	54 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 86699298e9ac91b7d3047c1dd6c20a8b d18906decf243620da2249c951af4f1fc702c303 74771edecad704a2abf3efc46eea00a00c4e404481907ac881642037f6e4357c Loading...

	adulttech.blogspot.com/	789 B	2023-03-07	2024-02-13
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	adulttech.blogspot.com/	8.9 kB	2023-03-08	2023-03-08
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 3d58bb87256ba3dd099b888febc590b9 6efedafb27fcd560991fb82c32baa02a716f3e89 3f1de42a24e7ef2eaeefcb27744829e9be11b4c0b1a979b701252e68ae3a205a Loading...

	www.blogger.com/video.g?token=AD6v5dxsiapqTJo0P8SIt1QovnklS-mvw5J6GF1Z629INWp7LqoFPj1HEBOVKVW9nc3FICuncTsZor3qpZnPly5BrDt6atQp8MYFUSyr_FVI71GBt-ZErcrM5Xd1Rk_KfLaIOuU0pkk	910 B	2023-03-08	2023-03-08
Pretty URL www.blogger.com/video.g?token=AD6v5dxsiapqTJo0P8SIt1QovnklS-mvw5J6GF1Z629INWp7LqoFPj1HEBOVKVW9nc3FICuncTsZor3qpZnPly5BrDt6atQp8MYFUSyr_FVI71GBt-ZErcrM5Xd1Rk_KfLaIOuU0pkk IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 6a5e7fe18c4cd863f0e07c1e81800ade 9d27b18574dd55009c5d5f6f2abb358d2f5657b5 eab3075b6ec3c6d973b6a8a91f624d113f24016aa1b7cf51216fbd116fee2f3c Loading...

	adulttech.blogspot.com/	275 B	2023-03-07	2024-05-10
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-05-10 21:04:29 Times Seen58745 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	adulttech.blogspot.com/	21 B	2023-03-07	2023-04-12
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-04-12 11:38:38 Times Seen31 Hash 99b7013a12e646f2e1ba597263930277 a08b0d4b243f0688dd82b40c44987bdf82a7a6ab c32a52ce1fef7455041b6f74153c4241dd633a15cf89fa4aa74b8f9db45072fb Loading...

	www.gstatic.com/feedback/js/help/prod/service/lazy.min.js	95 kB	2023-03-08	2023-03-08
Pretty URL www.gstatic.com/feedback/js/help/prod/service/lazy.min.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:56:03 Last Seen2023-03-08 07:50:03 Times Seen1 Hash 98fbc78ffab1fbd50cc38109d34f1304 1f833b553736a78143e3b1d40b8a7b952f4f5915 01c558f26d0dbf4259c67477a565920538eb0fd18e5314c4c9c498c1479acc14 Loading...

	www.blogger.com/video.g?token=AD6v5dxIsq6RoaAhwEnmfF_GxPNQ4g9nTnPA3x9etjwWFeJX3REyoiCJnsuTfS4suSa4RKQYUJVuqAtjeUZkOpSnd5qi_X6H6PvaQtogQ5tkE4cGtserorgWRpW9WOYrQc3Ff2maMrJ0	904 B	2023-03-08	2023-03-08
Pretty URL www.blogger.com/video.g?token=AD6v5dxIsq6RoaAhwEnmfF_GxPNQ4g9nTnPA3x9etjwWFeJX3REyoiCJnsuTfS4suSa4RKQYUJVuqAtjeUZkOpSnd5qi_X6H6PvaQtogQ5tkE4cGtserorgWRpW9WOYrQc3Ff2maMrJ0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 4fca13bdd559d7b29ca7e0d0e9e0f3ef e2163e096c09a65fae56959814fcdaa078574db0 e5f899f62eb239f1a9f2a3315b45c0c791ad6be94d68ea097de6ae9afcf40d1d Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs	131 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 17:17:06 Times Seen1 Hash 8c367d9263e0440822e7e28574a782d6 37afed9428bb96e347d49f80f53ac4a5ab8e03d3 47858e4fa55e26f84c8025d699232106abfc921232a6f02edc556e59ce3a855b Loading...

	www.widgeo.net/hitparade.php?pagexiti=geoall3	195 B	2023-03-07	2024-04-21
Pretty URL www.widgeo.net/hitparade.php?pagexiti=geoall3 IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:34 Last Seen2024-04-21 10:55:59 Times Seen529 Hash 6724f9a568946f16f14be1a9e5dd4a11 a2726d43191721ffb5d4a35c49e74b3467171f8e f8b5a94319b7b6906f5077084ab31c8186278e107656901558317813c69aa1e6 Loading...

	www.blogger.com/video.g?token=AD6v5dw1VuOLl6Dbt0o8ad5elOE5GuRIZehyq7SmPrPQcKb7yACXV24wvY46dxhAPHfnydgZzIZlIwo07eUWTPWv3Zbt84mw_O6TMyayb9hBrpTaVHRaXav1PAb-Ydu_XSnwivOanvQF	905 B	2023-03-08	2023-03-08
Pretty URL www.blogger.com/video.g?token=AD6v5dw1VuOLl6Dbt0o8ad5elOE5GuRIZehyq7SmPrPQcKb7yACXV24wvY46dxhAPHfnydgZzIZlIwo07eUWTPWv3Zbt84mw_O6TMyayb9hBrpTaVHRaXav1PAb-Ydu_XSnwivOanvQF IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 6fb8d54c990497b02f8788b9f64db498 f15c01223d35876f12778f106f1032b9c9c99adc 0460caae966dbb7ad154a33acdd9bed0f8dc99f482f0c538ba5701ad8ceecd2b Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js	72 kB	2023-03-07	2024-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:10 Last Seen2024-05-11 00:04:02 Times Seen7373 Hash 10092eee563dec2dca82b77d2cf5a1ae 65cbff4e9d95d47a6f31d96ab4ea361c1f538a7b e23a2a4e2d7c2b41ebcdd8ffc0679df7140eb7f52e1eebabf827a88182643c59 Loading...

	connect.facebook.net/en_US/all.js?hash=8dc7c8b03d23fe79739c594c943e8120	315 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/all.js?hash=8dc7c8b03d23fe79739c594c943e8120 IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:33:15 Last Seen2023-03-08 06:35:13 Times Seen1 Hash 8e2c3f6a480cf4dd10a18cbe663aa5a0 703dad6ac20a9f9cedfcf44660d0bfa2714ad77b 42a1cc1b652d385df64b75b6a971d8d10222c22091e3857309ee08824c59a03d Loading...

	adulttech.blogspot.com/	702 B	2023-03-08	2023-03-08
Pretty URL adulttech.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 12c83e74fc833fd644335533f08d30e2 211b6ebea16e3f687b337292b9f8e3e8dbdffeb2 17c76dad2d3bfe9415d05d2e08eef58e399fba5054b17276b27d6a0620a5cdee Loading...

	adf.ly/js/entry.js	4.3 kB	2023-03-07	2023-05-05
Pretty URL adf.ly/js/entry.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-05-05 01:59:04 Times Seen70 Hash 1283f0a35272cb88eb37a49477cf30b4 a93c8643fa10c5570254cbe4f5e29487c161f403 c0e7becaa24fa3ed6c4b7134083a1f529cb9c5e5585bf5221871b0a89165462c Loading...

		Size	First Seen	Last Seen
	#1 Write - b887883656d7af6bec16f3e1e51fda8c	90 B	2023-03-08	2023-05-03
Pretty Observations First Seen2023-03-08 06:34:50 Last Seen2023-05-03 20:35:42 Times Seen19 Hash b887883656d7af6bec16f3e1e51fda8c d93abe64ad68ab10646c71e8c41dafa8ac4ef07d 3d30201b0259a56e814eec0946fdd0638146a353e5bb50ae5ff97d4e2fb9a7b8 Loading...

	#2 Write - 39d1fea628fb1e44fa120fe528c68a4b	154 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 39d1fea628fb1e44fa120fe528c68a4b 6dd1a971056e414ef9c4b3561f5eb80730e18790 ef04421f577c81dbe1a49372753f6f45aaf188c058963ae3fa2cae14f18709bc Loading...

	#3 Write - 68d697620feec812e4210f2304f1b940	9 B	2023-03-07	2024-04-13
Pretty Observations First Seen2023-03-07 01:39:25 Last Seen2024-04-13 12:56:06 Times Seen57 Hash 68d697620feec812e4210f2304f1b940 eb73c733abef46086ee45f18c78bb0fc0a69240b 4c16ad5e6402b64a26eb80358b4e7c3202866f7959867345c97facf53c6acad6 Loading...

	#4 Write - 7b476a954a2fba2d9509156c27139df3	241 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 7b476a954a2fba2d9509156c27139df3 767826ef0799a9fd329cd525b883c9f4cd8655ed 8dc6b33662e85de07d5bc0fed751979de02e7ddc7ccb8c564e53cdc0a1ad0df8 Loading...

	#5 Write - 0ed330ad572e2d21bd756dbb3fa6a320	110 B	2023-03-07	2023-05-03
Pretty Observations First Seen2023-03-07 12:21:59 Last Seen2023-05-03 20:35:42 Times Seen53 Hash 0ed330ad572e2d21bd756dbb3fa6a320 30bf7e6bfe3bf5af47d2f5fed46cf68e7fb27374 969c9b331633532f1b082a0ae740ced5e04e8625b675025248edaf4c029dd1ec Loading...

	#6 Write - bb91fb2082fece79a603b2c5c6a8aadc	61 B	2023-03-07	2023-05-05
Pretty Observations First Seen2023-03-07 01:03:01 Last Seen2023-05-05 01:59:04 Times Seen54 Hash bb91fb2082fece79a603b2c5c6a8aadc 9d87c5c54f1960504aa3185092bd128a816098e8 b76823646e899971e6e13bb267ace2f64f9cd248ed388a70822a643263d8aa4d Loading...

	#7 Write - 9498916d4992c39871e68e2aaf6fb7ae	7 B	2023-03-07	2024-04-13
Pretty Observations First Seen2023-03-07 01:39:25 Last Seen2024-04-13 12:56:06 Times Seen53 Hash 9498916d4992c39871e68e2aaf6fb7ae 84eef07bb1c3b5c26fe911b829bf16be4a48c0c9 61ec816d908fc16288ab3681498932d3e147ae097e2f66e3634ae0ac7eb5ac92 Loading...

	#8 Write - 7b042c9dfedf760141c2e162d144c054	156 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 06:34:50 Last Seen2023-03-08 06:34:50 Times Seen1 Hash 7b042c9dfedf760141c2e162d144c054 d8ee99283b2885cea3084138c6175aa880ec5e41 e9a0c9fc02a7547308431e77d44d3d58bf177d2b2c7dba3466303f843d375e9a Loading...

	#9 Write - fa3c44d1714e65438b9a91411d64305f	114 B	2023-03-08	2024-02-25
Pretty Observations First Seen2023-03-08 06:34:50 Last Seen2024-02-25 05:21:24 Times Seen8 Hash fa3c44d1714e65438b9a91411d64305f c9783bd6174613cccba25c07721717bfb8fa185c 4a241defe28203139e02e301ad31f2369780b4da848f55330ade5cd15ccef17a Loading...

HTTP Transactions (112)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

54.230.111.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: geuLKwQ7xUhgYEkqh9JnapnaMWGpYRynPD4ggtAhn-ga6n1P6mcouQ==
Age: 18007

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6761
Expires: Wed, 05 Oct 2022 22:40:06 GMT
Date: Wed, 05 Oct 2022 20:47:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7914
Expires: Wed, 05 Oct 2022 22:59:19 GMT
Date: Wed, 05 Oct 2022 20:47:25 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: vzyLrr0oOVBv/ZS3ZYafyDfl84iszCPcFGz/yrY8IeGyaGAKleUjRzNPHy+84nR+OLcR2ZkT8d8=
x-amz-request-id: 0Q6YTFG2KHDGNR85
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 19:58:25 GMT
age: 2940
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 20:47:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

adulttech.blogspot.com.cy/

142.250.74.161

302 Moved Temporarily

177 B

URL HTTP/1.1
adulttech.blogspot.com.cy/
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
177 B (177 bytes)
Hash
e0adda70b916872db35c44d361b31f57
1aae45354ae6068de22172c38a13771bdfc54448
9d324ce8788824d7e3a61cdda35cc313e24c1532f154a8a4860c6a899a29c196

HTTP Headers

GET / HTTP/1.1
Host: adulttech.blogspot.com.cy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Location: http://adulttech.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 05 Oct 2022 20:47:25 GMT
Expires: Wed, 05 Oct 2022 20:47:25 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 177
Server: GSE

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:32:19 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 05 Oct 2022 20:54:26 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vFZFPwHQYEhlMqQb6RNUIVymKCHKfxWUlSLh6mbVd71MKhzk-rjXHQ==
Age: 1073

adulttech.blogspot.com/

142.250.74.161

200 OK

15 kB

URL HTTP/1.1
adulttech.blogspot.com/
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1625)
Size
15 kB (14709 bytes)
Hash
3b075fbdd18877c74efbca269161c802
0d7af3941f3fc208c515c287a0817fb7ccbb1b85
d4f837f0df999161ab88480994adf8da93b57a6af02a510c1f997c36efa866c9

HTTP Headers

GET / HTTP/1.1
Host: adulttech.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 05 Oct 2022 20:47:26 GMT
Date: Wed, 05 Oct 2022 20:47:26 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 02 Dec 2021 02:30:51 GMT
ETag: W/"9f17dd6399bad0da82116097700b0370ef7855def7e223faecf36839be2ef0a5"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 14709
Server: GSE

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5053
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:26 GMT
Last-Modified: Wed, 05 Oct 2022 19:23:13 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

adulttech.blogspot.com/js/cookienotice.js

142.250.74.161

200 OK

2.0 kB

URL HTTP/1.1
adulttech.blogspot.com/js/cookienotice.js
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: adulttech.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Wed, 05 Oct 2022 20:47:26 GMT
Expires: Wed, 12 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 05 Oct 2022 17:03:17 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
047374e90c9a1e02eb7294c0a9a316a2
3d043355314c0c408f547f1faafd3acd6d481f63
e01b0fb379931c35fd707f8cc75e2d6079f77fd5174c30b75934e130d68ed2a5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29305d430d4a98929d99f493c8fa0e09
37e64cc35bce4869f3573c565fdd177dc4e128c0
0557db8eed6f9f794247c44d8b7a8cd99caf6716cc48932ce3b3c1d907493869

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29305d430d4a98929d99f493c8fa0e09
37e64cc35bce4869f3573c565fdd177dc4e128c0
0557db8eed6f9f794247c44d8b7a8cd99caf6716cc48932ce3b3c1d907493869

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29305d430d4a98929d99f493c8fa0e09
37e64cc35bce4869f3573c565fdd177dc4e128c0
0557db8eed6f9f794247c44d8b7a8cd99caf6716cc48932ce3b3c1d907493869

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css

216.58.207.201

200 OK

7.8 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35959)
Size
7.8 kB (7776 bytes)
Hash
5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630

HTTP Headers

GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 16:35:40 GMT
expires: Thu, 05 Oct 2023 16:35:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 18:55:46 GMT
content-type: text/css
age: 15106
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.blogblog.com/img/icon18_edit_allbkg.gif

216.58.207.201

200 OK

162 B

URL HTTP/2
resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 18 x 18\012- data
Size
162 B (162 bytes)
Hash
c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b

HTTP Headers

GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:57:04 GMT
expires: Wed, 12 Oct 2022 19:57:04 GMT
cache-control: public, max-age=604800
last-modified: Wed, 05 Oct 2022 12:00:16 GMT
content-type: image/gif
age: 3022
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.blogblog.com/img/icon18_email.gif

216.58.207.201

200 OK

164 B

URL HTTP/2
resources.blogblog.com/img/icon18_email.gif
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 18 x 13\012- data
Size
164 B (164 bytes)
Hash
36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466

HTTP Headers

GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 02:36:19 GMT
expires: Wed, 12 Oct 2022 02:36:19 GMT
cache-control: public, max-age=604800
last-modified: Tue, 04 Oct 2022 16:56:41 GMT
content-type: image/gif
age: 65467
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

apis.google.com/js/platform.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1277)
Size
20 kB (20361 bytes)
Hash
b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Wed, 05 Oct 2022 20:47:26 GMT
expires: Wed, 05 Oct 2022 20:47:26 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/792789798-widgets.js

216.58.207.201

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/792789798-widgets.js
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56804 bytes)
Hash
02e6bf311e18828a522b4d3a4079084f
a63cd373fa23b4fe11f938d57737e6bfa1ebe789
25d469843aa09be2473931d33aaa37b65ac371874bd98ca84ec780bead3e33e4

HTTP Headers

GET /static/v1/widgets/792789798-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56804
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 02:15:20 GMT
expires: Tue, 03 Oct 2023 02:15:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 03 Oct 2022 00:49:27 GMT
content-type: text/javascript
age: 239526
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.widgeo.net/img/logopm.png

104.26.10.22

200 OK

714 B

URL HTTP/1.1
www.widgeo.net/img/logopm.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
714 B (714 bytes)
Hash
3832d6b8d8c47a5cefe6561297b514f6
f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08

HTTP Headers

GET /img/logopm.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 20:47:26 GMT
Content-Type: image/webp
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 17:24:21 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 616984
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mdBW6NgyYrbqlhFSrdQYy2ds06WbK9fMWRPowALeCV%2FEiGbB4ENxPahwRKbM%2Fo5dcZjjUlVIRvMlVLRP%2BX0ZLio53TVPuqCHEOfFg9Y10C4o6LvQ0rzLRyZtFhH0Ox0V"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559032f5b8f1c02-OSL
alt-svc: h2=":443"; ma=60

www.widgeo.net/geocompteur/geocompteur.php?c=geoall3&id=2092421&adult=adult&cat=art&fonce=&claire=

104.26.10.22

200 OK

2.0 kB

URL HTTP/1.1
www.widgeo.net/geocompteur/geocompteur.php?c=geoall3&id=2092421&adult=adult&cat=art&fonce=&claire=
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2149)
Size
2.0 kB (2027 bytes)
Hash
24f9822825871a19ca64d26176f3d29c
92ccf6c831dcbdd348ad37385a4b22e5b6d8ec5c
1bd3a7cfeaa6baf3f3373a54471bd3e3fd9443ec471aab8a7d03948a43583035

HTTP Headers

GET /geocompteur/geocompteur.php?c=geoall3&id=2092421&adult=adult&cat=art&fonce=&claire= HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 20:47:26 GMT
Content-Type: application/javascript
Content-Length: 2027
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Tue, 11-Oct-2022 20:47:25 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Wed, 12 Oct 2022 20:47:25 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5SP%2FvK3Y%2B2vip0bxu0pzWDxhFH%2Fl8Y7IiHI3TpJtNUs5qSMbSpCz3iySN1LaMKUIJKnz%2BnSjZrQHKZk400CrupDjMZaJFxz7BmPgm2QFVzELk2vbbRxWUEx6Dxn55ibh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559032ecb031c02-OSL
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29305d430d4a98929d99f493c8fa0e09
37e64cc35bce4869f3573c565fdd177dc4e128c0
0557db8eed6f9f794247c44d8b7a8cd99caf6716cc48932ce3b3c1d907493869

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29305d430d4a98929d99f493c8fa0e09
37e64cc35bce4869f3573c565fdd177dc4e128c0
0557db8eed6f9f794247c44d8b7a8cd99caf6716cc48932ce3b3c1d907493869

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

resources.blogblog.com/blogblog/data/1kt/watermark/body_background_birds.png

216.58.207.201

200 OK

23 kB

URL HTTP/2
resources.blogblog.com/blogblog/data/1kt/watermark/body_background_birds.png
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
PNG image data, 300 x 300, 2-bit colormap, non-interlaced\012- data
Size
23 kB (22568 bytes)
Hash
5cd8cda0e75b359eb8f15dc83b0c5c29
86c99fbb62aadacb3ebd3f948d345b917f65253f
0220dbf46954d4efe2e91d261dd3d40f06e6402c722cc5580129af64bddc58f9

HTTP Headers

GET /blogblog/data/1kt/watermark/body_background_birds.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 22568
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 15:25:27 GMT
expires: Wed, 12 Oct 2022 15:25:27 GMT
cache-control: public, max-age=604800
last-modified: Wed, 05 Oct 2022 14:18:25 GMT
content-type: image/png
age: 19319
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs

142.250.74.174

200 OK

58 kB

URL HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (580)
Size
58 kB (57995 bytes)
Hash
d70fcc84d705c565b31a5835c0938d5b
d28e5dc9fcc6239d67986df3205468072023d2d7
1d558c94793446aa6a7832dde0c39ed7d9c77fd963ffb738c460e4f7369a7f4e

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57995
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 07:25:42 GMT
expires: Mon, 02 Oct 2023 07:25:42 GMT
cache-control: public, max-age=31536000
age: 307304
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.162.110.205

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.110.205:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OAjcsZ9c81C9ho2DeHRyrA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Okgy3Fkk8Hlf/M66h/4yoJn2QRA=

3.bp.blogspot.com/-5O66RTIl7VQ/UEuIlunUhpI/AAAAAAAAABc/V2C6GxZixUk/w72-h72-p-k-no-nu/s+%281%29.jpg

142.250.74.161

200 OK

3.2 kB

URL HTTP/1.1
3.bp.blogspot.com/-5O66RTIl7VQ/UEuIlunUhpI/AAAAAAAAABc/V2C6GxZixUk/w72-h72-p-k-no-nu/s+%281%29.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.2 kB (3216 bytes)
Hash
7e5a7d76f16325529c84e9c5a8117450
c12abb6d987d0c95addfc7661fdb49c6021e51cc
73a477c4ad089c33d1a9c69d5e6b75f0dcef86fb47d18e9a837161b2ba8bbaaa

HTTP Headers

GET /-5O66RTIl7VQ/UEuIlunUhpI/AAAAAAAAABc/V2C6GxZixUk/w72-h72-p-k-no-nu/s+%281%29.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1c"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (1).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 3216
X-XSS-Protection: 0

3.bp.blogspot.com/-fTLTUH7IEYc/UEuI34TLC2I/AAAAAAAAACU/9_5lmAyOj54/s320/s+%286%29.jpg

142.250.74.161

200 OK

17 kB

URL HTTP/1.1
3.bp.blogspot.com/-fTLTUH7IEYc/UEuI34TLC2I/AAAAAAAAACU/9_5lmAyOj54/s320/s+%286%29.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 201x320, components 3\012- data
Size
17 kB (17128 bytes)
Hash
13e9d6ccb49438c8135652137aedbc3a
89f23558f708a875d739c8840079317d28ebd216
1df89a8619cebf30257883e20383888e4be11fa235d08f80b18d988c87e299aa

HTTP Headers

GET /-fTLTUH7IEYc/UEuI34TLC2I/AAAAAAAAACU/9_5lmAyOj54/s320/s+%286%29.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2e"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (6).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 17128
X-XSS-Protection: 0

3.bp.blogspot.com/-SBgfe65Q2yM/UEuIscRWrUI/AAAAAAAAAB0/YRh2wP_tpR0/s320/s+%283%29.jpg

142.250.74.161

200 OK

26 kB

URL HTTP/1.1
3.bp.blogspot.com/-SBgfe65Q2yM/UEuIscRWrUI/AAAAAAAAAB0/YRh2wP_tpR0/s320/s+%283%29.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x204, components 3\012- data
Size
26 kB (25697 bytes)
Hash
1f235769cd6de924dea1d5787ccc1207
0acd1f6f34cee14ad3ab9d44af7ddede65e5418b
7ff79c182df10ed4add3621b1d1fea739679e1b342f15d901ed765ac4e9c3fb3

HTTP Headers

GET /-SBgfe65Q2yM/UEuIscRWrUI/AAAAAAAAAB0/YRh2wP_tpR0/s320/s+%283%29.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2d"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (3).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 25697
X-XSS-Protection: 0

4.bp.blogspot.com/-vQcHnmCkBMI/UEuI0Yd2dfI/AAAAAAAAACI/7VweqcmlHrY/s320/s+%285%29.jpg

142.250.74.161

200 OK

19 kB

URL HTTP/1.1
4.bp.blogspot.com/-vQcHnmCkBMI/UEuI0Yd2dfI/AAAAAAAAACI/7VweqcmlHrY/s320/s+%285%29.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x191, components 3\012- data
Size
19 kB (19047 bytes)
Hash
09475cebe863728dfbc0575da379cffa
73383824651a8e543ec9aad58ee908dd4cac4677
49cb2a6c3b85728ec0dbb8d13a1ef2784f731629575aaf56626b26086416a649

HTTP Headers

GET /-vQcHnmCkBMI/UEuI0Yd2dfI/AAAAAAAAACI/7VweqcmlHrY/s320/s+%285%29.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v24"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (5).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 19047
X-XSS-Protection: 0

2.bp.blogspot.com/-lGOFjjvWhl4/UEuI-uml3fI/AAAAAAAAACo/iVJoh96Qd8Q/s320/s+%288%29.jpg

142.250.74.161

200 OK

22 kB

URL HTTP/1.1
2.bp.blogspot.com/-lGOFjjvWhl4/UEuI-uml3fI/AAAAAAAAACo/iVJoh96Qd8Q/s320/s+%288%29.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x209, components 3\012- data
Size
22 kB (21763 bytes)
Hash
23527092f10356ff1bf4e26cbf83be54
8db6eb3a44f55d42b6c210eac8a99c8a4bd97646
c1f2f472f9dc34ed9294c743dc56cba11e2be3ad70af4b2ffe3b1c4febd946d2

HTTP Headers

GET /-lGOFjjvWhl4/UEuI-uml3fI/AAAAAAAAACo/iVJoh96Qd8Q/s320/s+%288%29.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2c"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (8).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 21763
X-XSS-Protection: 0

3.bp.blogspot.com/-MvfGTU1q5Vs/UEuI8nUhl6I/AAAAAAAAACc/IUMWdLASvEA/s320/s+%287%29.JPG

142.250.74.161

200 OK

26 kB

URL HTTP/1.1
3.bp.blogspot.com/-MvfGTU1q5Vs/UEuI8nUhl6I/AAAAAAAAACc/IUMWdLASvEA/s320/s+%287%29.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 213x320, components 3\012- data
Size
26 kB (26148 bytes)
Hash
a13b149825cdbd967aa2935b06377c95
fa547d246f866d14c97ea5d04fd88ad67e8df0cb
330d1f8df9f18787f0d6d8b57488a202f67f6c1cbacef925c28f60ccbb0bbee6

HTTP Headers

GET /-MvfGTU1q5Vs/UEuI8nUhl6I/AAAAAAAAACc/IUMWdLASvEA/s320/s+%287%29.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v29"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (7).JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 26148
X-XSS-Protection: 0

3.bp.blogspot.com/-5O66RTIl7VQ/UEuIlunUhpI/AAAAAAAAABc/V2C6GxZixUk/s320/s+%281%29.jpg

142.250.74.161

200 OK

22 kB

URL HTTP/1.1
3.bp.blogspot.com/-5O66RTIl7VQ/UEuIlunUhpI/AAAAAAAAABc/V2C6GxZixUk/s320/s+%281%29.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x246, components 3\012- data
Size
22 kB (21733 bytes)
Hash
a402534a74bc9ec4dfb0bb907329b69c
901e13d2115e9648ad2ae49125f49617612217cc
22adb044e4755a595d787b8bd42d2735b194628e300d5076868b5e8d55fd0e80

HTTP Headers

GET /-5O66RTIl7VQ/UEuIlunUhpI/AAAAAAAAABc/V2C6GxZixUk/s320/s+%281%29.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1c"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (1).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 21733
X-XSS-Protection: 0

3.bp.blogspot.com/-tRk8Lp863Uk/UEuIvm5tC9I/AAAAAAAAAB8/Z0iWm4iWpsU/s320/s+%284%29.jpg

142.250.74.161

200 OK

16 kB

URL HTTP/1.1
3.bp.blogspot.com/-tRk8Lp863Uk/UEuIvm5tC9I/AAAAAAAAAB8/Z0iWm4iWpsU/s320/s+%284%29.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 184x320, components 3\012- data
Size
16 kB (16450 bytes)
Hash
1f40e475a5198019e060b549fc0fc07a
a79ff0bee97f80b440354816aa483de004bcfb50
935ec1719dfa6c4e94b54f726a3f6896866a301e41dbfa4209322799c30e49b3

HTTP Headers

GET /-tRk8Lp863Uk/UEuIvm5tC9I/AAAAAAAAAB8/Z0iWm4iWpsU/s320/s+%284%29.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v21"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (4).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 16450
X-XSS-Protection: 0

1.bp.blogspot.com/-g6DMjugfcyg/UEuInaexZ3I/AAAAAAAAABk/8MkzFJ2Shas/s320/s+%282%29.jpg

142.250.74.161

200 OK

24 kB

URL HTTP/1.1
1.bp.blogspot.com/-g6DMjugfcyg/UEuInaexZ3I/AAAAAAAAABk/8MkzFJ2Shas/s320/s+%282%29.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x267, components 3\012- data
Size
24 kB (24233 bytes)
Hash
1444575140178dbd7f20efb2f5685f95
c577e412a06b4f96bd9ccc99cb8d3851a0a1a794
013b870a6cc29fe9a769b16f005034081372ea580337b70755c3ac6d160035da

HTTP Headers

GET /-g6DMjugfcyg/UEuInaexZ3I/AAAAAAAAABk/8MkzFJ2Shas/s320/s+%282%29.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1b"
Expires: Thu, 06 Oct 2022 20:47:26 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="s (2).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 20:47:26 GMT
Server: fife
Content-Length: 24233
X-XSS-Protection: 0

adf.ly/static/js/entry_scriptV1.2.js

104.20.66.244

200 OK

1.2 kB

URL HTTP/1.1
adf.ly/static/js/entry_scriptV1.2.js
IP
104.20.66.244:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.2 kB (1157 bytes)
Hash
dca13e3981956c6777a8a573c7c3065a
40aad944b1739a7f7224ac22525d202176147b91
4b1ac63e91a68d26abdb1bc99b87b7b06b73ff40b67109a474fb24e5b4bb9a41

HTTP Headers

GET /static/js/entry_scriptV1.2.js HTTP/1.1
Host: adf.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 20:47:26 GMT
Content-Type: application/x-javascript
Content-Length: 1157
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 12 Oct 2022 20:47:26 GMT
last-modified: Thu, 15 Sep 2022 00:59:02 GMT
etag: "ef4-632278d6-14cb47a8f3220558;gz"
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7559032fae7f1c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/dyn-css/authorization.css?targetBlogID=8499365185724483646&zx=ce758fc9-1498-4e87-b649-22ba0a0c5f7f

216.58.207.201

200 OK

21 B

URL HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=8499365185724483646&zx=ce758fc9-1498-4e87-b649-22ba0a0c5f7f
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=8499365185724483646&zx=ce758fc9-1498-4e87-b649-22ba0a0c5f7f HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 05 Oct 2022 20:47:27 GMT
last-modified: Wed, 05 Oct 2022 20:47:27 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/feedback/js/help/prod/service/lazy.min.js

142.250.74.163

200 OK

34 kB

URL HTTP/2
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2800)
Size
34 kB (33871 bytes)
Hash
2e2eb8ca65dfdc046d0b954f898024b1
6ed5c92832af02c6eb2f3921775922e25e84bacc
0b7eefc089178c4e032417958a2892d47b758136ef3b2a5c1dd36c77d1fa08ae

HTTP Headers

GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 33871
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 20:42:17 GMT
expires: Wed, 05 Oct 2022 21:32:17 GMT
cache-control: public, max-age=3000
last-modified: Tue, 04 Oct 2022 15:24:36 GMT
content-type: text/javascript
age: 310
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
077b75b03b4c1204aceed65970a7bd0e
f75016eb787ea2a5f610ab44311bd99a39705745
bdae6610e6ff268e4098f6f813bc60acd3eb9a40d43a00ef59f27d2296985504

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDAE6610E6FF268E4098F6F813BC60ACD3EB9A40D43A00EF59F27D2296985504"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10196
Expires: Wed, 05 Oct 2022 23:37:23 GMT
Date: Wed, 05 Oct 2022 20:47:27 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.widgeo.net/geocompteur/geocompteur_html.php?id=2092421&c=geoall3&size=&nostats=&title=TECH%20WORLD%20AND%20ADULT%20ZONE&ref=adulttech.blogspot.com

104.26.10.22

200 OK

2.0 kB

URL HTTP/1.1
www.widgeo.net/geocompteur/geocompteur_html.php?id=2092421&c=geoall3&size=&nostats=&title=TECH%20WORLD%20AND%20ADULT%20ZONE&ref=adulttech.blogspot.com
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
2.0 kB (2047 bytes)
Hash
5544b225716178f75dd8af1f6bc0f29d
be20e4d38f75fc3874da6667bd556c3033032a08
d5b7cb90302ff241465fd698611d9e29ab5ff4667390113a00cfa537551b6809

HTTP Headers

GET /geocompteur/geocompteur_html.php?id=2092421&c=geoall3&size=&nostats=&title=TECH%20WORLD%20AND%20ADULT%20ZONE&ref=adulttech.blogspot.com HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 20:47:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="NOI ADM DEV COM NAV OUR STP"
set-cookie: idcompteurcc_2092421=done; expires=Thu, 06-Oct-2022 20:47:26 GMT; Max-Age=86400; path=/
online_idcompteurcc_2092421=done; expires=Wed, 05-Oct-2022 20:50:26 GMT; Max-Age=180; path=/
pays_2092421=United+states%3D703%23Canada%3D65%23Russian+federation%3D41%23France%3D18%23United+kingdom%3D13%23Singapore%3D13%23Australia%3D8%23Brazil%3D7%23Colombia%3D7%23Poland%3D6%23Italy%3D5%23Philippines%3D5%23Argentina%3D4%23Costa+rica%3D3%23Turkey%3D3%23Chile%3D3%23Vietnam%3D2%23South+africa%3D2%23India%3D2%23Netherlands%3D2%23Austria%3D1%23Ghana%3D1%23Brunei+darussalam%3D1%23Sudan%3D1%23Qatar%3D1%23Kuwait%3D1%23Switzerland%3D1%23Bahrain%3D1%23Gambia%3D1%23Japan%3D1%23; expires=Wed, 05-Oct-2022 20:50:26 GMT; Max-Age=180; path=/
online_2092421=1; expires=Wed, 05-Oct-2022 20:50:26 GMT; Max-Age=180; path=/
vj_2092421=582; expires=Wed, 05-Oct-2022 20:50:26 GMT; Max-Age=180; path=/
total_2092421=924; expires=Wed, 05-Oct-2022 20:50:26 GMT; Max-Age=180; path=/
bonus_2092421=116; expires=Thu, 06-Oct-2022 20:47:26 GMT; Max-Age=86400; path=/
bonus_j_2092421=117; expires=Wed, 05-Oct-2022 20:50:26 GMT; Max-Age=180; path=/
cache-control: public, max-age=180
expires: Wed, 05 Oct 2022 20:50:26 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pB7aZCMaqLK5oKS3w55KzNOsqY0HAs2d%2FTffjNTVx8tgXyHj6%2BBsmkIx8sxUPEQfNUCpD7Z9zcGhkmoevWNSt2IhHIn459SjziQuehEi4lCnfjhpcWyOrbS8Nk%2FnrMME"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755903326f4f1c02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

www.widgeo.net/geocompteur/shadow/flag_united%20states.png

104.26.10.22

200 OK

1.0 kB

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_united%20states.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.0 kB (1008 bytes)
Hash
03d9bb2b449e6e964d86aec6d71b6856
e9b1da7fa7d59eaa78b2e2ad681c1e126fb55aa8
6baa676f5ca2682fd2d7945ca2d3b06759d8a1bdd4974e4c3e00b80643410399

HTTP Headers

GET /geocompteur/shadow/flag_united%20states.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 1008
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1214
content-disposition: inline; filename="flag_united%20states.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 19:20:16 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5230
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CRxV4XzSG5xflvtbY9HMq83hu0%2Fjb21rU8%2BbEFMhV4gGlm%2FUQ1xO%2Bah30egdI0o3dFdKADFnvmFLaJUO5Knm1FWIpPMMYeCy3WfeDctDCG3JHeSOjBk3aJq4ubc00Omt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7559033438edb4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_canada.png

104.26.10.22

200 OK

886 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_canada.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
886 B (886 bytes)
Hash
9dfda6415875b226812181f7ea64fcc8
6cdf4ed8b0a4d6a748510ab74d772183a55bdf38
b5e378613935ec7dabd4e11e095b4141b16462909085a185e3a093c8900e6a55

HTTP Headers

GET /geocompteur/shadow/flag_canada.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 886
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1148
content-disposition: inline; filename="flag_canada.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 17:24:24 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 616983
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4R8DA40CXvUcfT34zJrKJmX%2FibpIQBZKQHg0%2FZllqetz58hYSDb2XsYgrVxTMt7IWMbZjEe3MXkQBXZ18xh4gHLMpqrMOxuJrseiucxPjtiHfdfBIZGJNxa2N%2FwjDXrf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903345902b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_russian%20federation.png

104.26.10.22

200 OK

680 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_russian%20federation.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
680 B (680 bytes)
Hash
852881aef6d6a8bca3123c3201f64c74
0e5ef2c61383bb79c8a6ea068d9a688631d844fa
41c20a2d0dc8fe26ec1e5c7e71b5d82fc09e7ce0bd30db7abb516474f5c186a1

HTTP Headers

GET /geocompteur/shadow/flag_russian%20federation.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 680
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=857
content-disposition: inline; filename="flag_russian%20federation.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 19:20:16 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5230
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cbRyUyqy9A5AJpnpE3W9v%2BoqI1xY98Yf4jKSUy3kNkGgC713pu%2BoZ2Y0ojteXbZ9My6PD0kuggHXFzg9dAr3CYTi50R4h%2Bpula2JFT7S8APd%2FyP%2FBdTVnDF74kO94H8f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590334590db4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_france.png

104.26.10.22

200 OK

696 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_france.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
696 B (696 bytes)
Hash
40db5c3f7bd9cee685d7e682084fb924
711a4bc728a541423d4444facaee2651747620db
bf91a9e6437f46b4e59f5786b40ac2da0d23f70060729e3e9adbd1bbbd2ab716

HTTP Headers

GET /geocompteur/shadow/flag_france.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 696
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=901
content-disposition: inline; filename="flag_france.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 17:24:24 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 616983
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rZo6Tb4hd5vr0hRHtK29DV7oV8wSzGJQWWryipbJLdhgiGO%2Fqzy04q1UVmd7EWgrdC6zqp9OC6lp%2B0llsDAcPhzQwmunOZiR%2F%2F%2BF4%2BbCZ0aTsibN5A7W8CQIYoOx4k6W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903345914b4f4-OSL
X-Firefox-Spdy: h2

bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.433.0

139.45.197.234

200 OK

2.6 kB

URL HTTP/2
bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.433.0
IP
139.45.197.234:0
ASN
#9002 RETN Limited

File type
data
Size
2.6 kB (2566 bytes)
Hash
aa8708333db9ef9412f2480877732cb9
ffc0ee667eab933da3f57904cebb7483d5a1d9a4
74cff3a094ea8eab56b0275c5bc9caa41aac76d1632b06d0553ee7d6645f4b59

HTTP Headers

GET /5/3294720/?oo=1&js_build=iclick-v1.433.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://adulttech.blogspot.com
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: application/json
x-trace-id: 6ebf723c6392550910842f2a5deaed90
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: http://adulttech.blogspot.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=301ae46fd2aa4dfc81f820d2fe3f827c; expires=Thu, 05 Oct 2023 20:47:27 GMT; path=/; secure; SameSite=None
oaidts=1665002847; expires=Thu, 05 Oct 2023 20:47:27 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_singapore.png

104.26.10.22

200 OK

768 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_singapore.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
768 B (768 bytes)
Hash
931d98f74f8bbb82364a40f7c3c5ea3b
f844a679d51126b38659a25e9c71c748da392714
04f122230781518f0b5807695a1c731e33bea9ba0264d612c799485074204627

HTTP Headers

GET /geocompteur/shadow/flag_singapore.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 768
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=939
content-disposition: inline; filename="flag_singapore.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 19:33:06 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 4460
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QDJFDVUGVXd9g1Sa3JHk6o%2B2HnnjrAC%2Fppfe%2F7Lb3Ocs%2FU%2BmmzYVDUGsfhmFRQM91eY1Pqmq4IcVEPOgr3naJmd4YPD56Nden6jhRTlUNNKx0iP0GGUY197pBSe5BSAm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903347922b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_australia.png

104.26.10.22

200 OK

1.0 kB

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_australia.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.0 kB (1022 bytes)
Hash
395fda4bf932944885ae2bad6bc94cbd
56579ba3f9e670a64a59fee1079028bf5bbc33ca
6869308fc918c3d6b972eacc5900d2e17ab9740e282d5b3f214f66fbd5b1d43e

HTTP Headers

GET /geocompteur/shadow/flag_australia.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 1022
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1234
content-disposition: inline; filename="flag_australia.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 22 Oct 2022 08:39:16 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1166890
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PgF6vX6GwmgaXchdOSIfvqxVjk2TWUWx7Q%2FDTMQhCgA2%2FDnn6FVHiqXaXYHBgpTRM1t9zGclqbGNMLbNFFYCO6JVinsGkgRcJVwPKcCHAx06VYv0kXFtKTv%2BYeYuJKIO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903347926b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/tcm_t_u.js

104.26.10.22

200 OK

2.9 kB

URL HTTP/2
www.widgeo.net/tcm_t_u.js
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2082), with CRLF line terminators
Size
2.9 kB (2880 bytes)
Hash
d874e84402d8e36b45db06bb68d9a20c
3686c599682dd57f2f2bc7854ccbe6f753a9ab1f
9438a0e4a3374bf068856f79537dcc7f26632841faa4449ce147fe49b455d6d7

HTTP Headers

GET /tcm_t_u.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 12 Oct 2022 20:47:26 GMT
last-modified: Sat, 01 Oct 2022 00:32:25 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z8Vet%2F9V4050AIW6FS08zd5i7El%2FHi%2BPqTdDd4eQMz0QF2mgBTb4%2Bp5aLy1pElY%2FGBFAZK8s0M3YUw8iMZRLqIccfyEG6eWLuERV61rM1H4VixTf848MpjLx0vFgLp7G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590332af64b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_brazil.png

104.26.10.22

200 OK

1.1 kB

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_brazil.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.1 kB (1050 bytes)
Hash
5ba8074bf051be37e522a21d91690c4a
afc5220cb0918a12eae293534a9d5dcc9b2c4ced
4b38bebe57384ceaf979b30b8f64754f22f69c60956b424662397cf068f323a6

HTTP Headers

GET /geocompteur/shadow/flag_brazil.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 1050
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1274
content-disposition: inline; filename="flag_brazil.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sun, 23 Oct 2022 08:07:44 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1082382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F45JM3xeLn1QW%2B1RSsTTxZDoLLpUhVJnPjdxCKyaERb%2F1n0RPOYp3nu5ApE4jV0mVGoMeoFQMwnRDP6nZ7SBQAIiyx3OWQOpdDYykkFXW9YWspX3o7wqcAmAXCxsn5yS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903348934b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_italy.png

104.26.10.22

200 OK

766 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_italy.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
766 B (766 bytes)
Hash
24ca9f7369b903f1a45010d69f1f4518
e95880910e6fbbd0438f23e5393ed2d599a9fc09
d697fb95455f70d598fa02dd416f114270f8369c25024fdcb707049d1c04053c

HTTP Headers

GET /geocompteur/shadow/flag_italy.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 766
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=993
content-disposition: inline; filename="flag_italy.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 19:33:06 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 4460
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F68s%2F9Gb6Nvjru0IXne5Hgk8YEk4I0Cwuvylbj1tRmoG%2BUi6fWJKFbg627k2gR%2FGfWiaTe%2BDhjXAotum3Z8Qcv2CWTTp7oMMZYL16jrdPUh7CFlzD4OS9beN5vvllfy%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903348937b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_poland.png

104.26.10.22

200 OK

606 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_poland.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
606 B (606 bytes)
Hash
70565c5303246b1771f3b0b33117a88b
5dea06613a0b6567c81a567343d959a2dfee46d5
1ea97a9698d41cb3060d78ecf32378ede6bb30dfb9ed68c3a5d7322329e10704

HTTP Headers

GET /geocompteur/shadow/flag_poland.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 606
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=802
content-disposition: inline; filename="flag_poland.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 20:02:17 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2709
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=omW3Yncqd0PkkxNkil7%2Fr4%2B2%2FVSPT4BcLa%2FE9vnCTNq2y97f5f28V%2BuR9qaKyKlkuZjvUwjUVeds0Q4Tw1YoUm5jWUPK57VqvqcGa0liDKGYgfJcEe5I60KPo19m0dna"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903348936b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_argentina.png

104.26.10.22

200 OK

826 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_argentina.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
826 B (826 bytes)
Hash
f85df046f9db80f178ab9d8b3bafcbfd
52e4ca4557a8527aa26ae0f67a76f55c234051e0
06293d33e343684a0e8b107ed241f6f158901ce13497a16973c3bcca193c66d4

HTTP Headers

GET /geocompteur/shadow/flag_argentina.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 826
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1055
content-disposition: inline; filename="flag_argentina.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Thu, 03 Nov 2022 16:47:05 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 100821
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d9sZjPNtPsZx9kyJD45rqfIT21nobt30mQ%2BCFzLXA3A47bhEXwkMZLmw6kFO%2B22RO%2F43kGALXgyFhnMvkuBo%2FAThpcqrIfReaPK2JcNSQ8%2FijYAN6Nx7XrWGjFWWhkmY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590334893cb4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_turkey.png

104.26.10.22

200 OK

798 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_turkey.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
798 B (798 bytes)
Hash
db0e69e42811c797dec72eb843a95828
b96a3fdf006d7d077e1505e2ee87bde518961b15
773700daccd2271942ddbbb1b2d82b82f8bd37ed23ae417bfb9b4832acddf8d8

HTTP Headers

GET /geocompteur/shadow/flag_turkey.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 798
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1045
content-disposition: inline; filename="flag_turkey.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 19:33:06 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 4460
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BQHyHFSlbSRKvJxJ1z%2BItDWEsIe0UcPWkY5xudrKweBAifxJbzSX4SfLV%2FRYkuWJWs9%2FwLj%2Bg6nTn5gvcAIFVYMDsvDV5IU0PSXn8SgPCH07onKqdGTBKdtWlTAxHTFm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590334893eb4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_costa%20rica.png

104.26.10.22

200 OK

872 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_costa%20rica.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
872 B (872 bytes)
Hash
5f23edcc81f304aa65ca6b2b807bbfa0
1fa15ddd3db14b217bfa00c26720504b7e8f7cda
96120ff144cdf981f47581d128474b700114c93af9ee66cac62b371b9b07a808

HTTP Headers

GET /geocompteur/shadow/flag_costa%20rica.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 872
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1057
content-disposition: inline; filename="flag_costa%20rica.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 19:20:16 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5230
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yiwoufgUJyB92njkdQ%2FsHnRRF5NVNKJNlOq6VDSfaw%2B2hj5g8G%2BdDSa8NgtF%2FPO85NHg1%2FPg%2FUny4dpju7z72kQQCa7QWyBDupkgklgAYjdXVMwYW2Ue7SmTa1n8Qylr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590334893db4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_colombia.png

104.26.10.22

200 OK

632 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_colombia.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
632 B (632 bytes)
Hash
ac4d1388a89f5dcc09b60b7da032b05b
c3dde7db32beff29ce22648b14b57a2b56ae42b4
a304218a4902944eabb14ba2948b749bf9125166385c95e9c843b5c30180e42e

HTTP Headers

GET /geocompteur/shadow/flag_colombia.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 632
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=763
content-disposition: inline; filename="flag_colombia.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 19:40:14 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 608832
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cYBij3QHYTXFmB9z81TVCh8N7lBWB3IU94uPQ2zMUQ0ZXTHgmiavXQGjZwebsZhbvE2232wA1XHn%2Bo5Fmy9MqXvrgkFDV6OyMfNAXcN9OR9BNkjnISNPWlwaKDlMqph%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903348935b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/hitparade.php?pagexiti=geoall3

104.26.10.22

200 OK

1.5 kB

URL HTTP/2
www.widgeo.net/hitparade.php?pagexiti=geoall3
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.5 kB (1506 bytes)
Hash
d2bfcb4b4d06121b3fb38e57f82e91f6
d361890d2e9a96a31b81318dc419e37ce2eed58c
8f3a2d14fffdb4689f5513f3154f1cee7dec091b86bfb01779235472647588f7

HTTP Headers

GET /hitparade.php?pagexiti=geoall3 HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=180
expires: Wed, 05 Oct 2022 20:50:26 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GJ0XnBYRZEORDBYVmstIrO87csT0oQ7%2B%2Fg498G%2Bj5BGZBSEUc9GSNWctP8D9VSSg11r%2B%2Bi2QyrWIPQ2xE8DRn4VfbLFfD4IsS7EOJaMl9aWjwQpHzkXjDPR%2FOCW%2FNHIk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590332cf7bb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_chile.png

104.26.10.22

200 OK

744 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_chile.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
744 B (744 bytes)
Hash
966655a2932dafb267b9b9e230c0835c
2c37dc340a0e410028658b397204fe3ad222a6bc
f08c03ca5d756f1834d9df94677a2b4aad96d795246112d1cff9b72fa6b186e5

HTTP Headers

GET /geocompteur/shadow/flag_chile.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 744
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=925
content-disposition: inline; filename="flag_chile.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sun, 23 Oct 2022 01:59:01 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1104505
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A%2BIblUt7mUQJmRoGFlPEKKM%2FSERnXDOQc92SA6OUV3iemGyu8Vaqvi7AujAY6kIlM1d496NIe6YzY7AsJGq8wqRti7sq12FEo%2BO2tm2cc8QYMrlFa%2Bp4z7EGFgcPLG0z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903348944b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/tcm.js

104.26.10.22

200 OK

2.5 kB

URL HTTP/2
www.widgeo.net/tcm.js
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
2.5 kB (2484 bytes)
Hash
a9e3ea1da94f0323729f9e053333574b
af24dd06f3829e13f3a5558d6c9c29290c7ff2f2
dc59f2806c7a77955fffa334008bd211582407c31b30affea530f7229bbd2d0a

HTTP Headers

GET /tcm.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 12 Oct 2022 20:47:26 GMT
last-modified: Tue, 04 Oct 2022 15:40:13 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i8VSzTeG%2FPGTjZlZfaJwlqtevzfW7yLZsy7XZeTROheNbGjJt94apm3bddpWWNGHnx8RoQk7p1r5txBUNU5FDW4oxChty5k6OH8HR4LGSd%2Fin7MPlK7TtB%2B8wYa7sImV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590332af62b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.widgeo.net/geocompteur/shadow/flag_india.png

104.26.10.22

200 OK

806 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_india.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
806 B (806 bytes)
Hash
360d08c7d723c9cc21e98b83a9fbe646
b580c8380db1687a6365a95789c7227d325ce00f
b73e30b7030de7ec01db85eb01edfb3d228169583d6ccc6583bec0552d7ce172

HTTP Headers

GET /geocompteur/shadow/flag_india.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 806
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1027
content-disposition: inline; filename="flag_india.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 10:39:50 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 36456
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wCKeaDqU9IMn%2FZv1ApzpghpUC1BQtXJZF8LEKPAQ838BHvjcoAP3FF2noo77FQzON1oLK2MM2yXG4T%2B7rzTbdDjdX4VRwmmHKckQ55voNWzeh9O1oupOBDPZ9RO21EkH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590334994ab4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_austria.png

104.26.10.22

200 OK

790 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_austria.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
790 B (790 bytes)
Hash
2cef1a7b52772327a7ca1e4e3247234c
3e77e98cd33d722459b2c9f069328d07f2191943
c43a823198a3a9214e7da8cb0ad94886a80c7766cc4b32aefab8723a77f59b08

HTTP Headers

GET /geocompteur/shadow/flag_austria.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/png
content-length: 790
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
cache-control: public, max-age=2592000
expires: Tue, 11 Oct 2022 16:34:59 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2088748
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GiFbf1k88hCgte6ekQK6ETegeybUS%2BdmkbtROGvhGA%2Bg50xaR1nQasNIdWKTGy3Kh0aArgaC5WWuN%2FWQ66bB6fHctaNQseEYFHrK3UjDWCJ4SAa96xoyFkS5ZQMLjrz9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755903349951b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_netherlands.png

104.26.10.22

200 OK

710 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_netherlands.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
710 B (710 bytes)
Hash
4d48534384964664d122ef558ebf1acd
8cbccb6b66f6161c329f9945b58e79e09640cc90
286ee399704cd53efeabbca51dfc8459fb9633265ae4e9e046610f7d61d087bb

HTTP Headers

GET /geocompteur/shadow/flag_netherlands.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 710
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=892
content-disposition: inline; filename="flag_netherlands.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 17:24:24 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 616983
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hc0ZQoedxy4lqPu126t0v54GIXwIp%2BQZu8UTplujo3arWGOXtTVWN3%2F8AV2f7x2b0S3AmZxNPz1F8T9RpavkmgI1P2tGt9LvVfxrtofDdmHW1VUIW09mhDMVh%2ByVVe%2BO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590334994eb4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_brunei%20darussalam.png

104.26.10.22

200 OK

990 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_brunei%20darussalam.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
990 B (990 bytes)
Hash
4650c67c1a783f767876462b80933b3b
07c179ad72aad48438bc138b8ab6fe384db00f66
5eecac367465648d7246daf36b665135467ca2d3ddcdb8e3aa8fcda67c6ec88f

HTTP Headers

GET /geocompteur/shadow/flag_brunei%20darussalam.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 990
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1226
content-disposition: inline; filename="flag_brunei%20darussalam.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 20:39:10 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 605297
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Ma2VwT1lHOrtRe%2BnWRmi36H5JRdnVzA1zArSOjQJzdONiBfQCyUOTux0po%2FrP67trglHONoux1EiA221FUEYUBoQABH9Ph%2FE%2FM82DnsUlGOopbGGIANNWwVoXUF5UG3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903349957b4f4-OSL
X-Firefox-Spdy: h2

connect.facebook.net/en_US/all.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/1.1
connect.facebook.net/en_US/all.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1961)
Size
1.7 kB (1688 bytes)
Hash
088016f61acfc9fa0da74c313bd9f710
b60def53403d88df4f8b727e1cff62f41fb59dce
50a24689496859c80461296ee8d94aa4ed91297fe566f8dbfb52abf33bdbf2af

HTTP Headers

GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: e26ef0a0c91ed92833a5a3bfee6e779a
ETag: "48a5cb21d2da52e8c73bab72158a538f"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Wed, 05 Oct 2022 21:00:48 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: CIAW9hrPyfoNp0wxO9n3EA==
X-FB-Debug: vZePUOHA8UjkuDB46qncJdJ8Lwg/NU0hOADZGKwV004wG/4NlBGMwGsylq5LOFV04eM8hkMPs+z/PkdFcOSagQ==
X-FB-TRIP-ID: 1904183273
Date: Wed, 05 Oct 2022 20:47:27 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1688

www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.26.10.22

200 OK

3.9 kB

URL HTTP/1.1
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (12331)
Size
3.9 kB (3886 bytes)
Hash
54c87b7a9007d256c837e382cab4170d
6c8f44204021f68596af9ae5a742c3ad1b76a6ec
3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/geocompteur_html.php?id=2092421&c=geoall3&size=&nostats=&title=TECH%20WORLD%20AND%20ADULT%20ZONE&ref=adulttech.blogspot.com

HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 20:47:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 15:38:08 GMT
ETag: W/"633c5360-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rBJ1ws%2BnJV5XIM%2FyilKyBmSJRvrLAdkMqXVqfQnBktxihA%2Fa%2Fxz4jLzX5nA4yRIGDfCbwgyql%2Fw9XaPnljAtHECLwJvDYO4BnyDstrvs0P5lVd0FH8Xl0sgMdsWn%2FJMg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75590334a9721c02-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Fri, 07 Oct 2022 20:47:27 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip

www.widgeo.net/geocompteur/shadow/flag_kuwait.png

104.26.10.22

200 OK

830 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_kuwait.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
830 B (830 bytes)
Hash
1357e3b3fd81e3135f7a5dec479b14d8
6aa5575411c439211249534d350b2a6534c4f728
b3daf558aef877f46b955af7b6c017d2104cda40cf0d410e7967f5a1ad872536

HTTP Headers

GET /geocompteur/shadow/flag_kuwait.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 830
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1027
content-disposition: inline; filename="flag_kuwait.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Thu, 03 Nov 2022 20:44:22 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86584
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dcjky4xNoiPDNsuAzw8CwG21eZRXY0Phg76ykPegKs0hpnCVFMZo87RHM0JzsqjT8HGCJBqvN5KH06jNKLSI9UykevFwPZM5o0VhlExP0HYADxhnIu9cwMc4A8DWRD0N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903349967b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_japan.png

104.26.10.22

200 OK

626 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_japan.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
626 B (626 bytes)
Hash
121ee6cfe36e3026641e6fa217dcd216
b61effd4eab347d745b27a8d405e1d5140c18ad0
e43eb051a2cf7723bdc938fdd70db3b0e3549789251dfe910de2b17618cf6611

HTTP Headers

GET /geocompteur/shadow/flag_japan.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 626
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=902
content-disposition: inline; filename="flag_japan.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 22 Oct 2022 21:26:55 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1120831
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxzByAecJ4THpblbkP05i%2BN0z5eqjLc2uRisWLs1oWqUHwlUq35xUWvQuGgiMvGRWYE%2BgRysLYkQ%2FZUR%2BL28v74yZYHP4ZlQBVrLYqlfxvvrK%2FGAUWfLPwoBl0tkWS6%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590334a971b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_qatar.png

104.26.10.22

200 OK

784 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_qatar.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
784 B (784 bytes)
Hash
1d6399010105778c269740c8d422bb5e
7a326e5cb41c65496f3e66ecce70a96ba478398a
a372f7095e2b12b0551c4a63460d954062a46138ef2ddc60c240b50374d2b857

HTTP Headers

GET /geocompteur/shadow/flag_qatar.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 784
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=977
content-disposition: inline; filename="flag_qatar.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 10:50:13 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 35833
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TOJhAcPIrQuo0hTr802K9fB7lTr%2FRHXWRKxSlp8hj0Y8Rxa6qAk3VvvcfkiM1iIBoX8G9yM3XHyzLDqe5aWh4YHib9kNkWdjGyR05JosVlt2pUyUuoip4tgWvXZVgI0m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755903349966b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_bahrain.png

104.26.10.22

200 OK

820 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_bahrain.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
820 B (820 bytes)
Hash
62165709580563726fd1adaf8062cccc
cf0998edfcdff7282e74520f24e01e8c34442752
18b29c0f5b9ee1c2f1a125bfd64f5413d054e57d4052cbb58c3c8be9fc13a619

HTTP Headers

GET /geocompteur/shadow/flag_bahrain.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 820
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1023
content-disposition: inline; filename="flag_bahrain.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Tue, 01 Nov 2022 12:35:25 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 288722
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kDUO%2Fe8%2BCxqqegsLJMPQbKqhEUAXzNLMkSJHRMxbELGe60yzYWjNN0SMKJQszarM5WX%2BU3CsWZaviJigPyY4LRqGhYcQujQylxPiXKIX6gu9MVkE8q0KwQRk64sfPtLY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75590334a96bb4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/img/tmp/earth_green2.png

104.26.10.22

200 OK

2.6 kB

URL HTTP/2
www.widgeo.net/geocompteur/img/tmp/earth_green2.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.6 kB (2612 bytes)
Hash
c70ac9981edd9a1a580a1490ddc81445
54ae19934a808028283858749b5549c1ca24ddeb
cffe24266fd6b8bc73cac8a21f6f30fadc4181e7d5029784f8463119dc7cb138

HTTP Headers

GET /geocompteur/img/tmp/earth_green2.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/geo_css.php?c=geoall3&size=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 2612
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3306
content-disposition: inline; filename="earth_green2.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 06:44:10 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 50596
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rx8CIDMkBnD5w8EWSiugARx4zxx16MiwQDVyighyF8OqY7fzef74IlfeyreZ0suHceJUzIWzMcwGFI0Sn3OnoKAGqN2bV5n5cZM%2BCEfzaPYX7uBS%2FOB6muk1DwJ8w1WL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7559033519f4b4f4-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.widgeo.net/geocompteur/img/tmp/geoall3.png

104.26.10.22

200 OK

662 B

URL HTTP/2
www.widgeo.net/geocompteur/img/tmp/geoall3.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
662 B (662 bytes)
Hash
0c84c2dc905103c149ba5518c90353d6
b35860db63a6572f317ed98d29c6903b51f5e66d
cd99435d48b047281d9c3bb889b00e80bed3420ba4b3a52a9dc9e46c297ce0e4

HTTP Headers

GET /geocompteur/img/tmp/geoall3.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/geo_css.php?c=geoall3&size=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/webp
content-length: 662
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1986
content-disposition: inline; filename="geoall3.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 06:44:10 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 50596
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YMzIH65Nq2clCpd4AGOR8oZIcHk8Yr11CujFTwLnzncn6zsviJ%2Fn4pHeOwHZb%2BJjJ1eG%2BBQ8A2Vs6AoAKJUGWylpHAiEQXinwl9SIOpxokJb4QgR%2Fa1OGTlg8GF%2FyfJy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7559033529fab4f4-OSL
X-Firefox-Spdy: h2

adf.ly/images/banners/adfly.728x90.1.gif

104.20.66.244

200 OK

28 kB

URL HTTP/1.1
adf.ly/images/banners/adfly.728x90.1.gif
IP
104.20.66.244:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 728 x 90\012- data
Size
28 kB (28509 bytes)
Hash
c85b021c5f98f81ffdd8a154b3ff5174
f30d866f8dc7a053c288efcb7e31411f2c401664
c4b82b9163334b57c6d165d795abf9d0e1fd992cc35d71139f3da12c482c139a

HTTP Headers

GET /images/banners/adfly.728x90.1.gif HTTP/1.1
Host: adf.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 20:47:27 GMT
Content-Type: image/gif
Content-Length: 28509
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 12 Oct 2022 20:47:27 GMT
last-modified: Tue, 10 Nov 2020 09:44:06 GMT
etag: "6f5d-5faa60e6-e2e1c3b065904bf4;;;"
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755903347b911c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

adf.ly/images/banners/adfly.125x125.3.gif

104.20.66.244

200 OK

13 kB

URL HTTP/1.1
adf.ly/images/banners/adfly.125x125.3.gif
IP
104.20.66.244:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 125 x 125\012- data
Size
13 kB (12719 bytes)
Hash
10e1318a7188f034cbc7a9e3182b2a72
7d105971f0dd722384df911cfbee07431eeaa8e7
da471d6af9182d861d9238d31cbea19f4a2b3c4bbe9ca9a7b35bb861f317c15c

HTTP Headers

GET /images/banners/adfly.125x125.3.gif HTTP/1.1
Host: adf.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adulttech.blogspot.com/

HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 20:47:27 GMT
Content-Type: image/gif
Content-Length: 12719
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 12 Oct 2022 20:47:27 GMT
last-modified: Tue, 10 Nov 2020 09:44:06 GMT
etag: "31af-5faa60e6-6b732c3c4269dc9a;;;"
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755903348a24b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.widgeo.net/geocompteur/css/geo_css.php?c=geoall3&size=

104.26.10.22

200 OK

26 kB

URL HTTP/2
www.widgeo.net/geocompteur/css/geo_css.php?c=geoall3&size=
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
26 kB (26493 bytes)
Hash
2f1914dc3c5dc8587976d3ddda068a5b
76c68772051033f39619ccc358a7285d3ead2eff
08498deb86a5ac55ff2b8140c116f8fb1d6a4668439bd647e291b888d28d4a84

HTTP Headers

GET /geocompteur/css/geo_css.php?c=geoall3&size= HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: text/css;charset=UTF-8
cache-control: public, max-age=604800
expires: Wed, 12 Oct 2022 20:47:26 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=THGBalDnt0UgivvnWo5aWkzwbojksJ8jwlOeazam7YxLfzRfUs%2FLEEI16xxtWEw1BpWtw38BC7dwAkVrMroZfyJnJbdho6uQP%2FG%2Fefd6w8XQhw%2Bk91AZZneLLeIvIstZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7559033438e6b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.widgeo.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 03:08:55 GMT
expires: Sun, 01 Oct 2023 03:08:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 409112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.26.10.22

200 OK

79 kB

URL HTTP/2
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
79 kB (78925 bytes)
Hash
a67704a04315c356d4e06c605adbd041
720f508f8e0c041297bf89604384caa591322c2c
a4f9bb0efb791f2ec8010a20a1e4552de258e1988dbd5d7e64a65c91f61a50c1

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/hitparade.php?pagexiti=geoall3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 15:38:08 GMT
etag: W/"633c5360-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BV3ObwtSfKYfQFMNqI9027uDFuIBzhMJHhydav1S3myMgJxeWOw7IQ0g35oo1vS9kgScLuhYN6KK6qeDmqYCTNvihn6CqTIuwV18zqq%2FwtwpDNc7uLA4hAetNnUjLvSu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75590334d9b1b4f4-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 07 Oct 2022 20:47:27 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_ghana.png

104.26.10.22

200 OK

1.0 kB

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_ghana.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1002 bytes)
Hash
6bb54f0b7ff15d0713bdf62015443f2a
4c1e0b0649e6008d04e9cbc9fea10a80db42a32d
c1584064b6db911cb3b8479eb74b9cf3b0768f85f64015f8448d7db248cce06b

HTTP Headers

GET /geocompteur/shadow/flag_ghana.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/png
content-length: 1002
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 20:47:26 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pIg8Yrq887Va0BnkX9Xl6pd8uQ6gJaj9fio5%2FFSsE58J4uEH2h7ughNz11pPP8H76jG2oKCoNGX10aILZdoaWih56RNjM0TYrW8nry0uUfNw2W9NP8n6sJeA1Cv0cyG7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755903349955b4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_switzerland.png

104.26.10.22

200 OK

978 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_switzerland.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
978 B (978 bytes)
Hash
b6508c3d258b5807ef3ededca316b58e
9acab5064ff77eaf2b2255978ff197161fc23f2b
ae6adae55b763879a0ee9c770e3adadc4a0ab09bc0ac5cb2846bb2c9c7a2e31a

HTTP Headers

GET /geocompteur/shadow/flag_switzerland.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/png
content-length: 978
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 20:47:26 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6VkQ9My3GT4wNoraMLxV7QqL40AO%2BRSOfzKponaCqv8SwRk0ccB9QKQDvFrZAFNxR9CsZBZT0MdeR6QhTGW5ColpkYIqWgzFVxAW1Py4%2FjJwhlMaON6DJImTY8CqiPyR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75590334a96ab4f4-OSL
X-Firefox-Spdy: h2

www.widgeo.net/geocompteur/shadow/flag_gambia.png

104.26.10.22

200 OK

994 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_gambia.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
994 B (994 bytes)
Hash
c8aed16882b5ce7632a67d02437e3856
3e500c87dd49c50aa4e4ffdebb101a7b5801942e
b3321c76029ee6be0a3b1673566eab890f16fcab094b0005eb7b3af433af00a8

HTTP Headers

GET /geocompteur/shadow/flag_gambia.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/png
content-length: 994
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 20:47:26 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dADpYFH0UULTR7Xm5lCIeOYu41C6ZoxhZ1v8Bl5i%2FTQK6ycQptRsAIwsYRgbgpNDKqGz1r9QVmXqeuLq8qScKSZi5OHg2iSJ6Ih9RII%2FWauE79A%2Foie%2BSrI0Ty%2FTGUN%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75590334a96fb4f4-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5828
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Last-Modified: Wed, 05 Oct 2022 19:10:19 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.widgeo.net/geocompteur/shadow/flag_sudan.png

104.26.10.22

200 OK

993 B

URL HTTP/2
www.widgeo.net/geocompteur/shadow/flag_sudan.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
993 B (993 bytes)
Hash
2acdbc90208effdc28213393ca5f9490
4a77e66f643cbda7c873c614c827981f876fe777
31cb26f979c2f6999f64769134ba75f1c9d97a22116cc32d533376468bb02d69

HTTP Headers

GET /geocompteur/shadow/flag_sudan.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: image/png
content-length: 993
cache-control: public, max-age=2592000
expires: Fri, 04 Nov 2022 20:47:26 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oq0DbIpH%2Bs6zWxT5LUrK10uC24J188schBK%2B6Zz33BRPPxIRQY5y2jSUkPz2hb3jYn7Q%2BiJXP9cXJkzrF%2FpPMYKttdPzdGwRM3k2JPKnoUgBU66%2FvNnFta95xhK%2BVkLM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755903349964b4f4-OSL
X-Firefox-Spdy: h2

connect.facebook.net/en_US/all.js?hash=8dc7c8b03d23fe79739c594c943e8120

31.13.72.12

200 OK

88 kB

URL HTTP/2
connect.facebook.net/en_US/all.js?hash=8dc7c8b03d23fe79739c594c943e8120
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18605)
Size
88 kB (88249 bytes)
Hash
3fd5fa9df6fc45ea32b1bdd987adf6c0
ec42785b8ab8dd4bba7a704da9e64d3e45f7aac4
f12c1ca6985451609b842c092c30e0e8d4ebe5091e6db562f0e1909299576202

HTTP Headers

GET /en_US/all.js?hash=8dc7c8b03d23fe79739c594c943e8120 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://adulttech.blogspot.com
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8e2c3f6a480cf4dd10a18cbe663aa5a0
etag: "506d7545c6be4dedfd5db0f9506ce8ee"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 05 Oct 2023 20:06:22 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: P9X6nfb8Reoysb3Zh632wA==
x-fb-debug: wzZNTWWsnP0UI2fLKEhqTXe23VHYb58dQfw015Yy970nPcYqJXWiRJ+QGIYpIe7XZDpL/kEZMnzOEsd1gA8qow==
priority: u=3,i
content-length: 88249
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 20:47:27 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

logv33.xiti.com/hit.xiti?s=281802&p=geoall3&hl=20x47x27&r=1280x1024x24x24&ref=http://adulttech.blogspot.com/

54.230.217.59

302 Found

143 B

URL HTTP/2
logv33.xiti.com/hit.xiti?s=281802&p=geoall3&hl=20x47x27&r=1280x1024x24x24&ref=http://adulttech.blogspot.com/
IP
54.230.217.59:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
143 B (143 bytes)
Hash
3bd7665577430bdbfec1726fa0655c58
c680a578f5bda90995cb156e306b35d037e2a49e
97119474a096340d74e10e6b99ab536b46f29f37b75cf0b4a1774c3dd920cdc5

HTTP Headers

GET /hit.xiti?s=281802&p=geoall3&hl=20x47x27&r=1280x1024x24x24&ref=http://adulttech.blogspot.com/ HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 143
date: Wed, 05 Oct 2022 20:47:27 GMT
cache-control: no-store
location: /hit.xiti?s=281802&p=geoall3&hl=20x47x27&r=1280x1024x24x24&ref=http://adulttech.blogspot.com/&Rdt=On
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: idrxvr=88A7D95F-830E-49DE-80EC-B79174CB9F49; Path=/; Domain=xiti.com; Expires=Sun, 05 Nov 2023 20:47:27 GMT; HttpOnly
atidx=88A7D95F-830E-49DE-80EC-B79174CB9F49; Path=/; Domain=xiti.com; Expires=Sun, 05 Nov 2023 20:47:27 GMT; HttpOnly; Secure
atid=88A7D95F-830E-49DE-80EC-B79174CB9F49; Path=/; Domain=xiti.com; Expires=Sun, 05 Nov 2023 20:47:27 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2qNAN0K0jnP1jhtF59FYV_cW2qQyctzDQrtiT7k7DV6M2jAuu12RCA==
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5828
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Last-Modified: Wed, 05 Oct 2022 19:10:19 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
0a25532c4133886e22a425cacca9c027
41a1b476967aed6ac227717098cd8be3209b45b3
f50b860d2b3b4d59df90ad6b36c84639141ca9dd9530a74e07fd79fd9387f52e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 20:47:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 06:25:20 GMT
Expires: Mon, 10 Oct 2022 06:25:19 GMT
Etag: "41a1b476967aed6ac227717098cd8be3209b45b3"
Cache-Control: max-age=379671,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 755903356cf20afa-OSL

my.rtmark.net/gid.js?userId=301ae46fd2aa4dfc81f820d2fe3f827c

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?userId=301ae46fd2aa4dfc81f820d2fe3f827c
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
37032d64e6e005f779a56b7321f060bc
9234e548c71653d000a42e8dfd052468d7d1926a
c98006f91510a2fefbff2c96c7b97c64e3d8e19b038bdad7aeb564193f577b62

HTTP Headers

GET /gid.js?userId=301ae46fd2aa4dfc81f820d2fe3f827c HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://adulttech.blogspot.com
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://adulttech.blogspot.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=301ae46fd2aa4dfc81f820d2fe3f827c; expires=Thu, 05 Oct 2023 20:47:27 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12333
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 20:47:27 GMT
Connection: keep-alive

logv33.xiti.com/hit.xiti?s=281802&p=geoall3&hl=20x47x27&r=1280x1024x24x24&ref=http://adulttech.blogspot.com/&Rdt=On

54.230.217.59

200 OK

373 B

URL HTTP/2
logv33.xiti.com/hit.xiti?s=281802&p=geoall3&hl=20x47x27&r=1280x1024x24x24&ref=http://adulttech.blogspot.com/&Rdt=On
IP
54.230.217.59:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 39 x 25\012- data
Size
373 B (373 bytes)
Hash
29cb2a1e585dff1f4282449fdbbab2d7
075d147195f9dba1862a6f3990d219d7c4389225
86fd3be02ab9497ebb14a884fb226386cd0db257b234b005f0000326ae8c9081

HTTP Headers

GET /hit.xiti?s=281802&p=geoall3&hl=20x47x27&r=1280x1024x24x24&ref=http://adulttech.blogspot.com/&Rdt=On HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.widgeo.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/gif
content-length: 373
date: Wed, 05 Oct 2022 20:47:27 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q3XcG0uhJbpEp6hjsK6HRHrJijknQylNUY7BeF6jL3NiNIpprH4eUQ==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 20:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5832 bytes)
Hash
3257b782efae9b64e6e18a547866ec50
4daf0c001e86af8477fb097e8ca932edb8e5f981
899f9692e86405aa288d88dd285a6fe26bedab1a2ca4693212476063890b01a5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5832
x-amzn-requestid: c4427edd-3d71-47d0-a2d3-b3bfed089535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1FuUoAMFhBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-46ddff150da4141d23fc0d8a;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WWClzLGprno--c75q63i1TFi8oBEdAYW-J4lCk9V8IELQXe6q0A05A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 83094
etag: "4daf0c001e86af8477fb097e8ca932edb8e5f981"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10158 bytes)
Hash
4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 47876
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7021 bytes)
Hash
229c99cfb655a8c9f1a22de69fdff73c
6b5db8fbfb56f083d54b13e7660d0e4bc866aa00
f4099e9153c3dc481add95b0f24dbb8f6d65cc74ad5631d9cb6c6f2a0351843d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7021
x-amzn-requestid: 2e30bdac-360e-4d0a-8bb7-c3144e074abe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8ucHb1oAMFjYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7f5-18ba6bc50cb32b1e14c882bd;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sd2_YDHr3j7ym7wfFyQh9kg8FP-Et2nJUOo1v_TNbI3PvpzEY5KJ2Q==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:07:19 GMT
age: 81609
etag: "6b5db8fbfb56f083d54b13e7660d0e4bc866aa00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.6 kB (3585 bytes)
Hash
5d7d7df8d4c440f9db445c3d99e818d6
612b6dbd4ba895c167964ff7e6d9263013b52b0a
bf527a814c78f9e010cce4ba593c9146d54a2137d1f147f7a6250fbad81956ac

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3585
x-amzn-requestid: ccb6f0c8-4d9b-48b8-aaf6-16781dc4c86b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaHFlEcFoAMFS3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a5223-5c9276c873efee993ba54667;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:08:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: T8m1q2L45TWDVRBa-R2W70yq9BauBK3G4IX54AGIxdRhG736T974kg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:05:29 GMT
age: 60119
etag: "612b6dbd4ba895c167964ff7e6d9263013b52b0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8926 bytes)
Hash
1de7c17a0ba9295135e7f8b490b6a8d3
70e8d1589f3daf71378965dd197934e220fb6aa4
ee559ce3166479e2b930be7d18525f5c2d164aed8ca005302ddaf3bfe37eec24

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8926
x-amzn-requestid: 27fc8976-af8d-40a3-b701-0642fa135ec4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1GSbIAMFTiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-4d4c7837576e0fdb5828fe3b;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzVofPSJC-YVU1Q1V9AnjNeQTa1BQEh6ZiH2HjSeeX5RygysFP7oAA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 83094
etag: "70e8d1589f3daf71378965dd197934e220fb6aa4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3de74da8-9c15-4010-a6fb-c1e0b5fd8804.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13615 bytes)
Hash
42ab91a02aa34dbcc6d56e75fd0d7fc5
32a3ebb440b3d770c446bef75c39ce788ffeb034
397373a17846231eb149c3a207574b79c5ca6c7832ffd48da9c8f1e8e0aa9f69

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3de74da8-9c15-4010-a6fb-c1e0b5fd8804.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13615
x-amzn-requestid: 3aaef924-99ea-407a-acc6-ec7d294952a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaHG_GDcoAMFfuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a522c-488613591ddf46181bdded50;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:08:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uyOCZ14wsmvXHf7WVXJhESTAdTGzTVYCudS3o8n-yTMg6Gd_gSOd4w==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:29:06 GMT
age: 58702
etag: "32a3ebb440b3d770c446bef75c39ce788ffeb034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

i9.ytimg.com/vi_blogger/RFFfFiQ_K1k/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3miYudHLYkJq83xdVI3QCAXI9m7FQ

142.250.74.110

200 OK

2.3 kB

URL HTTP/2
i9.ytimg.com/vi_blogger/RFFfFiQ_K1k/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3miYudHLYkJq83xdVI3QCAXI9m7FQ
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x144, components 3\012- data
Size
2.3 kB (2331 bytes)
Hash
bb68c89a88576148f1b785c7368525f2
1c473862880230cd330c284a1f191f8c347d87bd
f79428e382d9b163689282a39bbcbe60cda408bbbd8c056807e4ed9a75c5493c

HTTP Headers

GET /vi_blogger/RFFfFiQ_K1k/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3miYudHLYkJq83xdVI3QCAXI9m7FQ HTTP/1.1
Host: i9.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2331
date: Wed, 05 Oct 2022 20:47:28 GMT
expires: Wed, 05 Oct 2022 20:47:28 GMT
cache-control: private, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

i9.ytimg.com/vi_blogger/LHDxhWdfvfw/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3nd0T0rQaP0YJdzpVnKmNEqjmztIw

142.250.74.110

200 OK

2.0 kB

URL HTTP/2
i9.ytimg.com/vi_blogger/LHDxhWdfvfw/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3nd0T0rQaP0YJdzpVnKmNEqjmztIw
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x144, components 3\012- data
Size
2.0 kB (1975 bytes)
Hash
722e275bf6bfe24511e1c01c984ef030
7e5ce89f774be5ffbc89910fe0f02f7cff1eddbf
74a9415e3bcb30b91108c24137081afe1af13895b0df3ddef30753016c9bd1ba

HTTP Headers

GET /vi_blogger/LHDxhWdfvfw/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3nd0T0rQaP0YJdzpVnKmNEqjmztIw HTTP/1.1
Host: i9.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 1975
date: Wed, 05 Oct 2022 20:47:28 GMT
expires: Wed, 05 Oct 2022 20:47:28 GMT
cache-control: private, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

i9.ytimg.com/vi_blogger/rW3npqcg1RA/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3ljvQqtoTCsKSbOJT6hhouGg9HpFg

142.250.74.110

200 OK

3.3 kB

URL HTTP/2
i9.ytimg.com/vi_blogger/rW3npqcg1RA/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3ljvQqtoTCsKSbOJT6hhouGg9HpFg
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x144, components 3\012- data
Size
3.3 kB (3289 bytes)
Hash
93904c8cbd57b42b267d62758d4175bf
a9d3b695cf23d21e958ef09317b4a46190f605d1
709038321856bb5dbb05c898684ba5075d68468ee0e935f39037277b314cd1a9

HTTP Headers

GET /vi_blogger/rW3npqcg1RA/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3ljvQqtoTCsKSbOJT6hhouGg9HpFg HTTP/1.1
Host: i9.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 3289
date: Wed, 05 Oct 2022 20:47:28 GMT
expires: Wed, 05 Oct 2022 20:47:28 GMT
cache-control: private, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

i9.ytimg.com/vi_blogger/ssb9AvIjdbQ/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3nxy6sdzMQ584yfSn0HQAVGw2Lyew

142.250.74.110

200 OK

3.6 kB

URL HTTP/2
i9.ytimg.com/vi_blogger/ssb9AvIjdbQ/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3nxy6sdzMQ584yfSn0HQAVGw2Lyew
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x144, components 3\012- data
Size
3.6 kB (3626 bytes)
Hash
b36c6b6952c0a52ea6a00e4bdabe7117
a18f209b1c3866fcbb0822a7380c90faee0afd27
924f7d73ccea20fb730b1b97c96dff1ad01e1dfa0f99655b79241cc48e6ea682

HTTP Headers

GET /vi_blogger/ssb9AvIjdbQ/1.jpg?sqp=CN_a95kGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3nxy6sdzMQ584yfSn0HQAVGw2Lyew HTTP/1.1
Host: i9.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 3626
date: Wed, 05 Oct 2022 20:47:28 GMT
expires: Wed, 05 Oct 2022 20:47:28 GMT
cache-control: private, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.253

200 OK

12 B

URL HTTP/1.1
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://adulttech.blogspot.com/
Content-Type: text/plain;charset=UTF-8
Origin: http://adulttech.blogspot.com
Content-Length: 1497
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 05 Oct 2022 20:47:28 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://adulttech.blogspot.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

www.facebook.com/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df28e8604c9207da%26domain%3Dadulttech.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fadulttech.blogspot.com%252Ff32dd8bb18c04f6%26relation%3Dparent.parent&container_width=890&href=https%3A%2F%2Fwww.facebook.com%2Fhavefunalot&locale=en_US&sdk=joey&send=true&show_faces=true&width=100

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df28e8604c9207da%26domain%3Dadulttech.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fadulttech.blogspot.com%252Ff32dd8bb18c04f6%26relation%3Dparent.parent&container_width=890&href=https%3A%2F%2Fwww.facebook.com%2Fhavefunalot&locale=en_US&sdk=joey&send=true&show_faces=true&width=100
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df28e8604c9207da%26domain%3Dadulttech.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fadulttech.blogspot.com%252Ff32dd8bb18c04f6%26relation%3Dparent.parent&container_width=890&href=https%3A%2F%2Fwww.facebook.com%2Fhavefunalot&locale=en_US&sdk=joey&send=true&show_faces=true&width=100 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 4rzS4ju5UcB3//eBwheqeAURR/K4vg7PyTznRzBEVb4LZQX1jJXr2TlI2I/ld3fpZEZXuAENorYEsA+/WBT62w==
content-length: 0
date: Wed, 05 Oct 2022 20:47:28 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.facebook.com/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df16879c9fe3dd8c%26domain%3Dadulttech.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fadulttech.blogspot.com%252Ff32dd8bb18c04f6%26relation%3Dparent.parent&container_width=900&height=100&href=http%3A%2F%2Fwww.adulttech.blogspot.com%2F&locale=en_US&sdk=joey&width=800

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df16879c9fe3dd8c%26domain%3Dadulttech.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fadulttech.blogspot.com%252Ff32dd8bb18c04f6%26relation%3Dparent.parent&container_width=900&height=100&href=http%3A%2F%2Fwww.adulttech.blogspot.com%2F&locale=en_US&sdk=joey&width=800
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df16879c9fe3dd8c%26domain%3Dadulttech.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fadulttech.blogspot.com%252Ff32dd8bb18c04f6%26relation%3Dparent.parent&container_width=900&height=100&href=http%3A%2F%2Fwww.adulttech.blogspot.com%2F&locale=en_US&sdk=joey&width=800 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: jgSS6W1vI1QYY34l4ZMG75jFoUlLCv8FqyTJVLBpmbCBJfTnM6n7RCXvTJ7g3DM2bqldV63wKflgJk2bDbhzAA==
content-length: 0
date: Wed, 05 Oct 2022 20:47:28 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

onmarshtompor.com/?rb=jIKEO-YHqeXQPmcaqYh6g7c0q8v3X6YBNAs1dI38cdruWR_gAiz05HiAVj9CA-OsuXpFZ5rUtgYQQfTlIfYTWkpy_0-2zakMaEzjl5XDLam8mXyq821o9qnMrbKvfieH5yLKoYda4iijzX_fJoOxuq6Tm5vEdK7Gg38OaO29i-JCZBGGK7-TWHbuyftUoP8dsl0OG7w-SVD4RWXA1zzKizh57vBWRUwqTc356w%3D%3D&request_ab2=0&zoneid=3294720&js_build=iclick-v1.433.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fadulttech.blogspot.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.433.0&bs=d4432972-f8b0-435f-a7fc-1142a2398212&userId=301ae46fd2aa4dfc81f820d2fe3f827c&m=link

139.45.197.243

200 OK

1.7 kB

URL HTTP/1.1
onmarshtompor.com/?rb=jIKEO-YHqeXQPmcaqYh6g7c0q8v3X6YBNAs1dI38cdruWR_gAiz05HiAVj9CA-OsuXpFZ5rUtgYQQfTlIfYTWkpy_0-2zakMaEzjl5XDLam8mXyq821o9qnMrbKvfieH5yLKoYda4iijzX_fJoOxuq6Tm5vEdK7Gg38OaO29i-JCZBGGK7-TWHbuyftUoP8dsl0OG7w-SVD4RWXA1zzKizh57vBWRUwqTc356w%3D%3D&request_ab2=0&zoneid=3294720&js_build=iclick-v1.433.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fadulttech.blogspot.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.433.0&bs=d4432972-f8b0-435f-a7fc-1142a2398212&userId=301ae46fd2aa4dfc81f820d2fe3f827c&m=link
IP
139.45.197.243:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (2181), with no line terminators
Size
1.7 kB (1651 bytes)
Hash
299b60d59cae612e54d4575230eb5511
89addca3134b817487f64dec23f13075875389d9
c1eb2816d5ab9418e09838859195c616602e65143a322bfc1a6daa8118d3a4e1

HTTP Headers

GET /?rb=jIKEO-YHqeXQPmcaqYh6g7c0q8v3X6YBNAs1dI38cdruWR_gAiz05HiAVj9CA-OsuXpFZ5rUtgYQQfTlIfYTWkpy_0-2zakMaEzjl5XDLam8mXyq821o9qnMrbKvfieH5yLKoYda4iijzX_fJoOxuq6Tm5vEdK7Gg38OaO29i-JCZBGGK7-TWHbuyftUoP8dsl0OG7w-SVD4RWXA1zzKizh57vBWRUwqTc356w%3D%3D&request_ab2=0&zoneid=3294720&js_build=iclick-v1.433.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fadulttech.blogspot.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.433.0&bs=d4432972-f8b0-435f-a7fc-1142a2398212&userId=301ae46fd2aa4dfc81f820d2fe3f827c&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://adulttech.blogspot.com/
Origin: http://adulttech.blogspot.com
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 20:47:28 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 8dea001ee41f26c6cbc3a500c312956c
Access-Control-Allow-Origin: http://adulttech.blogspot.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=301ae46fd2aa4dfc81f820d2fe3f827c; expires=Thu, 05 Oct 2023 20:47:28 GMT; path=/
oaidts=1665002848; expires=Thu, 05 Oct 2023 20:47:28 GMT; path=/
syncedCookie=true; expires=Wed, 12 Oct 2022 20:47:28 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip

fonts.googleapis.com/css?family=Open+Sans:400,700

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 05 Oct 2022 20:47:27 GMT
date: Wed, 05 Oct 2022 20:47:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

104.21.84.149

200 OK

0 B

URL HTTP/2
tzegilo.com/stattag.js
IP
104.21.84.149:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2998
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bvzKzNaqTciXakHPdtRsfB74yDDxGHbNiuVBOPJXLG8sjAj3lqzeTA4NYqQgneQ1dptsPlI43uqJVqE0jIyH1F8d3439E92xK%2Fc6cewI6tfarvf2ejYgCV3sxHYNJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755903350f41b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

inklinkor.com/tag.min.js

104.21.91.63

200 OK

0 B

URL HTTP/2
inklinkor.com/tag.min.js
IP
104.21.91.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adulttech.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 05 Oct 2022 20:47:27 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: fe98e04aa066876e1b8066229136955f
cache-control: max-age=86400
last-modified: Wed, 05 Oct 2022 15:42:04 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Thu, 06 Oct 2022 19:55:00 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 3147
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZCinVmydmqpe2Qljm6OmH8SetokR5QdCouaaNN%2Bp6JoOktb0q15DrOhdX%2B6cyLtGS3B7hSvXi4jTHed%2BQGTtbsaJ%2F2AtJDLXN3YL55K0464s%2FNKXmq2i8sk7aq2Rs1nx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75590332bc7db4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (55)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations