Overview

URLhassannewswhitaker.blogspot.com/2022/04/filter-needles-are-used-with-which-of.html
IP 142.250.74.161 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-09 09:50:36 UTC
StatusLoading report..
IDS alerts0
Blocklist alert6
urlquery alerts No alerts detected
Tags None

Domain Summary (58)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-12-08 17:21:04 UTC 34.160.144.191
wagerprocuratorantiterrorist.com (3) 654194 2021-12-13 02:05:48 UTC 2022-12-09 09:50:26 UTC 192.243.61.225
www.unibet.nu (2) 0 2022-11-04 11:13:23 UTC 2022-12-08 17:32:43 UTC 85.184.96.0 Unknown ranking
hassannewswhitaker.blogspot.com (2) 0 No data No data 172.217.21.161 Unknown ranking
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-12-08 17:20:00 UTC 35.83.91.138
a1s-cdn.unibet.com (1) 283505 2014-04-23 15:07:51 UTC 2022-12-08 17:43:10 UTC 85.184.96.5
play.google.com (2) 34 2013-05-30 23:24:35 UTC 2022-12-08 17:28:44 UTC 142.250.74.110
stealcalmgenus.com (2) 0 2022-12-05 01:36:31 UTC 2022-12-08 21:51:00 UTC 173.233.137.52 Unknown ranking
www.gstatic.com (2) 0 2012-05-29 15:36:17 UTC 2022-12-08 17:13:06 UTC 142.250.74.3 Domain (gstatic.com) ranked at: 540
www.registerednursern.com (1) 284875 2013-04-29 21:13:11 UTC 2022-12-09 01:34:42 UTC 192.190.220.62
ocsp.sca1b.amazontrust.com (4) 1015 2016-02-14 02:37:56 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
fonts.googleapis.com (1) 8877 2012-05-23 12:41:44 UTC 2022-12-08 17:12:12 UTC 142.250.74.74
static.bd.com (5) 804607 2019-11-25 11:44:28 UTC 2022-11-04 20:37:53 UTC 95.101.10.194
restorationpencil.com (2) 0 2022-12-06 01:33:56 UTC 2022-12-06 01:33:56 UTC 192.243.59.20 Unknown ranking
cm.everesttech.net (1) 996 2017-01-30 04:59:57 UTC 2022-12-08 17:16:26 UTC 54.229.62.148
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-12-08 15:50:00 UTC 34.120.237.76
script.crazyegg.com (5) 1992 2014-10-23 17:42:31 UTC 2022-12-08 17:15:52 UTC 104.19.147.8
image.made-in-china.com (2) 52499 2012-07-25 01:53:46 UTC 2022-12-09 08:16:57 UTC 104.18.29.187
secure.adnxs.com (1) 396 2012-05-22 16:37:37 UTC 2022-12-08 17:12:02 UTC 37.252.171.22
tracking.crazyegg.com (1) 3633 2020-03-10 07:15:05 UTC 2022-12-08 17:16:42 UTC 34.247.113.167
resources.blogblog.com (1) 13274 2017-01-30 04:47:40 UTC 2022-12-08 17:45:21 UTC 142.250.74.73
www.google.com (1) 7 2012-11-08 00:08:21 UTC 2022-12-08 17:22:52 UTC 216.58.207.228
cdn.cloudimagesb.com (2) 23099 2021-02-12 16:15:41 UTC 2022-12-08 13:17:38 UTC 45.133.44.10
www.gstatic.com (2) 0 2012-05-29 15:36:17 UTC 2022-12-08 17:13:06 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
encrypted-tbn0.gstatic.com (1) 0 2013-05-31 02:32:18 UTC 2022-12-08 19:02:41 UTC 142.250.74.174 Domain (gstatic.com) ranked at: 540
iklan.diraya.my.id (3) 0 2021-12-16 14:11:57 UTC 2022-12-08 12:47:23 UTC 172.67.217.19 Unknown ranking
newsbeunity.com (2) 0 2022-12-06 01:29:54 UTC 2022-12-06 01:29:54 UTC 192.243.61.225 Unknown ranking
dpm.demdex.net (2) 204 2012-05-22 05:45:05 UTC 2022-12-08 17:12:13 UTC 52.17.115.124
assets-tracking.crazyegg.com (1) 3651 2021-01-26 15:34:24 UTC 2022-12-08 17:16:41 UTC 54.230.111.114
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2022-12-08 17:12:32 UTC 35.241.9.150
andyjconnelly.files.wordpress.com (1) 0 2017-08-08 09:02:59 UTC 2022-06-05 18:09:37 UTC 192.0.72.22 Domain (wordpress.com) ranked at: 1450
cdn.shopify.com (1) 2327 2012-06-22 18:37:14 UTC 2022-12-08 17:17:13 UTC 162.159.135.68
a1s.unibet.com (1) 297625 2017-01-30 00:44:42 UTC 2022-12-08 17:43:11 UTC 85.184.96.5
welcome.unibet.com (17) 242429 2017-01-30 05:39:28 UTC 2022-12-08 17:43:10 UTC 104.18.24.188
ajax.googleapis.com (1) 12905 2012-05-22 10:38:03 UTC 2022-12-08 17:15:55 UTC 142.250.74.10
r3.o.lencr.org (19) 344 2020-12-02 08:52:13 UTC 2022-12-08 17:12:06 UTC 23.33.119.27
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-08 17:14:01 UTC 34.117.237.239
www.smiths-medical.com (1) 887685 2013-05-17 00:31:24 UTC 2022-12-09 09:50:26 UTC 13.107.213.53
pagestates-tracking.crazyegg.com (1) 3647 2020-10-26 19:42:04 UTC 2022-12-08 17:16:41 UTC 54.230.111.46
www.blogger.com (3) 8975 2012-05-22 07:35:03 UTC 2022-12-08 17:30:43 UTC 142.250.74.73
ocsp.dcocsp.cn (2) 33518 2018-11-07 13:15:36 UTC 2022-12-08 17:52:44 UTC 47.246.44.228
adserving.unibet.com (1) 98000 2015-05-26 06:56:53 UTC 2022-12-08 17:43:08 UTC 23.36.79.43
unibetlondonltd.d3.sc.omtrdc.net (2) 444877 2017-01-29 21:05:05 UTC 2022-12-08 17:34:53 UTC 15.236.176.210
ocsp.pki.goog (19) 175 2017-06-14 07:23:31 UTC 2022-12-08 17:12:01 UTC 216.58.211.3
els-jbs-prod-cdn.jbs.elsevierhealth.com (1) 46663 2020-03-29 19:42:24 UTC 2022-12-08 09:28:21 UTC 104.18.124.114
simplewebanalysis.com (3) 0 2022-02-25 04:06:25 UTC 2022-12-08 17:33:26 UTC 52.28.211.11 Unknown ranking
www.spikereekvelocity.com (2) 0 2022-10-19 14:11:25 UTC 2022-12-08 12:10:03 UTC 173.233.137.44 Unknown ranking
use.fontawesome.com (2) 942 2017-01-30 04:43:25 UTC 2022-12-08 17:17:18 UTC 172.64.133.15
themes.googleusercontent.com (1) 9661 2012-05-24 07:24:02 UTC 2022-12-08 17:14:55 UTC 216.58.207.225
quizlet.com (1) 2448 2012-08-06 09:15:40 UTC 2022-12-09 09:50:25 UTC 104.16.18.221
pressbooks.bccampus.ca (1) 392290 2017-03-31 19:59:30 UTC 2022-12-07 15:20:38 UTC 204.239.18.18
ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2022-12-08 17:15:52 UTC 93.184.220.29
lh3.googleusercontent.com (5) 66 2012-05-22 07:35:05 UTC 2022-12-08 17:12:23 UTC 216.58.207.225
cdn.bannerflow.com (3) 23819 2018-02-22 12:57:21 UTC 2022-12-08 17:17:38 UTC 104.16.170.188
bannerflow-feed-builder.azurewebsites.net (1) 659103 2017-11-23 13:27:15 UTC 2022-12-08 17:43:11 UTC 104.40.147.180
fonts.gstatic.com (7) 0 2014-04-02 10:51:04 UTC 2022-12-08 17:14:55 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
o.quizlet.com (1) 12374 2012-11-24 06:20:53 UTC 2022-12-09 09:49:11 UTC 104.16.18.221
unibet.demdex.net (1) 338024 2017-01-30 05:50:24 UTC 2022-12-08 17:34:53 UTC 3.248.49.44

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-12-09 2 newsbeunity.com Sinkholed
2022-12-09 2 newsbeunity.com Sinkholed
2022-12-08 2 stealcalmgenus.com Sinkholed
2022-12-08 2 stealcalmgenus.com Sinkholed
2022-12-09 2 spikereekvelocity.com Sinkholed
2022-12-09 2 spikereekvelocity.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161
Date UQ / IDS / BL URL IP
2023-02-03 04:26:07 +0000 0 - 0 - 1 almayasabdam.blogspot.com/2017/12/whats-chris (...) 142.250.74.161
2023-02-03 04:25:08 +0000 0 - 0 - 2 deamoresyrelaciones.blogspot.com/2011/02/mi-c (...) 142.250.74.161
2023-02-02 23:04:20 +0000 0 - 1 - 0 enricroig2015.blogspot.com.es/2014/06/antoni- (...) 142.250.74.161
2023-02-01 14:02:23 +0000 0 - 0 - 0 statements-docsbankstatement-org-za.translate (...) 142.250.74.161
2023-01-21 16:46:31 +0000 0 - 0 - 1 wytike.page.link/pQhBiPQ2o7GVemxA8 142.250.74.161


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-02-06 00:05:35 +0000 11 - 0 - 24 entregascorreos.page.link/es 142.250.74.33
2023-02-06 00:02:17 +0000 0 - 0 - 2 www.mjaymufwcmlsmde5dgg.filesusr.com/html/c69 (...) 34.102.176.152
2023-02-06 00:01:02 +0000 0 - 0 - 8 www.813856.com/ 35.215.175.154
2023-02-05 23:58:40 +0000 0 - 1 - 1 sgtmarkets.com/h.hta 35.214.114.156
2023-02-05 23:57:16 +0000 0 - 0 - 16 legendadventurerobloxwiki.blogspot.com.tr/ 216.58.207.193


Last 1 reports on domain: hassannewswhitaker.blogspot.com
Date UQ / IDS / BL URL IP
2022-12-09 09:50:36 +0000 0 - 0 - 6 hassannewswhitaker.blogspot.com/2022/04/filte (...) 142.250.74.161


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-26 10:08:00 +0000 0 - 0 - 4 teleline.site/m/ec/ppt1/ 79.98.29.29
2023-01-26 09:57:57 +0000 0 - 2 - 5 gdasaasnt.com/link?z=4356956&var={zoneid}&ymi (...) 139.45.197.239
2023-01-26 09:33:31 +0000 0 - 0 - 4 1d657f84ce6.clicks4tc.com/ 94.237.103.119
2023-01-26 09:29:27 +0000 0 - 1 - 14 serialghar.me/vid/files.php?id=rmieKpLV7VmL 104.21.22.220
2023-01-26 09:14:37 +0000 0 - 0 - 43 ww10.1piecemanga.com/manga/one-piece-chapter 188.114.97.1

JavaScript

Executed Scripts (81)

Executed Evals (18)
#1 JavaScript::Eval (size: 2079) - SHA256: 6d660c229a4e7ec07da50ee04f810687db0770da9bd75faa49d9e565158bad73
               (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-d648397c2f4ceb2049e9dbaf98cf46ac')) {
                       var callback = function() {
                           (new Image()).src = '//newsbeunity.com/clk.gif?landing_id=3569806&placement_id=16006454&sid=H4sIAAAAAAAC%2F1RTz4scRRuuybf54OM7KSIKOczBg4K7W%2F1zugxBjDESjElIIjnXz91ye7qaru7pyZ6iAQkeZMWL3nqf2WRRg5iDR0FmvWhAyHiQPbh48D9QgkeZycLoC93v%2B7xPUTxPvVUf7DZHhKLhh1fedts2z%2Fl6skb7L96whXKt71%2B63g%2FoGj3dv2GLND7dH89%2F1eiVgCZr9KX%2Bm1puufWQBpQGNOift5U2bry%2BYGHL%2ByxYY3QtDteCJMa4%2Bjf2TQ%2Be96BGR%2BRpWDU7ufnDA1g5RTH8%2Bpz2W7UrX35j2OS8dhVGav%2BdYqtwbYHhsjRVD6bYP14N52eEfHoCrtg%2FdgA32ps7gLAz0vslgCj2j2VCjO4%2BUSpy6AJC%2FR%2FtaAqdH8DyKaS7DaseEUAqXLqMYnjvkqtafvMJy%2BfsjKw8%2FgO2nZGVX59BMfzqbG7H%2FWsub2rrCo%2Bx6WDHU9iNKcrmAPV2D7Y9gKzfh1U%2FkfXHF1EM9y773MGqwxeiiIVZoMSq5IKuxnFEVwWncjULVRSGRiQxY4sjsnYKa6bI9Q6476GZf7aHxvTQlD0M1WGfJ8xQOjDCRFEWSymjSMokS1WiojgzFI2ce9hBXe5A5juQ1S2U1S1s2Y8fnfwNVfMd%2FObhvQFPWBhFQci0ThJtmGAiMpqlSWoCnVKWsUEgTJSYAZM01cJQFtM4zZKQ8yzkWgZJQEOa0JgFhmqZaq2VCjXTIgmChBqjBoGiGZV6kMaahbFimgaMpVkYDjLKQxkpw9OAM5nQSEUBTRJOqY6oCQIVhpEIKLzqwdcEI9Wh1QStJ2g5QWsJ2pqgHXV3Ve5D391TuW9EcJzD4xx1E1dv7PK7rt7QBdktj8hTixH%2FeSbFlj7sqzTOIjaQoYmlFiGNmWZKcMMyaeKUS3jbwfoTi4Fs2xl59r3nUNoZWVn%2FC4IfwOcHkPYUeHMSvJ1ElIJvTsKEYrv4xjeFVo3k84uzUbmmXJNuCOU6lPUK6pu93fyIPL8QlI4%2FgpYPyXFAVh3KqsO79nuCjfzO5Kpryd5V13ry4HJZ26HdXmx7rea1%2Fu8Xb%2BmbravUhXN%2B5%2FPX5JyYl%2Feva19f5IWyxYYnX561SunqvKukJt9e8De0uNL4zbNNVTTlxSuvn78wLCvtvXXFFNw%2B0j9C2hn534dnFi%2Ft1GePYaspqqbDsFkqte4AsrwFXy573hFU%2BRKLkqBtukkVimUztwS5XmIuOvh%2FYLGsd%2F0dbFQ98Po2imGHUdVhlHfg%2BQ58859JXVYPX%2F05WgRE3puIvCJ7Iq%2FmvD3sZ4Ilhpk0yeRgYKIwpUlClcqMMFzQWKD2M%2FnJyu9%2FAwAA%2F%2F8BAAD%2F%2F2oj2EE8BQAA&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
#2 JavaScript::Eval (size: 64) - SHA256: cc158dc49db31ac40a09769c14f1e96ce12d8ee44ddb54a5321c32cd0536ef78
0,
function(y, e, K) {
    (e = (K = u((e = u(y), y)), y.u[e] && v(y, e)), V)(K, y, e)
}
#3 JavaScript::Eval (size: 29) - SHA256: b2ebc210c5c379879d07a4a9e046a4ea803d56dcc91d533db817ec272cbcfaf4
var dfc221c35e = Number('');
#4 JavaScript::Eval (size: 469) - SHA256: 346223d9f0d86b2f31919a706f75a23fe27a0c5a9d1c87cb8a93225c590d3dfa
           if (typeof dfc221c35e !== 'undefined') {
               if (!isNaN(dfc221c35e) && dfc221c35e > 0) setTimeout(function() {
                   window.top.location = 'https://www.spikereekvelocity.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=16704211';
               }, dfc221c35e * 1000);
               else window.top.location = 'https://www.spikereekvelocity.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=16704211';
           }
#5 JavaScript::Eval (size: 55) - SHA256: 14986cbd70f8b8a1770adf9800c113847daf392c2999dfff9dc71d2be98f3282
(function() {
    return visitor.getAnalyticsVisitorID()
})();
#6 JavaScript::Eval (size: 135) - SHA256: fc7b851f30df68c5cc6d1fb3f06c300b2b1d7271f76cc187224050270141f0ed
(function() {
    if (window.innerHeight) return window.innerHeight;
    d = screen.width + "x" + screen.height;
    return d.documentElement.offsetHeight
})();
#7 JavaScript::Eval (size: 61) - SHA256: 9259355921509ced00b4d7d3e76c151037a06c88a646cd7d47d5d9c96984697c
(function() {
    return window.functions.timeParting("n", "0")
})();
#8 JavaScript::Eval (size: 16861) - SHA256: 191ffb056371de37b736e3455330b356314c031f95eeef6a674498081951c44c
(function() {
    var p = function(R, n, k) {
            k[V(R, n, k), Rl] = 2796
        },
        nX = function(R, n) {
            return R(function(k) {
                k(n)
            }), [function() {
                return n
            }]
        },
        kz = function(R, n, k, q, c) {
            for (n = (q = (c = n[3] | 0, 0), n[2]) | 0; 14 > q; q++) c = c >>> 8 | c << 24, k = k >>> 8 | k << 24, k += R | 0, c += n | 0, k ^= n + 2298, R = R << 3 | R >>> 29, c ^= q + 2298, R ^= k, n = n << 3 | n >>> 29, n ^= c;
            return [R >>> 24 & 255, R >>> 16 & 255, R >>> 8 & 255, R >>> 0 & 255, k >>> 24 & 255, k >>> 16 & 255, k >>> 8 & 255, k >>> 0 & 255]
        },
        E, L = function(R, n, k, q, c, y, e, K, N, Q, Z, w, U, h) {
            if (y = v(n, 278), y >= n.B) throw [x, 31];
            for (c = (K = 0, q = R, Q = y, n.c0.length); 0 < q;) Z = Q % 8, N = 8 - (Z | 0), N = N < q ? N : q, U = Q >> 3, w = n.i[U], k && (e = n, e.A != Q >> 6 && (e.A = Q >> 6, h = v(e, 358), e.l = kz(e.O, [0, 0, h[1], h[2]], e.A)), w ^= n.l[U & c]), K |= (w >> 8 - (Z | 0) - (N | 0) & (1 << N) - 1) << (q | 0) - (N | 0), Q += N, q -= N;
            return V(278, n, (k = K, (y | 0) + (R | 0))), k
        },
        yB = function(R, n, k, q) {
            try {
                q = R[((n | 0) + 2) % 3], R[n] = (R[n] | 0) - (R[((n | 0) + 1) % 3] | 0) - (q | 0) ^ (1 == n ? q << k : q >>> k)
            } catch (c) {
                throw c;
            }
        },
        eM = function(R, n) {
            return n = P(R), n & 128 && (n = n & 127 | P(R) << 7), n
        },
        qX = function(R, n, k) {
            if ((n = typeof R, "object") == n)
                if (R) {
                    if (R instanceof Array) return "array";
                    if (R instanceof Object) return n;
                    if ("[object Window]" == (k = Object.prototype.toString.call(R), k)) return "object";
                    if ("[object Array]" == k || "number" == typeof R.length && "undefined" != typeof R.splice && "undefined" != typeof R.propertyIsEnumerable && !R.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == k || "undefined" != typeof R.call && "undefined" != typeof R.propertyIsEnumerable && !R.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == n && "undefined" == typeof R.call) return "object";
            return n
        },
        C = function(R, n) {
            R.P.splice(0, 0, n)
        },
        G = function(R, n, k, q, c, y) {
            if (n.C == n)
                for (c = v(n, R), 421 == R ? (R = function(e, K, N, Q) {
                        if (c.mm != (Q = ((K = c.length, K) | 0) - 4 >> 3, Q)) {
                            Q = (c.mm = (N = [0, 0, y[1], y[2]], Q), (Q << 3) - 4);
                            try {
                                c.nk = kz(KX(c, Q), N, KX(c, (Q | 0) + 4))
                            } catch (Z) {
                                throw Z;
                            }
                        }
                        c.push(c.nk[K & 7] ^ e)
                    }, y = v(n, 408)) : R = function(e) {
                        c.push(e)
                    }, q && R(q & 255), n = k.length, q = 0; q < n; q++) R(k[q])
        },
        NX = function(R, n, k, q) {
            for (; R.P.length;) {
                k = (R.F = null, R).P.pop();
                try {
                    q = ca(R, k)
                } catch (c) {
                    r(R, c)
                }
                if (n && R.F) {
                    n = R.F, n(function() {
                        B(true, R, true)
                    });
                    break
                }
            }
            return q
        },
        QB = function(R, n, k, q) {
            return (q = I[R.substring(0, 3) + "_"]) ? q(R.substring(3), n, k) : nX(n, R)
        },
        sk = function(R, n, k, q, c) {
            G(((c = (k = u((c = u((q = n & 4, n &= 3, R)), R)), v(R, c)), q) && (c = pX("" + c)), n && G(k, R, D(2, c.length)), k), R, c)
        },
        l = function(R, n, k, q, c, y, e, K, N) {
            if ((R.C = (((K = (y = (N = (c = (e = 0 < (k || R.X++, R).U && R.S && R.xh && 1 >= R.J && !R.L && !R.F && (!k || 1 < R.Z - n) && 0 == document.hidden, 4 == R.X)) || e ? R.s() : R.T, N - R.T), y) >> 14, R).O && (R.O ^= K * (y << 2)), R).Y += K, K || R.C), c) || e) R.X = 0, R.T = N;
            if (!e || N - R.H < R.U - (q ? 255 : k ? 5 : 2)) return false;
            return !((V(278, (q = v(R, (R.Z = n, k ? 426 : 278)), R), R.B), R.P).push([jM, q, k ? n + 1 : n]), R.F = z, 0)
        },
        Ek = function(R, n, k) {
            if (3 == R.length) {
                for (k = 0; 3 > k; k++) n[k] += R[k];
                for (k = [(R = 0, 13), 8, 13, 12, 16, 5, 3, 10, 15]; 9 > R; R++) n[3](n, R % 3, k[R])
            }
        },
        u = function(R, n) {
            if (R.L) return Zn(R, R.N);
            return n = L(8, R, true), n & 128 && (n ^= 128, R = L(2, R, true), n = (n << 2) + (R | 0)), n
        },
        KX = function(R, n) {
            return R[n] << 24 | R[(n | 0) + 1] << 16 | R[(n | 0) + 2] << 8 | R[(n | 0) + 3]
        },
        we = function(R, n, k, q, c, y, e, K) {
            return (c = d[n.I]((k = [-2, 42, -72, -(y = va, 46), -26, -71, k, 61, (K = q & 7, 9), 2], n.MJ)), c)[n.I] = function(N) {
                e = N, K += 6 + 7 * q, K &= 7
            }, c.concat = function(N) {
                return (N = (e = (N = +(N = R % 16 + 1, k)[K + 59 & 7] * R * N - N * e - -2440 * e + (y() | 0) * N + 1 * R * R * N - 2562 * R * e - 61 * R * R * e + K + 61 * e * e, void 0), k[N]), k[(K + 69 & 7) + (q & 2)] = N, k)[K + (q & 2)] = 42, N
            }, c
        },
        V = function(R, n, k) {
            if (278 == R || 426 == R) n.u[R] ? n.u[R].concat(k) : n.u[R] = h8(n, k);
            else {
                if (n.D && 358 != R) return;
                305 == R || 421 == R || 352 == R || 236 == R || 408 == R ? n.u[R] || (n.u[R] = we(R, n, k, 54)) : n.u[R] = we(R, n, k, 113)
            }
            358 == R && (n.O = L(32, n, false), n.A = void 0)
        },
        P = function(R) {
            return R.L ? Zn(R, R.N) : L(8, R, true)
        },
        B = function(R, n, k, q, c, y) {
            if (n.P.length) {
                (n.S = !(n.S && 0(), 0), n).xh = k;
                try {
                    q = n.s(), n.H = q, n.T = q, n.X = 0, c = NX(n, k), y = n.s() - n.H, n.G += y, y < (R ? 0 : 10) || 0 >= n.g-- || (y = Math.floor(y), n.K.push(254 >= y ? y : 254))
                } finally {
                    n.S = false
                }
                return c
            }
        },
        xz = function(R, n, k, q) {
            for (k = (q = u(n), 0); 0 < R; R--) k = k << 8 | P(n);
            V(q, n, k)
        },
        I, Pa = function(R, n, k, q) {
            return v(R, (LX((q = v(R, 278), R.i && q < R.B ? (V(278, R, R.B), Uk(k, R)) : V(278, R, k), n), R), V(278, R, q), 15))
        },
        Tu = function(R, n, k, q, c) {
            for (c = (q = (k.In = (k.MJ = J8(k.I, (k.v0 = (k.NJ = be, CX), k.c0 = k[F], {get: function() {
                        return this.concat()
                    }
                })), d)[k.I](k.MJ, {
                    value: {
                        value: {}
                    }
                }), []), 0); 128 > c; c++) q[c] = String.fromCharCode(c);
            B((C((C(k, (C(k, (p(340, (V((V(305, k, [160, ((V(307, (V(327, (V(236, k, (p(59, k, (p(127, k, (p(119, (V(421, k, (V(270, k, (p(87, (p(158, (p(396, k, (p(448, k, (k.on = (p(362, (k.E9 = (p((p(250, k, (p(371, (V(15, (p(354, k, (V(352, k, ((p(442, k, (p(227, k, (p(103, k, (p(11, k, (p(121, (V(289, (p(173, (V(409, k, (p(275, k, (p(317, (p(375, k, (p(432, ((p((p(295, (V(278, k, (k.B0 = (k.wE = (k.P0 = function(y) {
                this.C = y
            }, k.u = (k.R = void 0, []), k.F = ((k.O = (k.N = void 0, void 0), k.Y = 1, k.U = 0, (k.Rn = [], k).C = k, c = window.performance || {}, k.j = [], (k.J = 0, k).T = 0, k.B = 0, k.S = ((k.A = void 0, k.X = void 0, k).i = [], k.H = (k.P = (k.xh = false, []), k.g = (k.G = 0, 25), 0), k.L = (k.l = void 0, void 0), k.D = false, k.Z = 8001, false), k).K = [], null), 0), c).timeOrigin || (c.timing || {}).navigationStart || 0, 0)), V(426, k, 0), k), function(y, e, K, N) {
                V((e = v(y, (N = (K = (N = (e = u(y), u(y)), u(y)), v(y, N)), e)), K), y, e in N | 0)
            }), 163), k, function(y, e, K, N) {
                !l(y, e, true, false) && (e = re(y), N = e.Ck, K = e.h, y.C == y || K == y.P0 && N == y) && (V(e.un, y, K.apply(N, e.o)), y.T = y.s())
            }), p)(341, k, function(y, e, K, N) {
                if (N = y.Rn.pop()) {
                    for (K = P(y); 0 < K; K--) e = u(y), N[e] = y.u[e];
                    y.u = (N[236] = y.u[236], N[307] = y.u[307], N)
                } else V(278, y, y.B)
            }), k), function(y, e) {
                (e = v(y, u(y)), Uk)(e, y.C)
            }), function(y, e, K, N) {
                (e = v(y, (N = v((K = (N = u((e = u(y), y)), u(y)), y), N), e)) == N, V)(K, y, +e)
            })), k), function(y) {
                xz(4, y)
            }), function(y, e, K, N, Q, Z) {
                if (!l(y, e, true, true)) {
                    if ("object" == (y = v((N = (Q = v((e = v((N = (e = (Q = (Z = u(y), u)(y), u(y)), u)(y), y), e), y), Q), v(y, N)), y), Z), qX)(y)) {
                        for (K in Z = [], y) Z.push(K);
                        y = Z
                    }
                    for (Z = (e = 0 < e ? e : 1, K = y.length, 0); Z < K; Z += e) Q(y.slice(Z, (Z | 0) + (e | 0)), N)
                }
            })), p(193, k, function(y, e, K, N, Q) {
                0 !== (Q = v(y, (K = (e = v((N = v(y, (N = (Q = u((K = u(y), y)), e = u(y), u(y)), N)), y), e), v(y.C, K)), Q)), K) && (N = Ba(e, N, y, 1, K, Q), K.addEventListener(Q, N, W), V(270, y, [K, Q, N]))
            }), 687)), k), function(y) {
                sk(y, 4)
            }), k), 0), k), function() {}), function(y, e, K, N, Q, Z, w) {
                for (w = (e = (K = (N = u(y), Z = eM(y), Q = "", v(y, 115)), K.length), 0); Z--;) w = ((w | 0) + (eM(y) | 0)) % e, Q += q[K[w]];
                V(N, y, Q)
            })), function(y, e, K) {
                K = v((e = (K = (e = u(y), u(y)), 0 != v(y, e)), y), K), e && V(278, y, K)
            })), function(y, e, K, N, Q) {
                for (K = (e = (N = u(y), eM)(y), 0), Q = []; K < e; K++) Q.push(P(y));
                V(N, y, Q)
            })), function(y, e, K) {
                (e = u((K = u(y), y)), V)(e, y, "" + v(y, K))
            })), V)(408, k, [0, 0, 0]), [])), function(y, e, K, N, Q, Z, w, U, h, T, Y, J) {
                function f(b, a) {
                    for (; e < b;) T |= P(y) << e, e += 8;
                    return T >>= (a = T & (e -= b, (1 << b) - 1), b), a
                }
                for (K = (h = (U = (Y = (e = T = (Z = u(y), 0), f(3) | 0) + 1, f(5)), 0), []), Q = 0; Q < U; Q++) J = f(1), K.push(J), h += J ? 0 : 1;
                for (Q = (N = (h = ((h | 0) - 1).toString(2).length, []), 0); Q < U; Q++) K[Q] || (N[Q] = f(h));
                for (h = 0; h < U; h++) K[h] && (N[h] = u(y));
                for (w = []; Y--;) w.push(v(y, u(y)));
                p(Z, y, function(b, a, O, VB, X) {
                    for (O = (VB = (X = [], []), 0); O < U; O++) {
                        if (a = N[O], !K[O]) {
                            for (; a >= X.length;) X.push(u(b));
                            a = X[a]
                        }
                        VB.push(a)
                    }
                    b.L = h8(b, w.slice()), b.N = h8(b, VB)
                })
            })), k), {}), k), function(y) {
                al(y, 1)
            }), function(y, e, K) {
                l(y, e, true, false) || (e = u(y), K = u(y), V(K, y, function(N) {
                    return eval(N)
                }(Gu(v(y.C, e)))))
            })), 499), k, function(y) {
                sk(y, 3)
            }), 0), k), function(y, e, K, N) {
                K = (N = P((e = u(y), y)), u(y)), V(K, y, v(y, e) >>> N)
            }), 0), function(y, e, K, N) {
                V((e = v(y, (N = v(y, (K = u((N = u(y), y)), N)), K)), K), y, e + N)
            })), function(y, e) {
                y = (e = u(y), v)(y.C, e), y[0].removeEventListener(y[1], y[2], W)
            })), k), function(y, e, K, N, Q) {
                V((K = v(y, (N = (Q = v(y, (Q = (N = (K = (e = u(y), u(y)), u(y)), u)(y), Q)), v(y, N)), K)), e), y, Ba(K, N, y, Q))
            }), k), function(y, e, K) {
                V((K = v(y, (e = (K = u(y), u(y)), K)), K = qX(K), e), y, K)
            }), 0)), S(4))), k), function(y, e, K, N, Q, Z) {
                l(y, e, true, false) || (N = re(y.C), e = N.o, Z = N.Ck, Q = N.h, K = e.length, N = N.un, e = 0 == K ? new Z[Q] : 1 == K ? new Z[Q](e[0]) : 2 == K ? new Z[Q](e[0], e[1]) : 3 == K ? new Z[Q](e[0], e[1], e[2]) : 4 == K ? new Z[Q](e[0], e[1], e[2], e[3]) : 2(), V(N, y, e))
            }), function(y, e, K, N) {
                N = u((e = u(y), y)), K = u(y), y.C == y && (N = v(y, N), K = v(y, K), v(y, e)[N] = K, 358 == e && (y.A = void 0, 2 == N && (y.O = L(32, y, false), y.A = void 0)))
            })), function(y) {
                al(y, 4)
            })), [])), k), H), k), 2048), k).an = 0, 0), 0]), 120), k, k), k), function(y, e, K, N) {
                V((K = v((e = v(y, (N = u((K = u((e = u(y), y)), y)), e)), y), K), N), y, e[K])
            }), p(472, k, function(y, e, K, N) {
                N = (e = u(y), u)(y), K = u(y), V(K, y, v(y, e) || v(y, N))
            }), [Rl])), [A, n])), k), [Il, R]), true), k, true)
        },
        J8 = function(R, n) {
            return d[R](d.prototype, {
                pop: n,
                replace: n,
                length: n,
                document: n,
                splice: n,
                parent: n,
                stack: n,
                floor: n,
                prototype: n,
                console: n,
                call: n,
                propertyIsEnumerable: n
            })
        },
        pX = function(R, n, k, q, c) {
            for (q = (R = R.replace(/\r\n/g, "\n"), n = 0, []), k = 0; n < R.length; n++) c = R.charCodeAt(n), 128 > c ? q[k++] = c : (2048 > c ? q[k++] = c >> 6 | 192 : (55296 == (c & 64512) && n + 1 < R.length && 56320 == (R.charCodeAt(n + 1) & 64512) ? (c = 65536 + ((c & 1023) << 10) + (R.charCodeAt(++n) & 1023), q[k++] = c >> 18 | 240, q[k++] = c >> 12 & 63 | 128) : q[k++] = c >> 12 | 224, q[k++] = c >> 6 & 63 | 128), q[k++] = c & 63 | 128);
            return q
        },
        LX = function(R, n, k, q, c, y) {
            if (!n.R) {
                n.J++;
                try {
                    for (k = (q = (y = void 0, n).B, 0); --R;) try {
                        if ((c = void 0, n).L) y = Zn(n, n.L);
                        else {
                            if (k = v(n, 278), k >= q) break;
                            y = (c = (V(426, n, k), u(n)), v)(n, c)
                        }(y && y[ue] & 2048 ? y(n, R) : M(n, 0, [x, 21, c]), l)(n, R, false, false)
                    } catch (e) {
                        v(n, 409) ? M(n, 22, e) : V(409, n, e)
                    }
                    if (!R) {
                        if (n.Lk) {
                            n.J--, LX(338687074593, n);
                            return
                        }
                        M(n, 0, [x, 33])
                    }
                } catch (e) {
                    try {
                        M(n, 22, e)
                    } catch (K) {
                        r(n, K)
                    }
                }
                n.J--
            }
        },
        Zn = function(R, n) {
            return (n = n.create().shift(), R.L.create()).length || R.N.create().length || (R.L = void 0, R.N = void 0), n
        },
        Dn = function(R, n, k, q) {
            function c() {}
            return {
                invoke: (k = QB((q = void 0, R), function(y) {
                    c && (n && z(n), q = y, c(), c = void 0)
                }, !!n)[0], function(y, e, K, N) {
                    function Q() {
                        q(function(Z) {
                            z(function() {
                                y(Z)
                            })
                        }, K)
                    }
                    if (!e) return e = k(K), y && y(e), e;
                    q ? Q() : (N = c, c = function() {
                        N(), z(Q)
                    })
                })
            }
        },
        v = function(R, n) {
            if (void 0 === (R = R.u[n], R)) throw [x, 30, n];
            if (R.value) return R.create();
            return R.create(1 * n * n + 42 * n + -40), R.prototype
        },
        D = function(R, n, k, q) {
            for (k = (q = (R | 0) - 1, []); 0 <= q; q--) k[(R | 0) - 1 - (q | 0)] = n >> 8 * q & 255;
            return k
        },
        Uk = function(R, n) {
            V(278, ((n.Rn.push(n.u.slice()), n.u)[278] = void 0, n), R)
        },
        r = function(R, n) {
            R.R = ((R.R ? R.R + "~" : "E:") + n.message + ":" + n.stack).slice(0, 2048)
        },
        fX = function(R, n, k) {
            return n.W(function(q) {
                k = q
            }, false, R), k
        },
        Ba = function(R, n, k, q, c, y) {
            function e() {
                if (k.C == k) {
                    if (k.u) {
                        var K = [m, R, n, void 0, c, y, arguments];
                        if (2 == q) var N = B(false, (C(k, K), k), false);
                        else if (1 == q) {
                            var Q = !k.P.length;
                            C(k, K), Q && B(false, k, false)
                        } else N = ca(k, K);
                        return N
                    }
                    c && y && c.removeEventListener(y, e, W)
                }
            }
            return e
        },
        S = function(R, n) {
            for (n = []; R--;) n.push(255 * Math.random() | 0);
            return n
        },
        ca = function(R, n, k, q, c) {
            if (c = n[0], c == g) R.g = 25, R.v(n);
            else if (c == F) {
                q = n[1];
                try {
                    k = R.R || R.v(n)
                } catch (y) {
                    r(R, y), k = R.R
                }
                q(k)
            } else if (c == jM) R.v(n);
            else if (c == A) R.v(n);
            else if (c == Il) {
                try {
                    for (k = 0; k < R.j.length; k++) try {
                        q = R.j[k], q[0][q[1]](q[2])
                    } catch (y) {}
                } catch (y) {}(0, n[R.j = [], 1])(function(y, e) {
                    R.W(y, true, e)
                }, function(y) {
                    (C((y = !R.P.length, R), [ue]), y) && B(false, R, true)
                })
            } else {
                if (c == m) return k = n[2], V(126, R, n[6]), V(15, R, k), R.v(n);
                c == ue ? (R.K = [], R.i = [], R.u = null) : c == Rl && "loading" === H.document.readyState && (R.F = function(y, e) {
                    function K() {
                        e || (e = true, y())
                    }
                    H.document.addEventListener("DOMContentLoaded", (e = false, K), W), H.addEventListener("load", K, W)
                })
            }
        },
        al = function(R, n, k, q) {
            G((k = u(R), q = u(R), q), R, D(n, v(R, k)))
        },
        $z = function(R, n) {
            if ((R = null, n = H.trustedTypes, !n) || !n.createPolicy) return R;
            try {
                R = n.createPolicy("bg", {
                    createHTML: zu,
                    createScript: zu,
                    createScriptURL: zu
                })
            } catch (k) {
                H.console && H.console.error(k.message)
            }
            return R
        },
        zu = function(R) {
            return R
        },
        M = function(R, n, k, q, c, y) {
            if (!R.D) {
                if ((k = v(R, (n = (0 == (q = ((c = void 0, k && k[0] === x) && (c = k[2], n = k[1], k = void 0), v)(R, 236), q).length && (y = v(R, 426) >> 3, q.push(n, y >> 8 & 255, y & 255), void 0 != c && q.push(c & 255)), ""), k && (k.message && (n += k.message), k.stack && (n += ":" + k.stack)), 307)), 3) < k) {
                    R.C = (c = (n = pX((k -= ((n = n.slice(0, (k | 0) - 3), n.length) | 0) + 3, n)), R.C), R);
                    try {
                        G(421, R, D(2, n.length).concat(n), 9)
                    } finally {
                        R.C = c
                    }
                }
                V(307, R, k)
            }
        },
        H = this || self,
        t = function(R, n, k) {
            k = this;
            try {
                Tu(n, R, this)
            } catch (q) {
                r(this, q), n(function(c) {
                    c(k.R)
                })
            }
        },
        h8 = function(R, n, k) {
            return k = d[R.I](R.In), k[R.I] = function() {
                return n
            }, k.concat = function(q) {
                n = q
            }, k
        },
        W = {
            passive: true,
            capture: true
        },
        re = function(R, n, k, q, c, y) {
            for (q = (c = (n = (k = u((y = R[le] || {}, R)), y.un = u(R), y.o = [], R.C == R ? (P(R) | 0) - 1 : 1), u(R)), 0); q < n; q++) y.o.push(u(R));
            for (y.Ck = v(R, c); n--;) y.o[n] = v(R, y.o[n]);
            return y.h = v(R, k), y
        },
        z = H.requestIdleCallback ? function(R) {
            requestIdleCallback(function() {
                R()
            }, {
                timeout: 4
            })
        } : H.setImmediate ? function(R) {
            setImmediate(R)
        } : function(R) {
            setTimeout(R, 0)
        },
        de = function(R, n) {
            n.push(R[0] << 24 | R[1] << 16 | R[2] << 8 | R[3]), n.push(R[4] << 24 | R[5] << 16 | R[6] << 8 | R[7]), n.push(R[8] << 24 | R[9] << 16 | R[10] << 8 | R[11])
        },
        le = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        x = ((t.prototype.V = "toString", t.prototype.Lk = false, t).prototype.Qy = void 0, {}),
        g = [],
        Il = [],
        jM = [],
        A = [],
        m = [],
        ue = (t.prototype.kh = void 0, []),
        F = [],
        Rl = [],
        d = (E = ((de, function() {})(S), yB, Ek, t.prototype), E.zc = function() {
            return Math.floor(this.G + (this.s() - this.H))
        }, x.constructor),
        va = (E.s = (t.prototype.I = "create", (E.dE = (E.W = function(R, n, k, q, c) {
            if ((k = "array" === qX(k) ? k : [k], this).R) R(this.R);
            else try {
                q = !this.P.length, c = [], C(this, [g, c, k]), C(this, [F, R, c]), n && !q || B(true, this, n)
            } catch (y) {
                r(this, y), R(this.R)
            }
        }, function(R, n, k, q, c, y) {
            for (c = q = 0, y = []; q < R.length; q++)
                for (c += n, k = k << n | R[q]; 7 < c;) c -= 8, y.push(k >> c & 255);
            return y
        }), (E.eN = (E.s9 = function(R, n, k) {
            return ((n = (n ^= n << 13, n ^= n >> 17, (n ^ n << 5) & k)) || (n = 1), R) ^ n
        }, function(R, n, k, q, c) {
            for (q = c = 0; c < R.length; c++) q += R.charCodeAt(c), q += q << 10, q ^= q >> 6;
            return c = new Number((q += q << 3, q ^= q >> 11, R = q + (q << 15) >>> 0, R & (1 << n) - 1)), c[0] = (R >>> n) % k, c
        }), E.FH = function() {
            return Math.floor(this.s())
        }, window.performance || {}).now) ? function() {
            return this.B0 + window.performance.now()
        } : function() {
            return +new Date
        }), void 0),
        CX = ((t.prototype.v = function(R, n) {
            return n = {}, va = (R = {}, function() {
                    return n == R ? -40 : 9
                }),
                function(k, q, c, y, e, K, N, Q, Z, w, U, h, T, Y, J) {
                    n = (Y = n, R);
                    try {
                        if (h = k[0], h == A) {
                            T = k[1];
                            try {
                                for (Q = (y = atob(T), e = [], K = 0); Q < y.length; Q++) J = y.charCodeAt(Q), 255 < J && (e[K++] = J & 255, J >>= 8), e[K++] = J;
                                V(358, this, (this.B = (this.i = e, this.i).length << 3, [0, 0, 0]))
                            } catch (f) {
                                M(this, 17, f);
                                return
                            }
                            LX(8001, this)
                        } else if (h == g) k[1].push(v(this, 307), v(this, 421).length, v(this, 352).length, v(this, 305).length), V(15, this, k[2]), this.u[349] && Pa(this, 8001, v(this, 349));
                        else {
                            if (h == F) {
                                this.C = (Z = (U = D(2, (v(this, (K = k[2], 305)).length | 0) + 2), this.C), this);
                                try {
                                    w = v(this, 236), 0 < w.length && G(305, this, D(2, w.length).concat(w), 10), G(305, this, D(1, this.Y), 109), G(305, this, D(1, this[F].length)), y = 0, y -= (v(this, 305).length | 0) + 5, y += v(this, 289) & 2047, q = v(this, 421), 4 < q.length && (y -= (q.length | 0) + 3), 0 < y && G(305, this, D(2, y).concat(S(y)), 15), 4 < q.length && G(305, this, D(2, q.length).concat(q), 156)
                                } finally {
                                    this.C = Z
                                }
                                if (c = ((Q = S(2).concat(v(this, 305)), Q[1] = Q[0] ^ 6, Q[3] = Q[1] ^ U[0], Q)[4] = Q[1] ^ U[1], this.rE(Q))) c = "!" + c;
                                else
                                    for (c = "", y = 0; y < Q.length; y++) N = Q[y][this.V](16), 1 == N.length && (N = "0" + N), c += N;
                                return v(this, (v((v((V(307, this, (e = c, K.shift())), this), 421).length = K.shift(), this), 352).length = K.shift(), 305)).length = K.shift(), e
                            }
                            if (h == jM) Pa(this, k[2], k[1]);
                            else if (h == m) return Pa(this, 8001, k[1])
                        }
                    } finally {
                        n = Y
                    }
                }
        }(), t.prototype).rE = function(R, n, k, q) {
            if (n = window.btoa) {
                for (q = (k = 0, ""); k < R.length; k += 8192) q += String.fromCharCode.apply(null, R.slice(k, k + 8192));
                R = n(q).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else R = void 0;
            return R
        }, /./);
    (t.prototype.Ax = 0, t.prototype).yy = 0;
    var be, Fn = A.pop.bind((t.prototype[Il] = [0, 0, 1, 1, 0, 1, 1], t).prototype[g]),
        Gu = function(R, n) {
            return (n = $z()) && 1 === R.eval(n.createScript("1")) ? function(k) {
                return n.createScript(k)
            } : function(k) {
                return "" + k
            }
        }(((be = J8(t.prototype.I, {get: (CX[t.prototype.V] = Fn, Fn)
        }), t.prototype).O9 = void 0, H));
    40 < (I = H.botguard || (H.botguard = {}), I.m) || (I.m = 41, I.bg = Dn, I.a = QB), I.bDL_ = function(R, n, k) {
        return k = new t(R, n), [function(q) {
            return fX(q, k)
        }]
    };
}).call(this);
#9 JavaScript::Eval (size: 22) - SHA256: 2ed176c7f9d5b3c8ca6ccdb0e994b6ddc34944c41fc4db7451fd7a3d27fed6f1
0,
function(y) {
    xz(2, y)
}
#10 JavaScript::Eval (size: 54) - SHA256: fc490a09c28110ae2a7c965801ebeb5c572587f55c3524889f547dbcc34c1d81
(function() {
    return screen.width + "x" + screen.height
})();
#11 JavaScript::Eval (size: 132) - SHA256: 0a23e511994a2c03a725773de07810ff171878b9c0177f40a663038e4e251168
(function() {
    if (window.innerWidth) return window.innerWidth;
    d = screen.width + "x" + screen.height;
    return d.documentElement.offsetWidth
})();
#12 JavaScript::Eval (size: 62) - SHA256: adf0ca592504ef680d5ea02d5161b15be0572fd3e5b41d152b74f0c76aea6c42
(function() {
    return window.functions.getPageNameOldEvar1()
})();
#13 JavaScript::Eval (size: 71) - SHA256: dcdd7e7e286c45c94638f28053384616d6ca9a1b396b0109cb51f1298ba342bb
(function() {
    return Math.round((new Date).getTime() / 1E3).toString()
})();
#14 JavaScript::Eval (size: 15588) - SHA256: 0d4559ba47020dfb3d3229a79fae241152a0337f86a9c8a01bd5add41c1753b7
/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var y = this || self,
        e = function(R) {
            return R
        },
        q = function(R, n) {
            if ((n = (R = y.trustedTypes, null), !R) || !R.createPolicy) return n;
            try {
                n = R.createPolicy("bg", {
                    createHTML: e,
                    createScript: e,
                    createScriptURL: e
                })
            } catch (k) {
                y.console && y.console.error(k.message)
            }
            return n
        };
    (0, eval)(function(R, n) {
        return (n = q()) && 1 === R.eval(n.createScript("1")) ? function(k) {
            return n.createScript(k)
        } : function(k) {
            return "" + k
        }
    }(y)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var p=function(R,n,k){k[V(R,n,k),Rl]=2796},nX=function(R,n){return R(function(k){k(n)}),[function(){return n}]},kz=function(R,n,k,q,c){for(n=(q=(c=n[3]|0,0),n[2])|0;14>q;q++)c=c>>>8|c<<24,k=k>>>8|k<<24,k+=R|0,c+=n|0,k^=n+2298,R=R<<3|R>>>29,c^=q+2298,R^=k,n=n<<3|n>>>29,n^=c;return[R>>>24&255,R>>>16&255,R>>>8&255,R>>>0&255,k>>>24&255,k>>>16&255,k>>>8&255,k>>>0&255]},E,L=function(R,n,k,q,c,y,e,K,N,Q,Z,w,U,h){if(y=v(n,278),y>=n.B)throw[x,31];for(c=(K=0,q=R,Q=y,n.c0.length);0<q;)Z=Q%8,N=8-(Z|0),N=N<q?N:q,U=Q>>3,w=n.i[U],k&&(e=n,e.A!=Q>>6&&(e.A=Q>>6,h=v(e,358),e.l=kz(e.O,[0,0,h[1],h[2]],e.A)),w^=n.l[U&c]),K|=(w>>8-(Z|0)-(N|0)&(1<<N)-1)<<(q|0)-(N|0),Q+=N,q-=N;return V(278,n,(k=K,(y|0)+(R|0))),k},yB=function(R,n,k,q){try{q=R[((n|0)+2)%3],R[n]=(R[n]|0)-(R[((n|0)+1)%3]|0)-(q|0)^(1==n?q<<k:q>>>k)}catch(c){throw c;}},eM=function(R,n){return n=P(R),n&128&&(n=n&127|P(R)<<7),n},qX=function(R,n,k){if((n=typeof R,"object")==n)if(R){if(R instanceof Array)return"array";if(R instanceof Object)return n;if("[object Window]"==(k=Object.prototype.toString.call(R),k))return"object";if("[object Array]"==k||"number"==typeof R.length&&"undefined"!=typeof R.splice&&"undefined"!=typeof R.propertyIsEnumerable&&!R.propertyIsEnumerable("splice"))return"array";if("[object Function]"==k||"undefined"!=typeof R.call&&"undefined"!=typeof R.propertyIsEnumerable&&!R.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==n&&"undefined"==typeof R.call)return"object";return n},C=function(R,n){R.P.splice(0,0,n)},G=function(R,n,k,q,c,y){if(n.C==n)for(c=v(n,R),421==R?(R=function(e,K,N,Q){if(c.mm!=(Q=((K=c.length,K)|0)-4>>3,Q)){Q=(c.mm=(N=[0,0,y[1],y[2]],Q),(Q<<3)-4);try{c.nk=kz(KX(c,Q),N,KX(c,(Q|0)+4))}catch(Z){throw Z;}}c.push(c.nk[K&7]^e)},y=v(n,408)):R=function(e){c.push(e)},q&&R(q&255),n=k.length,q=0;q<n;q++)R(k[q])},NX=function(R,n,k,q){for(;R.P.length;){k=(R.F=null,R).P.pop();try{q=ca(R,k)}catch(c){r(R,c)}if(n&&R.F){n=R.F,n(function(){B(true,R,true)});break}}return q},QB=function(R,n,k,q){return(q=I[R.substring(0,3)+"_"])?q(R.substring(3),n,k):nX(n,R)},sk=function(R,n,k,q,c){G(((c=(k=u((c=u((q=n&4,n&=3,R)),R)),v(R,c)),q)&&(c=pX(""+c)),n&&G(k,R,D(2,c.length)),k),R,c)},l=function(R,n,k,q,c,y,e,K,N){if((R.C=(((K=(y=(N=(c=(e=0<(k||R.X++,R).U&&R.S&&R.xh&&1>=R.J&&!R.L&&!R.F&&(!k||1<R.Z-n)&&0==document.hidden,4==R.X))||e?R.s():R.T,N-R.T),y)>>14,R).O&&(R.O^=K*(y<<2)),R).Y+=K,K||R.C),c)||e)R.X=0,R.T=N;if(!e||N-R.H<R.U-(q?255:k?5:2))return false;return!((V(278,(q=v(R,(R.Z=n,k?426:278)),R),R.B),R.P).push([jM,q,k?n+1:n]),R.F=z,0)},Ek=function(R,n,k){if(3==R.length){for(k=0;3>k;k++)n[k]+=R[k];for(k=[(R=0,13),8,13,12,16,5,3,10,15];9>R;R++)n[3](n,R%3,k[R])}},u=function(R,n){if(R.L)return Zn(R,R.N);return n=L(8,R,true),n&128&&(n^=128,R=L(2,R,true),n=(n<<2)+(R|0)),n},KX=function(R,n){return R[n]<<24|R[(n|0)+1]<<16|R[(n|0)+2]<<8|R[(n|0)+3]},we=function(R,n,k,q,c,y,e,K){return(c=d[n.I]((k=[-2,42,-72,-(y=va,46),-26,-71,k,61,(K=q&7,9),2],n.MJ)),c)[n.I]=function(N){e=N,K+=6+7*q,K&=7},c.concat=function(N){return(N=(e=(N=+(N=R%16+1,k)[K+59&7]*R*N-N*e- -2440*e+(y()|0)*N+1*R*R*N-2562*R*e-61*R*R*e+K+61*e*e,void 0),k[N]),k[(K+69&7)+(q&2)]=N,k)[K+(q&2)]=42,N},c},V=function(R,n,k){if(278==R||426==R)n.u[R]?n.u[R].concat(k):n.u[R]=h8(n,k);else{if(n.D&&358!=R)return;305==R||421==R||352==R||236==R||408==R?n.u[R]||(n.u[R]=we(R,n,k,54)):n.u[R]=we(R,n,k,113)}358==R&&(n.O=L(32,n,false),n.A=void 0)},P=function(R){return R.L?Zn(R,R.N):L(8,R,true)},B=function(R,n,k,q,c,y){if(n.P.length){(n.S=!(n.S&&0(),0),n).xh=k;try{q=n.s(),n.H=q,n.T=q,n.X=0,c=NX(n,k),y=n.s()-n.H,n.G+=y,y<(R?0:10)||0>=n.g--||(y=Math.floor(y),n.K.push(254>=y?y:254))}finally{n.S=false}return c}},xz=function(R,n,k,q){for(k=(q=u(n),0);0<R;R--)k=k<<8|P(n);V(q,n,k)},I,Pa=function(R,n,k,q){return v(R,(LX((q=v(R,278),R.i&&q<R.B?(V(278,R,R.B),Uk(k,R)):V(278,R,k),n),R),V(278,R,q),15))},Tu=function(R,n,k,q,c){for(c=(q=(k.In=(k.MJ=J8(k.I,(k.v0=(k.NJ=be,CX),k.c0=k[F],{get:function(){return this.concat()}})),d)[k.I](k.MJ,{value:{value:{}}}),[]),0);128>c;c++)q[c]=String.fromCharCode(c);B((C((C(k,(C(k,(p(340,(V((V(305,k,[160,((V(307,(V(327,(V(236,k,(p(59,k,(p(127,k,(p(119,(V(421,k,(V(270,k,(p(87,(p(158,(p(396,k,(p(448,k,(k.on=(p(362,(k.E9=(p((p(250,k,(p(371,(V(15,(p(354,k,(V(352,k,((p(442,k,(p(227,k,(p(103,k,(p(11,k,(p(121,(V(289,(p(173,(V(409,k,(p(275,k,(p(317,(p(375,k,(p(432,((p((p(295,(V(278,k,(k.B0=(k.wE=(k.P0=function(y){this.C=y},k.u=(k.R=void 0,[]),k.F=((k.O=(k.N=void 0,void 0),k.Y=1,k.U=0,(k.Rn=[],k).C=k,c=window.performance||{},k.j=[],(k.J=0,k).T=0,k.B=0,k.S=((k.A=void 0,k.X=void 0,k).i=[],k.H=(k.P=(k.xh=false,[]),k.g=(k.G=0,25),0),k.L=(k.l=void 0,void 0),k.D=false,k.Z=8001,false),k).K=[],null),0),c).timeOrigin||(c.timing||{}).navigationStart||0,0)),V(426,k,0),k),function(y,e,K,N){V((e=v(y,(N=(K=(N=(e=u(y),u(y)),u(y)),v(y,N)),e)),K),y,e in N|0)}),163),k,function(y,e,K,N){!l(y,e,true,false)&&(e=re(y),N=e.Ck,K=e.h,y.C==y||K==y.P0&&N==y)&&(V(e.un,y,K.apply(N,e.o)),y.T=y.s())}),p)(341,k,function(y,e,K,N){if(N=y.Rn.pop()){for(K=P(y);0<K;K--)e=u(y),N[e]=y.u[e];y.u=(N[236]=y.u[236],N[307]=y.u[307],N)}else V(278,y,y.B)}),k),function(y,e){(e=v(y,u(y)),Uk)(e,y.C)}),function(y,e,K,N){(e=v(y,(N=v((K=(N=u((e=u(y),y)),u(y)),y),N),e))==N,V)(K,y,+e)})),k),function(y){xz(4,y)}),function(y,e,K,N,Q,Z){if(!l(y,e,true,true)){if("object"==(y=v((N=(Q=v((e=v((N=(e=(Q=(Z=u(y),u)(y),u(y)),u)(y),y),e),y),Q),v(y,N)),y),Z),qX)(y)){for(K in Z=[],y)Z.push(K);y=Z}for(Z=(e=0<e?e:1,K=y.length,0);Z<K;Z+=e)Q(y.slice(Z,(Z|0)+(e|0)),N)}})),p(193,k,function(y,e,K,N,Q){0!==(Q=v(y,(K=(e=v((N=v(y,(N=(Q=u((K=u(y),y)),e=u(y),u(y)),N)),y),e),v(y.C,K)),Q)),K)&&(N=Ba(e,N,y,1,K,Q),K.addEventListener(Q,N,W),V(270,y,[K,Q,N]))}),687)),k),function(y){sk(y,4)}),k),0),k),function(){}),function(y,e,K,N,Q,Z,w){for(w=(e=(K=(N=u(y),Z=eM(y),Q="",v(y,115)),K.length),0);Z--;)w=((w|0)+(eM(y)|0))%e,Q+=q[K[w]];V(N,y,Q)})),function(y,e,K){K=v((e=(K=(e=u(y),u(y)),0!=v(y,e)),y),K),e&&V(278,y,K)})),function(y,e,K,N,Q){for(K=(e=(N=u(y),eM)(y),0),Q=[];K<e;K++)Q.push(P(y));V(N,y,Q)})),function(y,e,K){(e=u((K=u(y),y)),V)(e,y,""+v(y,K))})),V)(408,k,[0,0,0]),[])),function(y,e,K,N,Q,Z,w,U,h,T,Y,J){function f(b,a){for(;e<b;)T|=P(y)<<e,e+=8;return T>>=(a=T&(e-=b,(1<<b)-1),b),a}for(K=(h=(U=(Y=(e=T=(Z=u(y),0),f(3)|0)+1,f(5)),0),[]),Q=0;Q<U;Q++)J=f(1),K.push(J),h+=J?0:1;for(Q=(N=(h=((h|0)-1).toString(2).length,[]),0);Q<U;Q++)K[Q]||(N[Q]=f(h));for(h=0;h<U;h++)K[h]&&(N[h]=u(y));for(w=[];Y--;)w.push(v(y,u(y)));p(Z,y,function(b,a,O,VB,X){for(O=(VB=(X=[],[]),0);O<U;O++){if(a=N[O],!K[O]){for(;a>=X.length;)X.push(u(b));a=X[a]}VB.push(a)}b.L=h8(b,w.slice()),b.N=h8(b,VB)})})),k),{}),k),function(y){al(y,1)}),function(y,e,K){l(y,e,true,false)||(e=u(y),K=u(y),V(K,y,function(N){return eval(N)}(Gu(v(y.C,e)))))})),499),k,function(y){sk(y,3)}),0),k),function(y,e,K,N){K=(N=P((e=u(y),y)),u(y)),V(K,y,v(y,e)>>>N)}),0),function(y,e,K,N){V((e=v(y,(N=v(y,(K=u((N=u(y),y)),N)),K)),K),y,e+N)})),function(y,e){y=(e=u(y),v)(y.C,e),y[0].removeEventListener(y[1],y[2],W)})),k),function(y,e,K,N,Q){V((K=v(y,(N=(Q=v(y,(Q=(N=(K=(e=u(y),u(y)),u(y)),u)(y),Q)),v(y,N)),K)),e),y,Ba(K,N,y,Q))}),k),function(y,e,K){V((K=v(y,(e=(K=u(y),u(y)),K)),K=qX(K),e),y,K)}),0)),S(4))),k),function(y,e,K,N,Q,Z){l(y,e,true,false)||(N=re(y.C),e=N.o,Z=N.Ck,Q=N.h,K=e.length,N=N.un,e=0==K?new Z[Q]:1==K?new Z[Q](e[0]):2==K?new Z[Q](e[0],e[1]):3==K?new Z[Q](e[0],e[1],e[2]):4==K?new Z[Q](e[0],e[1],e[2],e[3]):2(),V(N,y,e))}),function(y,e,K,N){N=u((e=u(y),y)),K=u(y),y.C==y&&(N=v(y,N),K=v(y,K),v(y,e)[N]=K,358==e&&(y.A=void 0,2==N&&(y.O=L(32,y,false),y.A=void 0)))})),function(y){al(y,4)})),[])),k),H),k),2048),k).an=0,0),0]),120),k,k),k),function(y,e,K,N){V((K=v((e=v(y,(N=u((K=u((e=u(y),y)),y)),e)),y),K),N),y,e[K])}),p(472,k,function(y,e,K,N){N=(e=u(y),u)(y),K=u(y),V(K,y,v(y,e)||v(y,N))}),[Rl])),[A,n])),k),[Il,R]),true),k,true)},J8=function(R,n){return d[R](d.prototype,{pop:n,replace:n,length:n,document:n,splice:n,parent:n,stack:n,floor:n,prototype:n,console:n,call:n,propertyIsEnumerable:n})},pX=function(R,n,k,q,c){for(q=(R=R.replace(/\\r\\n/g,"\\n"),n=0,[]),k=0;n<R.length;n++)c=R.charCodeAt(n),128>c?q[k++]=c:(2048>c?q[k++]=c>>6|192:(55296==(c&64512)&&n+1<R.length&&56320==(R.charCodeAt(n+1)&64512)?(c=65536+((c&1023)<<10)+(R.charCodeAt(++n)&1023),q[k++]=c>>18|240,q[k++]=c>>12&63|128):q[k++]=c>>12|224,q[k++]=c>>6&63|128),q[k++]=c&63|128);return q},LX=function(R,n,k,q,c,y){if(!n.R){n.J++;try{for(k=(q=(y=void 0,n).B,0);--R;)try{if((c=void 0,n).L)y=Zn(n,n.L);else{if(k=v(n,278),k>=q)break;y=(c=(V(426,n,k),u(n)),v)(n,c)}(y&&y[ue]&2048?y(n,R):M(n,0,[x,21,c]),l)(n,R,false,false)}catch(e){v(n,409)?M(n,22,e):V(409,n,e)}if(!R){if(n.Lk){n.J--,LX(338687074593,n);return}M(n,0,[x,33])}}catch(e){try{M(n,22,e)}catch(K){r(n,K)}}n.J--}},Zn=function(R,n){return(n=n.create().shift(),R.L.create()).length||R.N.create().length||(R.L=void 0,R.N=void 0),n},Dn=function(R,n,k,q){function c(){}return{invoke:(k=QB((q=void 0,R),function(y){c&&(n&&z(n),q=y,c(),c=void 0)},!!n)[0],function(y,e,K,N){function Q(){q(function(Z){z(function(){y(Z)})},K)}if(!e)return e=k(K),y&&y(e),e;q?Q():(N=c,c=function(){N(),z(Q)})})}},v=function(R,n){if(void 0===(R=R.u[n],R))throw[x,30,n];if(R.value)return R.create();return R.create(1*n*n+42*n+-40),R.prototype},D=function(R,n,k,q){for(k=(q=(R|0)-1,[]);0<=q;q--)k[(R|0)-1-(q|0)]=n>>8*q&255;return k},Uk=function(R,n){V(278,((n.Rn.push(n.u.slice()),n.u)[278]=void 0,n),R)},r=function(R,n){R.R=((R.R?R.R+"~":"E:")+n.message+":"+n.stack).slice(0,2048)},fX=function(R,n,k){return n.W(function(q){k=q},false,R),k},Ba=function(R,n,k,q,c,y){function e(){if(k.C==k){if(k.u){var K=[m,R,n,void 0,c,y,arguments];if(2==q)var N=B(false,(C(k,K),k),false);else if(1==q){var Q=!k.P.length;C(k,K),Q&&B(false,k,false)}else N=ca(k,K);return N}c&&y&&c.removeEventListener(y,e,W)}}return e},S=function(R,n){for(n=[];R--;)n.push(255*Math.random()|0);return n},ca=function(R,n,k,q,c){if(c=n[0],c==g)R.g=25,R.v(n);else if(c==F){q=n[1];try{k=R.R||R.v(n)}catch(y){r(R,y),k=R.R}q(k)}else if(c==jM)R.v(n);else if(c==A)R.v(n);else if(c==Il){try{for(k=0;k<R.j.length;k++)try{q=R.j[k],q[0][q[1]](q[2])}catch(y){}}catch(y){}(0,n[R.j=[],1])(function(y,e){R.W(y,true,e)},function(y){(C((y=!R.P.length,R),[ue]),y)&&B(false,R,true)})}else{if(c==m)return k=n[2],V(126,R,n[6]),V(15,R,k),R.v(n);c==ue?(R.K=[],R.i=[],R.u=null):c==Rl&&"loading"===H.document.readyState&&(R.F=function(y,e){function K(){e||(e=true,y())}H.document.addEventListener("DOMContentLoaded",(e=false,K),W),H.addEventListener("load",K,W)})}},al=function(R,n,k,q){G((k=u(R),q=u(R),q),R,D(n,v(R,k)))},$z=function(R,n){if((R=null,n=H.trustedTypes,!n)||!n.createPolicy)return R;try{R=n.createPolicy("bg",{createHTML:zu,createScript:zu,createScriptURL:zu})}catch(k){H.console&&H.console.error(k.message)}return R},zu=function(R){return R},M=function(R,n,k,q,c,y){if(!R.D){if((k=v(R,(n=(0==(q=((c=void 0,k&&k[0]===x)&&(c=k[2],n=k[1],k=void 0),v)(R,236),q).length&&(y=v(R,426)>>3,q.push(n,y>>8&255,y&255),void 0!=c&&q.push(c&255)),""),k&&(k.message&&(n+=k.message),k.stack&&(n+=":"+k.stack)),307)),3)<k){R.C=(c=(n=pX((k-=((n=n.slice(0,(k|0)-3),n.length)|0)+3,n)),R.C),R);try{G(421,R,D(2,n.length).concat(n),9)}finally{R.C=c}}V(307,R,k)}},H=this||self,t=function(R,n,k){k=this;try{Tu(n,R,this)}catch(q){r(this,q),n(function(c){c(k.R)})}},h8=function(R,n,k){return k=d[R.I](R.In),k[R.I]=function(){return n},k.concat=function(q){n=q},k},W={passive:true,capture:true},re=function(R,n,k,q,c,y){for(q=(c=(n=(k=u((y=R[le]||{},R)),y.un=u(R),y.o=[],R.C==R?(P(R)|0)-1:1),u(R)),0);q<n;q++)y.o.push(u(R));for(y.Ck=v(R,c);n--;)y.o[n]=v(R,y.o[n]);return y.h=v(R,k),y},z=H.requestIdleCallback?function(R){requestIdleCallback(function(){R()},{timeout:4})}:H.setImmediate?function(R){setImmediate(R)}:function(R){setTimeout(R,0)},de=function(R,n){n.push(R[0]<<24|R[1]<<16|R[2]<<8|R[3]),n.push(R[4]<<24|R[5]<<16|R[6]<<8|R[7]),n.push(R[8]<<24|R[9]<<16|R[10]<<8|R[11])},le=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),x=((t.prototype.V="toString",t.prototype.Lk=false,t).prototype.Qy=void 0,{}),g=[],Il=[],jM=[],A=[],m=[],ue=(t.prototype.kh=void 0,[]),F=[],Rl=[],d=(E=((de,function(){})(S),yB,Ek,t.prototype),E.zc=function(){return Math.floor(this.G+(this.s()-this.H))},x.constructor),va=(E.s=(t.prototype.I="create",(E.dE=(E.W=function(R,n,k,q,c){if((k="array"===qX(k)?k:[k],this).R)R(this.R);else try{q=!this.P.length,c=[],C(this,[g,c,k]),C(this,[F,R,c]),n&&!q||B(true,this,n)}catch(y){r(this,y),R(this.R)}},function(R,n,k,q,c,y){for(c=q=0,y=[];q<R.length;q++)for(c+=n,k=k<<n|R[q];7<c;)c-=8,y.push(k>>c&255);return y}),(E.eN=(E.s9=function(R,n,k){return((n=(n^=n<<13,n^=n>>17,(n^n<<5)&k))||(n=1),R)^n},function(R,n,k,q,c){for(q=c=0;c<R.length;c++)q+=R.charCodeAt(c),q+=q<<10,q^=q>>6;return c=new Number((q+=q<<3,q^=q>>11,R=q+(q<<15)>>>0,R&(1<<n)-1)),c[0]=(R>>>n)%k,c}),E.FH=function(){return Math.floor(this.s())},window.performance||{}).now)?function(){return this.B0+window.performance.now()}:function(){return+new Date}),void 0),CX=((t.prototype.v=function(R,n){return n={},va=(R={},function(){return n==R?-40:9}),function(k,q,c,y,e,K,N,Q,Z,w,U,h,T,Y,J){n=(Y=n,R);try{if(h=k[0],h==A){T=k[1];try{for(Q=(y=atob(T),e=[],K=0);Q<y.length;Q++)J=y.charCodeAt(Q),255<J&&(e[K++]=J&255,J>>=8),e[K++]=J;V(358,this,(this.B=(this.i=e,this.i).length<<3,[0,0,0]))}catch(f){M(this,17,f);return}LX(8001,this)}else if(h==g)k[1].push(v(this,307),v(this,421).length,v(this,352).length,v(this,305).length),V(15,this,k[2]),this.u[349]&&Pa(this,8001,v(this,349));else{if(h==F){this.C=(Z=(U=D(2,(v(this,(K=k[2],305)).length|0)+2),this.C),this);try{w=v(this,236),0<w.length&&G(305,this,D(2,w.length).concat(w),10),G(305,this,D(1,this.Y),109),G(305,this,D(1,this[F].length)),y=0,y-=(v(this,305).length|0)+5,y+=v(this,289)&2047,q=v(this,421),4<q.length&&(y-=(q.length|0)+3),0<y&&G(305,this,D(2,y).concat(S(y)),15),4<q.length&&G(305,this,D(2,q.length).concat(q),156)}finally{this.C=Z}if(c=((Q=S(2).concat(v(this,305)),Q[1]=Q[0]^6,Q[3]=Q[1]^U[0],Q)[4]=Q[1]^U[1],this.rE(Q)))c="!"+c;else for(c="",y=0;y<Q.length;y++)N=Q[y][this.V](16),1==N.length&&(N="0"+N),c+=N;return v(this,(v((v((V(307,this,(e=c,K.shift())),this),421).length=K.shift(),this),352).length=K.shift(),305)).length=K.shift(),e}if(h==jM)Pa(this,k[2],k[1]);else if(h==m)return Pa(this,8001,k[1])}}finally{n=Y}}}(),t.prototype).rE=function(R,n,k,q){if(n=window.btoa){for(q=(k=0,"");k<R.length;k+=8192)q+=String.fromCharCode.apply(null,R.slice(k,k+8192));R=n(q).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else R=void 0;return R},/./);(t.prototype.Ax=0,t.prototype).yy=0;var be,Fn=A.pop.bind((t.prototype[Il]=[0,0,1,1,0,1,1],t).prototype[g]),Gu=function(R,n){return(n=$z())&&1===R.eval(n.createScript("1"))?function(k){return n.createScript(k)}:function(k){return""+k}}(((be=J8(t.prototype.I,{get:(CX[t.prototype.V]=Fn,Fn)}),t.prototype).O9=void 0,H));40<(I=H.botguard||(H.botguard={}),I.m)||(I.m=41,I.bg=Dn,I.a=QB),I.bDL_=function(R,n,k){return k=new t(R,n),[function(q){return fX(q,k)}]};}).call(this);'));
}).call(this);
#15 JavaScript::Eval (size: 2085) - SHA256: 8c801484ce6d562cc97070be2d6b9fc3a6e383694266741636d99dd24ea793bb
               (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-cf499c4a78c0296a203adcac3d025397')) {
                       var callback = function() {
                           (new Image()).src = '//restorationpencil.com/clk.gif?landing_id=3569808&placement_id=16704213&sid=H4sIAAAAAAAC%2F1RTzYscRRytjhtBPCniB%2BQwBw8K7m71d7dBxBgjwZiEJJJzfe6W29PVdHVPb%2FYUDUjwNOJFb71vN1nUIObgUZBZLxoQMiKyBxcR%2FwMh5CQyk4XR36F%2Bv%2Fd7RdV79fHRdntIKFp2cPFdu2WKgq3GK3Tw0lVTStu5wfkrA5%2Bu0JODq6ZMopODzdlQj171abxCXx68rcSGXQ2oT6lP%2FcEZUyttN1fnLEx1J%2FdXcroSBSt%2BHGGz%2Fj92rQfHPMjRIXkaRk6Pr%2F94F0ZMUA6%2FOa3cRmOrV94atgVrbI2R3Huv3ChtV2K4KHXtQZd7R7Nh3ZSQz47BlntHDmBHuzMH4GZKvN988HLvSCb46NYjpbyAKsHlk%2BhGE6hiH4ZNIOwNGHmfAELi%2FAWUw9vnbd2xa49YNmOnZOnB3zDdlCz9%2FgzK4denCrM5uGyLtjG2dNjUPczmBGZtgqrdR7PlwXT7EM2HMPJnsvrgHMrh7gVXWBh58KIf8CxOub%2FsM5kuR0GQLmeZz5bDLPa1H%2BZCx8n8iIyZwOgJCjUGc8fQOg%2Bt8dBqD23lYSgPBizONaWp5joMs0gIEYZCxFkiYxlGmaZoxczDGE01hijGEPV1VPV1bJhP7h%2F%2FA3X7Pdz6we1EpYEQYZ4Fmok4D6jPUukrzVMVJCyKGNVpJLROVMBoKnUcpZQnCeVS%2BZQlqcx4mGVZyiIdZqFKoiwOtKaJiEKe5FkqFItFrDjNuZapyFOZaylSHiW5SLjSgS%2BZyALtK8F1GqQyC7gOc56FOZvtEmaJFD6c9OAagpHs0SmCzhF0jKAzBF1D0I36W7Jwgetvy8K13D%2FKwVEO%2Bx3brG2zW7ZZUyXZrg7JU%2FMr%2FufPX7GhDgZCR3kuIpZmggZ5wgIaMimYCCUN4jBP4UwP446BOQ9bZkqe%2FeB5VGZKllYfgrN9uGIfwpwAa58D63bSIANbR06xVX7r2lLJVrDZu1mrbVutCDuEtD2qZgnNNW%2B7OCQvzPUkm2MocY8cBUTdo6p7vG9%2BIFgrbu5csh3ZvWQ7R%2B5eqBozNFvzZS83rFGPf%2FmOutbZWp497cZfvCFmxKy8c0W55hwrpSnXHPnqlJFS1WdsLRT57qy7qvjF1q2fauuyrc5dfPPM2WFVK%2BeMLSdg5r76CcJMyRMfvzb%2FaCc%2BfwhTT1C3PYbtQqmx%2BxDVdbhq0XOWoC4WmFcEXdvv1AFfNAtDUKgFZryH%2Bw%2Fmi3rb3cRa7YE1N1AOe4zqHqOiByvGcO1jO01V33v9l3Ae4IW3w4ua7PKinvHmYJDxPNa5TuJMpKkOg4TGMZUy01wzTiOOxk3Fp0t%2F%2FQsAAP%2F%2FAQAA%2F%2F%2FP32RsOwUAAA%3D%3D&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
#16 JavaScript::Eval (size: 60) - SHA256: 9d51544cc513110b130345a977b1e9e630b5a7aa01518f7f7898758b79a9699f
(function() {
    return visitor.getMarketingCloudVisitorID()
})();
#17 JavaScript::Eval (size: 22) - SHA256: 9bb0c662c12831d4a6a9d504b2534e28f08b91591da1303a05ad2b3e12a6e49e
0,
function(y) {
    xz(1, y)
}
#18 JavaScript::Eval (size: 88) - SHA256: 5e05e2cf30322e8f71d65a22aa5f4a095923b67286a61d83b7787e3468f42f62
(function() {
    return "LP:" + BF_prop.LandingPageName.toString().replace(/:/ig, "").trim()
})();

Executed Writes (4)
#1 JavaScript::Write (size: 130) - SHA256: ec3d735aa1c8ce71e6c70177c7dae528a24cf4ca778a05f95915340ba4d60098
< script type = "text/javascript"
src = "https://wagerprocuratorantiterrorist.com/cf499c4a78c0296a203adcac3d025397/invoke.js" > < /script>
#2 JavaScript::Write (size: 130) - SHA256: d1b2635fcbd06630c369aaf41f6457c4b5e2e9ef26e05dcd076854cda4657757
< script type = "text/javascript"
src = "https://wagerprocuratorantiterrorist.com/d648397c2f4ceb2049e9dbaf98cf46ac/invoke.js" > < /script>
#3 JavaScript::Write (size: 130) - SHA256: 62893ee186a02b49ff337332fb647be485030e1d1ccefa507c197a6f35cd23b7
< script type = "text/javascript"
src = "https://wagerprocuratorantiterrorist.com/c5b69fadf511d6654a7370dc0a3c7c81/invoke.js" > < /script>
#4 JavaScript::Write (size: 50) - SHA256: a2b051fa7d206df6e4eeee27678781de0752c1ac7adcfd359c1a2fc7ff507449
< script src = "/widget/betslip/betslip.js" > < /script>

HTTP Transactions (165)


Request Response
 
                                        
                                            GET /2022/04/filter-needles-are-used-with-which-of.html HTTP/1.1 

                                        
                                            
Host: hassannewswhitaker.blogspot.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1
search 
                                         172.217.21.161

                                        
                                            HTTP/1.1 301 Moved Permanently 

                                        
                                            
Content-Type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
Location: https://hassannewswhitaker.blogspot.com/2022/04/filter-needles-are-used-with-which-of.html 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Expires: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Cache-Control: private, max-age=0 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
Content-Security-Policy: frame-ancestors 'self' 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 223 

                                        
                                            
Server: GSE 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text

                                                Size:   223

                                                Md5:    12dca3eceee5b4fea244a97f34e31dcd

                                                Sha1:   1adc813804d3289e38d479fa0396b5b9cffd5118

                                                Sha256: aabf230c8bc9f505aeac97100841ac2da99835fb4bc86007a13fced78ec0b500

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6850 

                                        
                                            
Expires: Fri, 09 Dec 2022 11:44:35 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=13024 

                                        
                                            
Expires: Fri, 09 Dec 2022 13:27:29 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         35.241.9.150

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Fri, 09 Dec 2022 09:08:18 GMT 

                                        
                                            
age: 2527 

                                        
                                            
cache-control: max-age=3600,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    14cd9a0afb6ba9a763651d5112760d1e

                                                Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa

                                                Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA" 

                                        
                                            
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=2940 

                                        
                                            
Expires: Fri, 09 Dec 2022 10:39:25 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.160.144.191

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: binary/octet-stream 

                                        
                                    
                                        

                                        
                                            
x-amz-id-2: VESoXBl4/Mi2zuXFjogSKYjNyWuXlNT+Ydb2dGQ14shOiAEgkIa3V06LcWo6FkRJ1kT3ApbE3A77ST8l3YFdLA== 

                                        
                                            
x-amz-request-id: PYQAN1TFVT3PS3RB 

                                        
                                            
content-disposition: attachment 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-length: 5348 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:12 GMT 

                                        
                                            
age: 13 

                                        
                                            
last-modified: Wed, 30 Nov 2022 10:06:34 GMT 

                                        
                                            
etag: "53341dea33f4f3d9b4966f80589f429a" 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    53341dea33f4f3d9b4966f80589f429a

                                                Sha1:   20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d

                                                Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-expose-headers: content-type 

                                        
                                            
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         35.241.9.150

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Fri, 09 Dec 2022 09:07:55 GMT 

                                        
                                            
age: 2550 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
cache-control: max-age=3600,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /2022/04/filter-needles-are-used-with-which-of.html HTTP/1.1 

                                        
                                            
Host: hassannewswhitaker.blogspot.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1
search 
                                         172.217.21.161

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
expires: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
cache-control: private, max-age=0 

                                        
                                            
last-modified: Mon, 05 Dec 2022 13:02:43 GMT 

                                        
                                            
etag: W/"c9d88ac1132addebb118ad9ba240da9bd791b0dd1fec069d18253adccc0d9256" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
content-length: 24526 

                                        
                                            
server: GSE 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6565)

                                                Size:   24526

                                                Md5:    567f31a3b30f14191108086a5e655e94

                                                Sha1:   241e98863f73ef07e081147503c42e4e87747bd3

                                                Sha256: df0d8b92d7e6117d3b0115e98cc1898122751e527ab29f03780916f24094faec

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1 

                                        
                                            
Host: www.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.3

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: br 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" 

                                        
                                            
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} 

                                        
                                            
content-length: 3475 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
expires: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
cache-control: public, max-age=0 

                                        
                                            
age: 0 

                                        
                                            
last-modified: Wed, 14 Apr 2021 19:28:00 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with very long lines (10473)

                                                Size:   3475

                                                Md5:    5f322b95a9dc592286f58bb0b446fb3a

                                                Sha1:   7b504dd1f75dca0b6545643188e510cae4699c6a

                                                Sha256: a87b7a7bb8c3c8104355c38ea1e71953c2fc38320e3d32c675e753afa96eed15

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 4049 

                                        
                                            
Cache-Control: max-age=136093 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Etag: "639265ae-1d7" 

                                        
                                            
Expires: Sat, 10 Dec 2022 23:38:39 GMT 

                                        
                                            
Last-Modified: Thu, 08 Dec 2022 22:31:10 GMT 

                                        
                                            
Server: ECS (ska/F705) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 15744 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 07 Dec 2022 19:34:08 GMT 

                                        
                                            
expires: Thu, 07 Dec 2023 19:34:08 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 137778 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:48 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data

                                                Size:   15744

                                                Md5:    15d9f621c3bd1599f0169dcf0bd5e63e

                                                Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52

                                                Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 5278 

                                        
                                            
Cache-Control: max-age=89064 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Etag: "6391a92c-1d7" 

                                        
                                            
Expires: Sat, 10 Dec 2022 10:34:50 GMT 

                                        
                                            
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT 

                                        
                                            
Server: ECS (ska/F705) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1 

                                        
                                            
Host: www.blogger.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.73

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech" 

                                        
                                            
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]} 

                                        
                                            
content-length: 6573 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Tue, 06 Dec 2022 13:44:05 GMT 

                                        
                                            
expires: Wed, 06 Dec 2023 13:44:05 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
last-modified: Tue, 06 Dec 2022 04:51:45 GMT 

                                        
                                            
age: 245181 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (1441)

                                                Size:   6573

                                                Md5:    f60e5037324bf7fd2256c16929886f09

                                                Sha1:   aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b

                                                Sha256: 71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /2016/09/step_by_step.png HTTP/1.1 

                                        
                                            
Host: andyjconnelly.files.wordpress.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.0.72.22

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
content-length: 593126 

                                        
                                            
last-modified: Sat, 11 Nov 2017 06:38:05 GMT 

                                        
                                            
expires: Tue, 27 Dec 2022 02:46:04 GMT 

                                        
                                            
x-orig-src: 01_mogdir 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-origin: https://andyjconnelly.wordpress.com 

                                        
                                            
vary: Origin 

                                        
                                            
x-nc: HIT arn 22 np 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 921 x 622, 8-bit/color RGBA, interlaced\012- data

                                                Size:   593126

                                                Md5:    6a5a1bfb219f7f497b76bc2d41ef30d3

                                                Sha1:   e5635479a10727a9ffb50b247cfc96bdd3709dd7

                                                Sha256: 21dea1fc4adf8f01a2c0138208c2c2a33287af82fc0784a57968e8720efdbf6f

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /blogblog/data/res/434389409-indie_compiled.js HTTP/1.1 

                                        
                                            
Host: resources.blogblog.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.73

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech" 

                                        
                                            
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]} 

                                        
                                            
content-length: 46702 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Thu, 08 Dec 2022 02:53:29 GMT 

                                        
                                            
expires: Thu, 15 Dec 2022 02:53:29 GMT 

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
last-modified: Thu, 08 Dec 2022 00:55:10 GMT 

                                        
                                            
age: 111417 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (1535)

                                                Size:   46702

                                                Md5:    82e6b40227416f42a9576cf252b29a77

                                                Sha1:   9f1e38b6be1f78e3cd64e5b443f4e031b148a3f0

                                                Sha256: 1800634c24088d2654691ad8b104a0071c92fc77a009fa2ae660520af71bcb84

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 15860 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 07 Dec 2022 18:53:49 GMT 

                                        
                                            
expires: Thu, 07 Dec 2023 18:53:49 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 140197 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:42 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data

                                                Size:   15860

                                                Md5:    e9f5aaf547f165386cd313b995dddd8e

                                                Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968

                                                Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /static/v1/widgets/2092647672-widgets.js HTTP/1.1 

                                        
                                            
Host: www.blogger.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.73

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech" 

                                        
                                            
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]} 

                                        
                                            
content-length: 56341 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Thu, 08 Dec 2022 02:10:45 GMT 

                                        
                                            
expires: Fri, 08 Dec 2023 02:10:45 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
last-modified: Thu, 08 Dec 2022 00:55:10 GMT 

                                        
                                            
age: 113981 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (2221)

                                                Size:   56341

                                                Md5:    689971018982703ab88ce528368b9190

                                                Sha1:   be9697d57e5c19d36c52aacd8b04a6a159a2f3bd

                                                Sha256: cf8b513cfd596cffc3a7e456eccc198b8e409f5aaf624d5dbeecdd748dce0cef

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "79F249A9CB8F8A3AE88D874431FB95C1D3318CE70BD75C0B34D968A2E81489D5" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6014 

                                        
                                            
Expires: Fri, 09 Dec 2022 11:30:40 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /blogger_img_proxy/ANbyha0q7wCIgL_Az5exmocsWJo21-HT-vsYdd8O9hIeD6uVHf8um3BQqusPydGLc5l61KCWHqktKK7h52XNtjGO_yNqcdIsAg4Zp2MhbS2OEwCJX4Qbll9Ga44iLp9gu-1v1pyJv_Q6GlWIe02sVVjuosKzgYvVWeK3q6u31g17i_kTVrJhVsO_TdOSzkZ4syTcjpptrAd3lcoNklbp0B5qeE3E3i92RQ6pNZGITP-AEznLhRImZPqB-oYQU6qslg=w72-h72-p-k-no-nu HTTP/1.1 

                                        
                                            
Host: lh3.googleusercontent.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         216.58.207.225

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
access-control-expose-headers: Content-Length 

                                        
                                            
expires: Sat, 10 Dec 2022 09:50:26 GMT 

                                        
                                            
cache-control: public, max-age=86400, no-transform 

                                        
                                            
content-disposition: inline;filename="unnamed.jpg" 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server: fife 

                                        
                                            
content-length: 3201 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data

                                                Size:   3201

                                                Md5:    ca643b62fd5aa0df6d59cfbc17baf250

                                                Sha1:   808e66c1b647daa8f134d29fc1323341433c26be

                                                Sha256: 9b0a7768f5b795c7acee8770381912e7929f0cf8bf38dacc855a918eabbc3876

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /s/gts1p5/nq8Yzr71NwA HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: scaffolding on HTTPServer2 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /assets/product/Images/Medication%20Delivery%20Solutions%20(MDS)/blunt-fill-and-blunt-filter-needles_rc0_201167881.png?resize=704x400&rt=fit HTTP/1.1 

                                        
                                            
Host: static.bd.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         95.101.10.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp 

                                        
                                    
                                        

                                        
                                            
etag: "7c7f28c85dd96b7e1d34ee181b262ce8:1668332244.998634" 

                                        
                                            
last-modified: Mon, 14 Nov 2022 20:10:10 GMT 

                                        
                                            
server: Akamai Image Manager 

                                        
                                            
x-serial: 1083 

                                        
                                            
x-check-cacheable: YES 

                                        
                                            
content-length: 7298 

                                        
                                            
cache-control: private, no-transform, max-age=469117 

                                        
                                            
expires: Wed, 14 Dec 2022 20:09:03 GMT 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server-timing: cdn-cache; desc=HIT, edge; dur=1 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  RIFF (little-endian) data, Web/P image\012- data

                                                Size:   7298

                                                Md5:    136e85fd32ee6eaf4a08b0866b3ee4a6

                                                Sha1:   af2ab844fc7b0267e79fec102633acad7f956ca7

                                                Sha256: 717280f9f758632984698fe6d2e29ed65d083c17c7ec38cdf0df6bf007df4c4f

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /assets/product/Images/Medication%20Delivery%20Solutions%20(MDS)/nokor-filter-and-admix-needles_rc0_201166759.png HTTP/1.1 

                                        
                                            
Host: static.bd.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         95.101.10.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp 

                                        
                                    
                                        

                                        
                                            
etag: "32625c71b8c98388589bda36520340f9:1668334130.155552" 

                                        
                                            
last-modified: Wed, 16 Nov 2022 12:09:47 GMT 

                                        
                                            
server: Akamai Image Manager 

                                        
                                            
x-serial: 1448 

                                        
                                            
x-check-cacheable: YES 

                                        
                                            
content-length: 47974 

                                        
                                            
cache-control: private, no-transform, max-age=613181 

                                        
                                            
expires: Fri, 16 Dec 2022 12:10:07 GMT 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server-timing: cdn-cache; desc=MISS, edge; dur=1, origin; dur=123 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  RIFF (little-endian) data, Web/P image\012- data

                                                Size:   47974

                                                Md5:    20b6351c459b525f4790d43748810a46

                                                Sha1:   1cf6a8383ffdfaf80efb990950d83d5aa1de9b17

                                                Sha256: a1cac71cc9e201eb7e85ef95e2ca6f738c3b1823e225097b14ce970f3b4211c9

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /blogger_img_proxy/ANbyha3bS8HsSJGzqrrMjKAIPUv2zh8agvIL9YDfzi5MIgR8befcZreBkzbDpt3lZNS3jBS6nt_6BveW0Kk3SkysnU4MDgG87xeOQPxRUxyY_kan83zFj2L4hFGoRekONbvWtDfxb211CEY10QulJOF8nzc=w72-h72-p-k-no-nu HTTP/1.1 

                                        
                                            
Host: lh3.googleusercontent.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         216.58.207.225

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
access-control-expose-headers: Content-Length 

                                        
                                            
expires: Sat, 10 Dec 2022 09:50:26 GMT 

                                        
                                            
cache-control: public, max-age=86400, no-transform 

                                        
                                            
content-disposition: inline;filename="unnamed.jpg" 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server: fife 

                                        
                                            
content-length: 2497 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data

                                                Size:   2497

                                                Md5:    4e1bef1ceb626e14760adef94c443873

                                                Sha1:   fa66318e1b3449f6fbc67f4fbdba9474c69c0d81

                                                Sha256: a638b6374df10d7cb928ea84e6b735ab1c14bcb6387d0413b30bd414885ab128

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=9012980756890859335&zx=4287fbe4-2a30-4eba-bc80-08098eac4c40 HTTP/1.1 

                                        
                                            
Host: www.blogger.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.73

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." 

                                        
                                            
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport 

                                        
                                            
cache-control: no-cache, no-store, max-age=0, must-revalidate 

                                        
                                            
pragma: no-cache 

                                        
                                            
expires: Mon, 01 Jan 1990 00:00:00 GMT 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
last-modified: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
content-length: 21 

                                        
                                            
server: GSE 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  very short file (no magic)

                                                Size:   21

                                                Md5:    a62e4d501434033d5d177e67d3aafdd0

                                                Sha1:   34f7300c9ed47334cf10826d57af785321e3138b

                                                Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: WZ9poZtgMknMfzsVYvfqTw== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket
search 
                                         35.83.91.138

                                        
                                            HTTP/1.1 101 Switching Protocols 

                                        
                                    
                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: jTGnKqdhRuhssiBmtGwTCShYMaY= 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /blogger_img_proxy/ANbyha3_gNyvw4DSUv4HBxO2AYMSsvq8TiK4JXQLiKvp9eWR912FuN4VRBFOcHicgEzyq8Woz_raxZGg-cdXMPcBZvIrbWayXH2MJsl9gyp9gitKxP0hDfMtaGhZLSagR_ugEhqJl17NrgYU4ODAA3uZ2RsTJyykzCq22Hg6TmA=w72-h72-p-k-no-nu HTTP/1.1 

                                        
                                            
Host: lh3.googleusercontent.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         216.58.207.225

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
access-control-expose-headers: Content-Length 

                                        
                                            
expires: Sat, 10 Dec 2022 09:50:26 GMT 

                                        
                                            
cache-control: public, max-age=86400, no-transform 

                                        
                                            
content-disposition: inline;filename="unnamed.jpg" 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server: fife 

                                        
                                            
content-length: 5322 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data

                                                Size:   5322

                                                Md5:    8dbe4587c367dc9160c222b55a725bd1

                                                Sha1:   a5f63b332cdcddc82de9fd7f6cce4ca023eee572

                                                Sha256: d536191c03913c6c5c638d8e124297159ea45bde7eee2406ee2158af54a561d2

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /xFJX136Een9qiVSsfebPhQ.png HTTP/1.1 

                                        
                                            
Host: o.quizlet.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         104.16.18.221

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
content-length: 3590 

                                        
                                            
cache-control: public, max-age=946080000 

                                        
                                            
cf-bgj: imgq:100,h2pri 

                                        
                                            
cf-polished: origFmt=png, origSize=6326 

                                        
                                            
content-disposition: inline; filename="xFJX136Een9qiVSsfebPhQ.webp" 

                                        
                                            
etag: "3ccb8bf056231a86f7f2272168c61993" 

                                        
                                            
expires: Sun, 01 Dec 2052 09:50:26 GMT 

                                        
                                            
last-modified: Fri, 25 Sep 2015 01:35:13 GMT 

                                        
                                            
vary: Accept 

                                        
                                            
x-amz-id-2: XrLOikcaO5nFD9T4Q2Hs1hcZolk08Fsjcw4UxPl4lQ/hz185+7DDu7oyHbH5H/jCw/8Alw3uVhI= 

                                        
                                            
x-amz-request-id: K2CKHTTHR7A1KV15 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
set-cookie: __cf_bm=jHMMfAl8YxshiirhzAIMaxVONOMYQPqwjbszOm2Kfjg-1670579426-0-AchstSgVXtVPxExOrFFHIkJnCK8itKD3p9L09F83JbToSV206Dm+CkLusvcubq1AiAIXyLis4G2jwZTmmJW0Y0o=; path=/; expires=Fri, 09-Dec-22 10:20:26 GMT; domain=.quizlet.com; HttpOnly; Secure; SameSite=None
_cfuvid=itSmNCc0cNoWAmHnyQaE5CDn_.mlAsEBIHXuz79hgEM-1670579426313-0-604800000; path=/; domain=.quizlet.com; HttpOnly; Secure; SameSite=None 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 776cd62538e6b509-OSL 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  RIFF (little-endian) data, Web/P image\012- data

                                                Size:   3590

                                                Md5:    34908f7735d620047c8b1da469d99f0a

                                                Sha1:   ca65d65bfc9f12ae0fbaf8494d8a83ce76c1c811

                                                Sha256: e08cfe6f8cc8e7dd6e380915fb8f7e14a3f2c76201ec3f12983a06cb744847e0

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /image?id=rabMT9PC10wCtkMoMM2KrjGV5ejCGidFlmg3elSmmoRNnd0FxKwY5T0RGV948R08752LcEb6qEXa&options=w1600 HTTP/1.1 

                                        
                                            
Host: themes.googleusercontent.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         216.58.207.225

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
access-control-expose-headers: Content-Length 

                                        
                                            
etag: "v1" 

                                        
                                            
expires: Sat, 10 Dec 2022 09:50:26 GMT 

                                        
                                            
cache-control: public, max-age=86400, no-transform 

                                        
                                            
content-disposition: inline;filename="unnamed.jpg" 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server: fife 

                                        
                                            
content-length: 98390 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, description=600-07802918\302\251 Raimund LinkeModel Release: NoProperty Release: NoCoastal Beech Forest with Path and Fog in Night, Gespensterwal, software=Picasa, copyright=\302\251 Raimund Linke / Radius Images], baseline, precision 8, 1600x1068, components 3\012- data

                                                Size:   98390

                                                Md5:    676ea6ab6b3c3a0da2a7413d4cf2476e

                                                Sha1:   c84de644056752234d415ea1ceac9c19ffb7bfe5

                                                Sha256: 46720e49100bf56b2835a7dfe0ec65d117b24525550745ee1172cac5e7495fef

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "452C606AFD6A34F8ECADC051E9C85BEBF48160D784C5B4D837A9FA72B1A09E84" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=21600 

                                        
                                            
Expires: Fri, 09 Dec 2022 15:50:26 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BDA1581606FCB70789AD28F161326B78F8E61132772FED2671CF5FA0A3E275A1" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=21595 

                                        
                                            
Expires: Fri, 09 Dec 2022 15:50:21 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BDA1581606FCB70789AD28F161326B78F8E61132772FED2671CF5FA0A3E275A1" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=21556 

                                        
                                            
Expires: Fri, 09 Dec 2022 15:49:42 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /cdn-cgi/image/f=auto,fit=cover,h=200,onerror=redirect,w=240/https://o.quizlet.com/yCDpgAOe0I2tHjZkvGHUHA.jpg HTTP/1.1 

                                        
                                            
Host: quizlet.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         104.16.18.221

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/avif 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
content-length: 4465 

                                        
                                            
cf-ray: 776cd6261a09b509-OSL 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
cache-control: public, max-age=946080000 

                                        
                                            
etag: "cf4ERg3tDfH4qO0KdZRENRd9E8tn_Y6ZiAhpgW8BJFDQ:6ee77605fe1e7609b1c2bb2df0a48724" 

                                        
                                            
last-modified: Fri, 25 Sep 2015 01:49:13 GMT 

                                        
                                            
vary: Accept, Accept-Encoding 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
cf-bgj: imgq:85,h2pri 

                                        
                                            
cf-resized: internal=ok/h q=0 n=9 c=0+38 v=2022.12.0 l=4465 

                                        
                                            
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none' 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
set-cookie: __cf_bm=biQCPMNaYEwQScJ3dyoCW6GvCPoPJBZWK9BVVR9_Rkg-1670579426-0-ATLrt2DXdftXRXGgHYgq/eraFczK5uXcsjsMCU/FZ47YL6HuacOtmJB+LwqMiNvS3O3MKh5dSeS9yFsyAWQ2q3A=; path=/; expires=Fri, 09-Dec-22 10:20:26 GMT; domain=.quizlet.com; HttpOnly; Secure; SameSite=None
_cfuvid=NWpVLi5X33AC6dt6Yh2VD6.v3pVv0OEB04L7pAXbqz4-1670579426462-0-604800000; path=/; domain=.quizlet.com; HttpOnly; Secure; SameSite=None 

                                        
                                            
server: cloudflare 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ISO Media, AVIF Image\012- data

                                                Size:   4465

                                                Md5:    4db4a85e8f6988c4422da0d2d57ef50b

                                                Sha1:   640978978890381fc68119e430f54ed82d26094c

                                                Sha256: 09f04bcbef553947ea00b568dd9ac750a5d8e1f53db7db91801b809a6dabfe61

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BDA1581606FCB70789AD28F161326B78F8E61132772FED2671CF5FA0A3E275A1" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=21556 

                                        
                                            
Expires: Fri, 09 Dec 2022 15:49:42 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /assets/product/Images/Medication%20Delivery%20Solutions%20(MDS)/blunt-fill-and-filter-needles_C_MPS_HY_1017-0006.png HTTP/1.1 

                                        
                                            
Host: static.bd.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         95.101.10.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp 

                                        
                                    
                                        

                                        
                                            
etag: "4d2780f5335b737fbed39649f269f198:1668332257.046728" 

                                        
                                            
last-modified: Thu, 17 Nov 2022 15:18:27 GMT 

                                        
                                            
server: Akamai Image Manager 

                                        
                                            
content-length: 11480 

                                        
                                            
cache-control: private, no-transform, max-age=710845 

                                        
                                            
expires: Sat, 17 Dec 2022 15:17:51 GMT 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server-timing: cdn-cache; desc=HIT, edge; dur=325 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  RIFF (little-endian) data, Web/P image\012- data

                                                Size:   11480

                                                Md5:    8d3b7c3b059dd3844cb9b44030f342bf

                                                Sha1:   4497e0f5ce0a6b9e169216594e2d835da94c58a1

                                                Sha256: 877e754535ea124a2fce619426e51ef995786b15e8c0db15f27fff423ea5a887

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /s/files/1/0293/6432/2403/products/hindustan-syringes-medical-devices-hmd-dispo-van-syringe-with-needle-2-5ml-16303254700131_grande.jpg?v=1603510442 HTTP/1.1 

                                        
                                            
Host: cdn.shopify.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         162.159.135.68

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
content-length: 20842 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: * 

                                        
                                            
cache-control: public, max-age=31557600 

                                        
                                            
link: <https://cdn.shopify.com/s/files/1/0293/6432/2403/products/hindustan-syringes-medical-devices-hmd-dispo-van-syringe-with-needle-2-5ml-16303254700131_grande.jpg>; rel="canonical" 

                                        
                                            
source-length: 58530 

                                        
                                            
source-type: image/jpeg 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
vary: Accept, Accept-Encoding 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-request-id: 782a4553-b7e5-446a-bad9-2dbfcbbe5876 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
strict-transport-security: max-age=15552000; includeSubDomains; preload 

                                        
                                            
x-dc: gcp-us-central1,us-central1 

                                        
                                            
last-modified: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
cf-cache-status: MISS 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2FoDwvDyveJfH5z%2BLLwtF9gV5Dq60wVuklbZjBXWCIwyaE4ArYT%2FT%2F%2ByD6TDE7cC%2F0kakvBj6v%2BYA15SaAdHHNqcOwh63kiAB7RYnM1l9K18FAk0thcsHrfoI0PbQa%2FH1w%3D%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
server-timing: imagery;dur=178.531, imageryFetch;dur=56.615, imageryProcess;dur=120.869;desc="image", cfRequestDuration;dur=544.000149 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 776cd6260ce90b3d-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  RIFF (little-endian) data, Web/P image\012- data

                                                Size:   20842

                                                Md5:    10fbdb5654f676d173931916ac6d3a27

                                                Sha1:   577fc7a2a2bed9b4f765e394707cd99da2c7cab5

                                                Sha256: ae69e987c8e36a1ea5f12ab6030b7eba7308463150fe4362758c7ed041f3f43b

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "79F249A9CB8F8A3AE88D874431FB95C1D3318CE70BD75C0B34D968A2E81489D5" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6014 

                                        
                                            
Expires: Fri, 09 Dec 2022 11:30:40 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /cms/attachment/2025083181/2044752279/gr1.jpg HTTP/1.1 

                                        
                                            
Host: els-jbs-prod-cdn.jbs.elsevierhealth.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         104.18.124.114

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
content-length: 36984 

                                        
                                            
cf-ray: 776cd62619b5b4ff-OSL 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
content-disposition: inline; filename=gr1.jpg 

                                        
                                            
last-modified: Fri, 06 Feb 2015 03:16:18 GMT 

                                        
                                            
strict-transport-security: max-age=15552000 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: MISS 

                                        
                                            
content-security-policy-report-only: default-src data: https: 'unsafe-inline' 'unsafe-eval'; report-uri https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report; report-to https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-webstats-respid: 71a0f9edc0be8fd515e833793a4f17c2 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
set-cookie: __cf_bm=GuIa5xrL2PLO5achUOQU0pSGGRdd43rsyVtks4Vk53M-1670579426-0-Adwh4ql+o2w+pKk8fQY5cLo1WhOAAX3z5q6pCIpmBGizW3KMGjwIaKPCMRWI0/pwiIV3P5HIjm325T1Dlf/Towo=; path=/; expires=Fri, 09-Dec-22 10:20:26 GMT; domain=.jbs.elsevierhealth.com; HttpOnly; Secure; SameSite=None 

                                        
                                            
server: cloudflare 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 113x113, segment length 16, comment: "Handmade Software, Inc. Image Alchemy v1.13", baseline, precision 8, 646x291, components 3\012- data

                                                Size:   36984

                                                Md5:    72a7de0809ed12a0254ff386db22f067

                                                Sha1:   76872c0b5f31b73f48b782dfa2126a78ffe57de6

                                                Sha256: ac0ae23734d44078090b4c1658988357f5ece68604c92699bf1e43cb5e0829ce

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /s/gts1p5/nq8Yzr71NwA HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: scaffolding on HTTPServer2 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /assets/product/Images/Medication%20Delivery%20Solutions%20(MDS)/nokor-fill-and-filter-needles_RC_MPS_HY_1016-0011.png?resize=704x400&rt=fit HTTP/1.1 

                                        
                                            
Host: static.bd.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         95.101.10.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp 

                                        
                                    
                                        

                                        
                                            
etag: "b8ab0114a28ad2332bdee4c9f23c0182:1668334125.854734" 

                                        
                                            
last-modified: Tue, 15 Nov 2022 09:53:01 GMT 

                                        
                                            
server: Akamai Image Manager 

                                        
                                            
x-serial: 1336 

                                        
                                            
x-check-cacheable: YES 

                                        
                                            
content-length: 16894 

                                        
                                            
cache-control: private, no-transform, max-age=518646 

                                        
                                            
expires: Thu, 15 Dec 2022 09:54:32 GMT 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server-timing: cdn-cache; desc=MISS, edge; dur=507, origin; dur=67 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  RIFF (little-endian) data, Web/P image\012- data

                                                Size:   16894

                                                Md5:    5a3065ca729819b10e9f036d9b92a82d

                                                Sha1:   6cfb63d0bbdd74150cd91b9e8ef11ce190a5ab9c

                                                Sha256: 074f05d174fef165446adba0aacd62449e3aca6bd48558057b5066cd47380b4d

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=86671 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
Etag: "6391b471-1d7" 

                                        
                                            
Expires: Sat, 10 Dec 2022 09:54:57 GMT 

                                        
                                            
Last-Modified: Thu, 08 Dec 2022 09:54:57 GMT 

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /assets/product/Images/Medication%20Delivery%20Solutions%20(MDS)/blunt-fill-and-filter-needles_C_MPS_HY_0816-0010.png HTTP/1.1 

                                        
                                            
Host: static.bd.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         95.101.10.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp 

                                        
                                    
                                        

                                        
                                            
etag: "89f0e292f2f653f4c8d10bd506adcb90:1668332253.404314" 

                                        
                                            
last-modified: Tue, 22 Nov 2022 16:17:42 GMT 

                                        
                                            
server: Akamai Image Manager 

                                        
                                            
content-length: 21794 

                                        
                                            
cache-control: private, no-transform, max-age=1146437 

                                        
                                            
expires: Thu, 22 Dec 2022 16:17:43 GMT 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
server-timing: cdn-cache; desc=HIT, edge; dur=624 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  RIFF (little-endian) data, Web/P image\012- data

                                                Size:   21794

                                                Md5:    f5a0ad36b74a93944cc04fcacafdf019

                                                Sha1:   a4e82077e69a723d58175e87b9156ffb211d553a

                                                Sha256: 9f9fb007d249cad1a4023c5d836823919d97960892a0afa276a78971a0a89575

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.dcocsp.cn 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         47.246.44.228

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: Tengine 

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Fri, 09 Dec 2022 09:13:38 GMT 

                                        
                                            
Last-Modified: Fri, 09 Dec 2022 00:25:20 GMT 

                                        
                                            
ETag: "63928070-1d7" 

                                        
                                            
Expires: Sun, 11 Dec 2022 00:25:20 GMT 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Ali-Swift-Global-Savetime: 1670577219 

                                        
                                            
Via: cache21.l2de2[0,0,304-0,H], cache11.l2de2[1,0], cache5.se1[0,0,200-0,H], cache5.se1[0,0] 

                                        
                                            
Age: 2208 

                                        
                                            
X-Cache: HIT TCP_MEM_HIT dirn:4:366688850 

                                        
                                            
X-Swift-SaveTime: Fri, 09 Dec 2022 09:22:46 GMT 

                                        
                                            
X-Swift-CacheTime: 3053 

                                        
                                            
Timing-Allow-Origin: * 

                                        
                                            
EagleId: 2ff62c9916705794270285701e 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.dcocsp.cn 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         47.246.44.228

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: Tengine 

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Fri, 09 Dec 2022 09:13:38 GMT 

                                        
                                            
Last-Modified: Fri, 09 Dec 2022 00:25:20 GMT 

                                        
                                            
ETag: "63928070-1d7" 

                                        
                                            
Expires: Sun, 11 Dec 2022 00:25:20 GMT 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Ali-Swift-Global-Savetime: 1670577219 

                                        
                                            
Via: cache21.l2de2[0,0,304-0,H], cache4.l2de2[1,0], cache4.se1[0,0,200-0,H], cache4.se1[1,0] 

                                        
                                            
Age: 2208 

                                        
                                            
X-Cache: HIT TCP_MEM_HIT dirn:4:111622231 

                                        
                                            
X-Swift-SaveTime: Fri, 09 Dec 2022 09:14:37 GMT 

                                        
                                            
X-Swift-CacheTime: 3542 

                                        
                                            
Timing-Allow-Origin: * 

                                        
                                            
EagleId: 2ff62c9816705794270281989e 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /wp-content/uploads/2019/09/ampule-filter-straw.png HTTP/1.1 

                                        
                                            
Host: www.registerednursern.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.190.220.62

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
content-length: 533780 

                                        
                                            
last-modified: Fri, 06 Sep 2019 20:05:24 GMT 

                                        
                                            
etag: "82514-591e7f564b591" 

                                        
                                            
x-cache-nxaccel: MISS 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 650 x 355, 8-bit/color RGB, non-interlaced\012- data

                                                Size:   533780

                                                Md5:    b2dab4a994a379e8c4ba41d7b91ff913

                                                Sha1:   99ffbe80b68eb0c12e27437a10b05e6aa906e3b4

                                                Sha256: f4b5a9ad4d64cf00d764ce77c9132c8fda79e3636799c2b6f829fb69d13ff2ac

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /-/media/M/Smiths-medical_com/Images/80x80/Jelco/BN1815F.JPG?h=391 HTTP/1.1 

                                        
                                            
Host: www.smiths-medical.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         13.107.213.53

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
content-length: 26226 

                                        
                                            
last-modified: Mon, 19 Apr 2021 12:17:15 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
etag: 6f79f7d3d3284824ad22e3fd31095c41 

                                        
                                            
server: Microsoft-IIS/10.0 

                                        
                                            
x-cache: TCP_MISS 

                                        
                                            
request-context: appId=cid-v1:44c41a89-26de-4324-b5b7-303da912e611 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-ua-compatible: IE=edge 

                                        
                                            
content-disposition: inline; filename="BN1815F.JPG" 

                                        
                                            
x-azure-ref-originshield: 04gSTYwAAAAASGNMetb1wSIZiV8W3znRqQU1TMDRFREdFMTkxNgAwN2FmZTc1MS0yNDc2LTRmMGMtYjRjZC0wOTczODFkZGM1ZTk= 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubdomains 

                                        
                                            
x-azure-ref: 04gSTYwAAAAD5JA78hPO/SqRxCFH2kDx9U1ZHMjBFREdFMDYxNQAwN2FmZTc1MS0yNDc2LTRmMGMtYjRjZC0wOTczODFkZGM1ZTk= 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 469x391, components 3\012- data

                                                Size:   26226

                                                Md5:    0ca593a92841cee33cc982f78f60a9aa

                                                Sha1:   98a8f0981ce74ea021a90c58826c4308040a2124

                                                Sha256: 60007c3501b3044b3eda36459f8351951a32b6425b1541fd29b280e602383d95

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "A59B2AFB2AF9318AC3E99FEF5542C6E845979149A9B0F6017B67EFF3D2308671" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=15228 

                                        
                                            
Expires: Fri, 09 Dec 2022 14:04:15 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /cf499c4a78c0296a203adcac3d025397/invoke.js HTTP/1.1 

                                        
                                            
Host: wagerprocuratorantiterrorist.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.243.61.225

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: a98beb263bc672cc6fb6926d84f6e747 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  exported SGML document, ASCII text, with very long lines (26951), with no line terminators

                                                Size:   9785

                                                Md5:    b1d9491a6d4d9c8709803e2c36af5f04

                                                Sha1:   9f32b45fd21dddd40d45dd2be6b90c48ecdde6f7

                                                Sha256: ead81000beaad01331c5e555c7d0311ae34c96f7273dc711d8745fc1c7e72e25

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /clinicalproceduresforsaferpatientcaretrubscn/wp-content/uploads/sites/472/2015/06/summer-2018-032.jpg HTTP/1.1 

                                        
                                            
Host: pressbooks.bccampus.ca 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         204.239.18.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:25 GMT 

                                        
                                            
Server: Apache/2.4.29 (Ubuntu) 

                                        
                                            
Last-Modified: Mon, 30 Jul 2018 21:02:44 GMT 

                                        
                                            
ETag: "1d652-5723dc8622500" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Content-Length: 120402 

                                        
                                            
Cache-Control: max-age=604800 

                                        
                                            
Expires: Fri, 16 Dec 2022 09:50:25 GMT 

                                        
                                            
Vary: User-Agent 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=14, height=0, manufacturer=samsung, model=SGH-I337M, orientation=upper-left, xresolution=2260, yresolution=2268, resolutionunit=2, software=Microsoft Windows Photo Viewer 6.1.7600.16385, datetime=2018:07:30 13:59:45, width=0], baseline, precision 8, 600x383, components 3\012- data

                                                Size:   120402

                                                Md5:    bd55501551dcaac1844581b58503a7ad

                                                Sha1:   7051d0b00da4f362a5e740c8cbce8d2af0921117

                                                Sha256: f68057cac7a69502c1782652eac6854bbd23ef0f2a4b5b4462dab55e2d9faf44

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /d648397c2f4ceb2049e9dbaf98cf46ac/invoke.js HTTP/1.1 

                                        
                                            
Host: wagerprocuratorantiterrorist.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.243.61.225

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: a697dba250979481358a471bbe230cc2 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  exported SGML document, ASCII text, with very long lines (26939), with no line terminators

                                                Size:   9778

                                                Md5:    4f78f6ab69e179950b8e7dfae1258580

                                                Sha1:   f78f2d9200a4fe5296d19aa8eb174680d3ba7174

                                                Sha256: f68718be9fba0ae244b69de4121e23e2ef69a2222cdcc0a6613babf89e9fa96f

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         143.204.42.165

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=103233 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Etag: "6391e720-1d7" 

                                        
                                            
Expires: Sat, 10 Dec 2022 14:31:00 GMT 

                                        
                                            
Last-Modified: Thu, 08 Dec 2022 13:31:12 GMT 

                                        
                                            
Server: ECS (nyb/1D14) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: tYMp3Kw2pRLbCWlfk43SB3FNikmV9Z2apbrKNKsQOy2WAT12QZCIvA== 

                                        
                                            
Age: 3588 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6077 

                                        
                                            
Expires: Fri, 09 Dec 2022 11:31:44 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6077 

                                        
                                            
Expires: Fri, 09 Dec 2022 11:31:44 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /stats HTTP/1.1 

                                        
                                            
Host: simplewebanalysis.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         52.28.211.11

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
content-length: 40 

                                        
                                            
server: fasthttp 

                                        
                                            
access-control-allow-origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
set-cookie: uid_id2=12b857b1-1ad7-4227-881a-3851f139cf56:2:1; expires=Mon, 06 Dec 2032 09:50:27 GMT; secure; SameSite=None 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   40

                                                Md5:    30c871ae932feef464449ca9c626d82b

                                                Sha1:   11dee0d1a28ba15ebecbb26e221101ae28869d17

                                                Sha256: a2d7521946ed4f1bf40a184c173fe12551c40186bb2ed000891e77418c938085

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6077 

                                        
                                            
Expires: Fri, 09 Dec 2022 11:31:44 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /c5b69fadf511d6654a7370dc0a3c7c81/invoke.js HTTP/1.1 

                                        
                                            
Host: wagerprocuratorantiterrorist.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.243.61.225

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: ffa41735e2f09000dcd11ae12bd68e74 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  exported SGML document, ASCII text, with very long lines (26945), with no line terminators

                                                Size:   9780

                                                Md5:    962f53ecb2bedd7e7148e44f3d44ceac

                                                Sha1:   af1b7c6509b3d1f8f59aa214497f4ce27d937f7b

                                                Sha256: d9cc1472bde372a308a4079bf9fb681d9d87ac9aebcc7cc63eefb639ff989ca4

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 1584 

                                        
                                            
x-amzn-requestid: 7743c8a6-118c-4c69-b833-a9e2f5561a54 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cw5VEGV8IAMFcOQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63903c20-41fdf6d004b388f51fa70833;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 07 Dec 2022 07:09:20 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: whmRQYshKD6d2Pz3Z0ZCCFr_MEPR1rEek7nVZqf5XeiWpt1LIcjvBQ== 

                                        
                                            
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 09 Dec 2022 03:28:14 GMT 

                                        
                                            
age: 22933 

                                        
                                            
etag: "9ad22ea868f3b72832243fd11315c68117c7542b" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   1584

                                                Md5:    4f6cfc43170be4dd0264f2b0b6bcc329

                                                Sha1:   9ad22ea868f3b72832243fd11315c68117c7542b

                                                Sha256: f5cc67d46241c2f5aebc2515bf8828889f8ceda8112b78cdf925a260b82fd833

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 12748 

                                        
                                            
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cjuciEptIAMFj9A= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA== 

                                        
                                            
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Thu, 08 Dec 2022 18:34:32 GMT 

                                        
                                            
age: 54955 

                                        
                                            
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   12748

                                                Md5:    730ba1a8edb79ba6f83b46d1ba5aed7b

                                                Sha1:   55a236fedf6f5f7ca2bb88ae13e20846a50fd36d

                                                Sha256: f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 7897 

                                        
                                            
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cwVM_F51IAMFunw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg== 

                                        
                                            
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 09 Dec 2022 03:38:26 GMT 

                                        
                                            
age: 22321 

                                        
                                            
etag: "7558222788f06623ddae6e883413e38e1146281e" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7897

                                                Md5:    8c3214044657f3b876d1f1848bca5684

                                                Sha1:   7558222788f06623ddae6e883413e38e1146281e

                                                Sha256: e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47563cf2-d887-4c1d-a3b9-0b5151226171.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8709 

                                        
                                            
x-amzn-requestid: 8c5094d3-3286-44db-bd3f-9369cd8220eb 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: c2LYGGm6oAMFn1A= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63925900-2ea563bc1b5aa87a0ebd6251;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Thu, 08 Dec 2022 21:37:04 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: OMn8ZLXg7eImX9gfKGhJMvxHVcfTuutGJjuZk9JU6iGBkXso6v8FuQ== 

                                        
                                            
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Thu, 08 Dec 2022 21:51:15 GMT 

                                        
                                            
etag: "cac4e03ae9857def8b094e005647c3e49c34d686" 

                                        
                                            
age: 43152 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8709

                                                Md5:    0321199622f614202a646f925521ace7

                                                Sha1:   cac4e03ae9857def8b094e005647c3e49c34d686

                                                Sha256: 042494598add540a49650d5556d33bf53f647d77e64fbf13f3d881ebf251a525

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 5188 

                                        
                                            
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: ck2-5G9joAMFlPA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ== 

                                        
                                            
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Thu, 08 Dec 2022 21:51:24 GMT 

                                        
                                            
age: 43143 

                                        
                                            
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   5188

                                                Md5:    fba9a3854df65740512f96efe7442e58

                                                Sha1:   8fbff7725c842d70e047c635a725723a9dc9c55a

                                                Sha256: 6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 6578 

                                        
                                            
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cw4beGG7oAMF8hA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw== 

                                        
                                            
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 09 Dec 2022 07:13:59 GMT 

                                        
                                            
age: 9388 

                                        
                                            
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6578

                                                Md5:    8546542f00ea29ef4df6ab8d3c7c2164

                                                Sha1:   5c8ffe91490006a9890188b53f875568c2b6bd8f

                                                Sha256: 7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         143.204.42.165

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
Last-Modified: Fri, 09 Dec 2022 08:45:29 GMT 

                                        
                                            
Server: ECS (nyb/1D15) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: WVr4FGPvrFKSmWO_Axi42ZZd_XPazQBZp8Z89lsDieJDpoQe13w2Bw== 

                                        
                                            
Age: 3898 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /stats HTTP/1.1 

                                        
                                            
Host: simplewebanalysis.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Cookie: uid_id2=12b857b1-1ad7-4227-881a-3851f139cf56:2:1 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         52.28.211.11

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
content-length: 40 

                                        
                                            
server: fasthttp 

                                        
                                            
access-control-allow-origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   40

                                                Md5:    30c871ae932feef464449ca9c626d82b

                                                Sha1:   11dee0d1a28ba15ebecbb26e221101ae28869d17

                                                Sha256: a2d7521946ed4f1bf40a184c173fe12551c40186bb2ed000891e77418c938085

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /stats HTTP/1.1 

                                        
                                            
Host: simplewebanalysis.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         52.28.211.11

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
content-length: 40 

                                        
                                            
server: fasthttp 

                                        
                                            
access-control-allow-origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
set-cookie: uid_id2=339281db-cab0-4430-ba0c-82d322fb5499:1:1; expires=Mon, 06 Dec 2032 09:50:27 GMT; secure; SameSite=None 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   40

                                                Md5:    90baf822d1e5590a28192688b0a0ca56

                                                Sha1:   f431673c83e39295826f05687b500cc45e3ab250

                                                Sha256: 3da5989e0b93e8fd69e45515062625b34420bb9d085a3d83e96551e31b51fe1f

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 17508 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 07 Dec 2022 19:44:35 GMT 

                                        
                                            
expires: Thu, 07 Dec 2023 19:44:35 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 137152 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:41 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data

                                                Size:   17508

                                                Md5:    7fbdfaab6bd8b191496ffe1ef1b9e748

                                                Sha1:   e9e592f8498d489d8000f3a4cfb1bb447f251edd

                                                Sha256: bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /images?q=tbn:ANd9GcQh_l3eQ5xwiPy07kGEXjmjgmBKBRB7H2mRxCGhv1tFWg5c_mWT HTTP/1.1 

                                        
                                            
Host: encrypted-tbn0.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.174

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn" 

                                        
                                            
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]} 

                                        
                                            
content-length: 2347 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Fri, 09 Dec 2022 09:38:25 GMT 

                                        
                                            
expires: Sat, 09 Dec 2023 09:38:25 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 722 

                                        
                                            
last-modified: Tue, 22 Dec 2015 19:19:47 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 276x183, components 3\012- data

                                                Size:   2347

                                                Md5:    9bef96c7479adb40f793c7b0f4f2c33d

                                                Sha1:   aff2b02e9af3e14faa9d22677eda1e2e6bd481cc

                                                Sha256: fcf9fdd5ab81da78cbca3ca589d8ff4c608a00f3d90665f2dc1aa8b9636998d9

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /blogger_img_proxy/ANbyha0wLLfuKWEZOMrxulz8etvU5eplCImD30pTusNK1yvgusczid2rolDbD_y3v2Dav3hJcT_dIcIJneqJcTGHrm2R4z3sPhbuYxW1cT1O_TNfCOTZAx3mjAbS944Zw3bRirAI8KS0ZJTEE4HmFHt8_XDCTNYDhE4E0oMQwHQfhw=s0-d HTTP/1.1 

                                        
                                            
Host: lh3.googleusercontent.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         216.58.207.225

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
access-control-expose-headers: Content-Length 

                                        
                                            
expires: Sat, 10 Dec 2022 09:50:27 GMT 

                                        
                                            
cache-control: public, max-age=86400, no-transform 

                                        
                                            
content-disposition: attachment;filename="unnamed.jpg" 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:27 GMT 

                                        
                                            
server: fife 

                                        
                                            
content-length: 131005 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Picasa], baseline, precision 8, 1024x723, components 3\012- data

                                                Size:   131005

                                                Md5:    ee97a8e287a13dce4d3d5dca6cc472d4

                                                Sha1:   f39f85760071c5ccd36bd0a01963b68e4104793f

                                                Sha256: 4e243fcd73abbc807078c211f4e5f4e4cc92cd0ea1e59e156dbb02bb3681448b

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.blogger.com/ 

                                        
                                            
Origin: https://www.blogger.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/ttf 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 20776 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Tue, 06 Dec 2022 16:11:21 GMT 

                                        
                                            
expires: Wed, 06 Dec 2023 16:11:21 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 236347 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:42 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-Regularhtt\012- data

                                                Size:   20776

                                                Md5:    776741f74c745ce6e549befb01db1d6d

                                                Sha1:   47cc22e349ebc7a35a8dd3c397924ed59493641b

                                                Sha256: 784d79bd9a3bdfb3e6866567633309410f43631b42ce67a328ee5963fc9a6a0f

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /blogger_img_proxy/ANbyha0KFJVXfd5scJbK3N8o61PxgMQJR5jCG2HlcisANBc5kQHZ1HyCiZpHtMBVsVQv7HT0FnXK8rKonfAY31Nl33j1VP_BOpXPD8Y4XnEb5tRlr_U8UjHFghf-O45cR2hQNb3vO4tv1GThkQhgr-Lv-nJ5uug51q1vsBxqyRA2jbOL5Lz2S8sp=s0-d HTTP/1.1 

                                        
                                            
Host: lh3.googleusercontent.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         216.58.207.225

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
access-control-expose-headers: Content-Length 

                                        
                                            
expires: Sat, 10 Dec 2022 09:50:28 GMT 

                                        
                                            
cache-control: public, max-age=86400, no-transform 

                                        
                                            
content-disposition: attachment;filename="unnamed.jpg" 

                                        
                                            
vary: Origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
server: fife 

                                        
                                            
content-length: 93214 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Picasa], baseline, precision 8, 745x1024, components 3\012- data

                                                Size:   93214

                                                Md5:    761ca778203365d113034fde3f4d2e67

                                                Sha1:   42ecd9bd31da4d2a6108e09a9912e78c38d3c844

                                                Sha256: 8e313cb59457c16073af921c7df2e0da19fc5dca2e1d9b58fd429ac7a4eac34f

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "456B42BAB2452C8156C29F647EA2C47339C76AEBECFFBD2752151E9898D37D78" 

                                        
                                            
Last-Modified: Fri, 09 Dec 2022 01:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=9998 

                                        
                                            
Expires: Fri, 09 Dec 2022 12:37:06 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "DE86EBD21D1BE589D03E6D7CC588D99898726E330B4F92364818D69084DFC8B6" 

                                        
                                            
Last-Modified: Fri, 09 Dec 2022 01:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=15065 

                                        
                                            
Expires: Fri, 09 Dec 2022 14:01:33 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /728.js HTTP/1.1 

                                        
                                            
Host: iklan.diraya.my.id 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         172.67.217.19

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:26 GMT 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cache-control: public, max-age=14400, must-revalidate 

                                        
                                            
etag: W/"de65e61ff9c1509429df8c0dc03eaa4b" 

                                        
                                            
referrer-policy: strict-origin-when-cross-origin 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U22w1QKTo9l9zcA0aoHkNlr9bFGeyRmp8hO2CRFHZor35LDfQK0omfvsqbpCfn6rFhs1F8nqs%2Bd6PpqhXG%2BAH0824Q17jyMLkKGs63%2FBazQ%2Bq%2FlaOkuxLGn19tMezcVafm2Cwec%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: REVALIDATED 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 776cd62728d0b52d-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   689

                                                Md5:    40e55f4a9cd9aa65da0aa70f00cca2b1

                                                Sha1:   9419d79c31b8dcb5124df9b1626bbbb628f60b04

                                                Sha256: 6d7b4e8e35a7a400f0638c8311b07b7843a963fe3c287a92f1970d32d7374742

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /watch.951987669446.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=339281db-cab0-4430-ba0c-82d322fb5499%3A1%3A1 HTTP/1.1 

                                        
                                            
Host: newsbeunity.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.243.61.225

                                        
                                            HTTP/1.1 307 Temporary Redirect 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Custom-Referer: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Location: https://newsbeunity.com/watch.951987669446.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=339281db-cab0-4430-ba0c-82d322fb5499%3A1%3A1&shu=7a59233129ee55ef9b9b3fe9656f1e6098971bf35f79c06ebf094046852aa82aec15102050491f0ec6eeedd2e9eb51150ffd71d080ce764e924d9e01996822780a2c3dfa61a9c503d31055a00e30f11d223b10&pst=1670579488&rmtc=t 

                                        
                                            
Set-Cookie: u_pl=16006454; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.m2nTLm1Sw1VY5sjriNwhbQDawKRqcXG7Ow5CWkxQ7KM; expires=Fri, 09 Dec 2022 09:51:28 GMT; secure; SameSite=None 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: 1a9da6c6438e7e17d63472656289ca55 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - quad9: Sinkholed

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 

                                        
                                            
Host: www.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.blogger.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         216.58.207.228

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
expires: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
cache-control: private, max-age=300 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
content-security-policy: frame-ancestors 'self' 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
content-length: 665 

                                        
                                            
server: GSE 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (1034), with no line terminators

                                                Size:   665

                                                Md5:    34e37af4d526255a20a2056cd5f4addf

                                                Sha1:   bcac186d6a49539e69a3f67aa08d0188966f5623

                                                Sha256: 51a2c479b272414cb9d7e1ec62edffbad01217068b73d516d33cb8f26a4fc634

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1 

                                        
                                            
Host: www.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.blogger.com/ 

                                        
                                            
Origin: https://www.blogger.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" 

                                        
                                            
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} 

                                        
                                            
content-length: 162976 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Fri, 09 Dec 2022 08:12:00 GMT 

                                        
                                            
expires: Sat, 09 Dec 2023 08:12:00 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
last-modified: Mon, 14 Nov 2022 03:01:59 GMT 

                                        
                                            
age: 5908 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (730)

                                                Size:   162976

                                                Md5:    79d18cf4265108d7cecca1bf4ada6109

                                                Sha1:   e51d0285a545381d4c39e9e0292a650ffeeecbb9

                                                Sha256: 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C94C6172D375BC174B0DEA4F1C0A4471B5934AF2ACB1B3B033037A364CFE7880" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6208 

                                        
                                            
Expires: Fri, 09 Dec 2022 11:33:56 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /watch.1164080117293.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=12b857b1-1ad7-4227-881a-3851f139cf56%3A2%3A1 HTTP/1.1 

                                        
                                            
Host: restorationpencil.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.243.59.20

                                        
                                            HTTP/1.1 307 Temporary Redirect 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.17.9 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Custom-Referer: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Location: https://restorationpencil.com/watch.1164080117293.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=12b857b1-1ad7-4227-881a-3851f139cf56%3A2%3A1&shu=6e72cc3982fac59201a7d1efb7e26a44a0f74cff6e2a07df5470b660bde10a67d8b38887a4f383e64852ff06c43b6987cea5c5eb09bfd7c97d9fdc7b469c6bef21dac82f1ecbf727d82bf39b839a60bd386dc1&pst=1670579488&rmtc=t 

                                        
                                            
Set-Cookie: u_pl=16704213; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.ra5hyDr41pij0ZDeMNdFzvBdb8fC8hSWtrywa1KyaHU; expires=Fri, 09 Dec 2022 09:51:28 GMT; secure; SameSite=None 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: 9be1aa70c7f89d6b6a9f892e8724dcf5 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /watch.951987669446.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=339281db-cab0-4430-ba0c-82d322fb5499%3A1%3A1&shu=7a59233129ee55ef9b9b3fe9656f1e6098971bf35f79c06ebf094046852aa82aec15102050491f0ec6eeedd2e9eb51150ffd71d080ce764e924d9e01996822780a2c3dfa61a9c503d31055a00e30f11d223b10&pst=1670579488&rmtc=t HTTP/1.1 

                                        
                                            
Host: newsbeunity.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: u_pl=16006454; ain=eyJhbGciOiJIUzI1NiJ9.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.m2nTLm1Sw1VY5sjriNwhbQDawKRqcXG7Ow5CWkxQ7KM 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.243.61.225

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Custom-Referer: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Set-Cookie: uid_id2=339281db-cab0-4430-ba0c-82d322fb5499:1:1; expires=Fri, 16 Dec 2022 09:50:28 GMT; secure; SameSite=None
iprc7c0bab51535ae1ab50bfc0ef8dfa27c0=3569806; expires=Fri, 09 Dec 2022 13:50:28 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
uncs=1; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: d10f0c52fc836499b5b65d49355579a3 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (2617)

                                                Size:   2083

                                                Md5:    57edadcf57cfe9f3978e44c91e116057

                                                Sha1:   24c41675f9ecdc13bedd9f91d011eef47db5ea4a

                                                Sha256: a67e6302b6b8eaf577de54e1a74a6bcf3ae588182e12de35dc64bc09b0f6a802

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - quad9: Sinkholed

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 

                                        
                                            
Host: play.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Access-Control-Request-Method: POST 

                                        
                                            
Access-Control-Request-Headers: x-goog-authuser 

                                        
                                            
Referer: https://www.blogger.com/ 

                                        
                                            
Origin: https://www.blogger.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.110

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/plain; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: https://www.blogger.com 

                                        
                                            
access-control-allow-methods: GET, POST, OPTIONS 

                                        
                                            
access-control-max-age: 86400 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
server: Playlog 

                                        
                                            
content-length: 0 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
set-cookie: CONSENT=PENDING+691; expires=Sun, 08-Dec-2024 09:50:28 GMT; path=/; domain=.google.com; Secure 

                                        
                                            
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
expires: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
cache-control: private 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /watch.1164080117293.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=12b857b1-1ad7-4227-881a-3851f139cf56%3A2%3A1&shu=6e72cc3982fac59201a7d1efb7e26a44a0f74cff6e2a07df5470b660bde10a67d8b38887a4f383e64852ff06c43b6987cea5c5eb09bfd7c97d9fdc7b469c6bef21dac82f1ecbf727d82bf39b839a60bd386dc1&pst=1670579488&rmtc=t HTTP/1.1 

                                        
                                            
Host: restorationpencil.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: u_pl=16704213; ain=eyJhbGciOiJIUzI1NiJ9.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.ra5hyDr41pij0ZDeMNdFzvBdb8fC8hSWtrywa1KyaHU 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         192.243.59.20

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.17.9 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Custom-Referer: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Set-Cookie: uid_id2=12b857b1-1ad7-4227-881a-3851f139cf56:2:1; expires=Fri, 16 Dec 2022 09:50:28 GMT; secure; SameSite=None
iprcbf138ac310b05f310c99f5b89e37eb8f=3569808; expires=Fri, 09 Dec 2022 13:50:28 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
uncs=1; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: 23c77249add700ac1ed6e8e997e449ea 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (2621)

                                                Size:   2087

                                                Md5:    5c15f73f455deca619a56e53d7f13506

                                                Sha1:   142e693ff0862366045e87b054be983244eb722d

                                                Sha256: f5377f63ba01c5bd870934e15bd469a668d398e8ae98de88e8f78334f9b58e78

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 

                                        
                                            
Host: play.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.blogger.com/ 

                                        
                                            
X-Goog-AuthUser: 0 

                                        
                                            
Content-Type: application/x-www-form-urlencoded;charset=utf-8 

                                        
                                            
Content-Length: 2975 

                                        
                                            
Origin: https://www.blogger.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         142.250.74.110

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/plain; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: https://www.blogger.com 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: X-Playlog-Web 

                                        
                                            
content-encoding: gzip 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
server: Playlog 

                                        
                                            
cache-control: private 

                                        
                                            
content-length: 131 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
set-cookie: CONSENT=PENDING+092; expires=Sun, 08-Dec-2024 09:50:28 GMT; path=/; domain=.google.com; Secure 

                                        
                                            
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
expires: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   131

                                                Md5:    babb6f090aeebc6f421624475b4aefff

                                                Sha1:   06079b7547949822c118224e51604f4c5ebf80c8

                                                Sha256: b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /watch.901922687265.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=12b857b1-1ad7-4227-881a-3851f139cf56%3A2%3A1 HTTP/1.1 

                                        
                                            
Host: stealcalmgenus.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         173.233.137.52

                                        
                                            HTTP/1.1 307 Temporary Redirect 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Custom-Referer: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Location: https://stealcalmgenus.com/watch.901922687265.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=12b857b1-1ad7-4227-881a-3851f139cf56%3A2%3A1&shu=226b3324b563308313b885e3a88b8b50ec4825bcb058210280c0a756fad49d2c60766c9cd2d85d0647ee91ba6b326af477b6f0832e83d1261cc8a36b63bd0f0c8ffd74dddb818105b8b048ff89de94f0a52d4eeb7090d46647448d4403e916eb&pst=1670579488&rmtc=t 

                                        
                                            
Set-Cookie: u_pl=16704211; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.pFS6zW6m2j9OZuXkfsZJhifX2tTCVbMbd0YSzve6vnY; expires=Fri, 09 Dec 2022 09:51:28 GMT; secure; SameSite=None 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: 7f6ac909e433b8de828b0b933f7b13f2 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - quad9: Sinkholed

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "EC4B08D6A0C6FD5733C3CEAF542B37EBA10869511C0A782ECE7C75BD74EE1084" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=7635 

                                        
                                            
Expires: Fri, 09 Dec 2022 11:57:43 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1 

                                        
                                            
Host: cdn.cloudimagesb.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         45.133.44.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
content-length: 144379 

                                        
                                            
server: nginx/1.17.6 

                                        
                                            
last-modified: Wed, 27 Jul 2022 11:07:21 GMT 

                                        
                                            
etag: "62e11c69-233fb" 

                                        
                                            
expires: Sun, 11 Dec 2022 09:50:28 GMT 

                                        
                                            
cache-control: max-age=172800 

                                        
                                            
x-proxy-cache: HIT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   144379

                                                Md5:    33c304429dc1a4408a96e6a74ffa2feb

                                                Sha1:   c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04

                                                Sha256: dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1 

                                        
                                            
Host: cdn.cloudimagesb.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         45.133.44.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
content-length: 105910 

                                        
                                            
server: nginx/1.17.6 

                                        
                                            
last-modified: Wed, 27 Jul 2022 11:08:06 GMT 

                                        
                                            
etag: "62e11c96-19db6" 

                                        
                                            
expires: Sun, 11 Dec 2022 09:50:28 GMT 

                                        
                                            
cache-control: max-age=172800 

                                        
                                            
x-proxy-cache: HIT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   105910

                                                Md5:    a36b92bb68d9b579458560ba9b94862a

                                                Sha1:   782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6

                                                Sha256: 9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /watch.901922687265.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22filter%22%2C%22needles%22%2C%22are%22%2C%22used%22%2C%22with%22%2C%22which%22%2C%22of%22%2C%22the%22%2C%22following%22%5D&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F2022%2F04%2Ffilter-needles-are-used-with-which-of.html&tz=0&dev=e&res=12.1055&uuid=12b857b1-1ad7-4227-881a-3851f139cf56%3A2%3A1&shu=226b3324b563308313b885e3a88b8b50ec4825bcb058210280c0a756fad49d2c60766c9cd2d85d0647ee91ba6b326af477b6f0832e83d1261cc8a36b63bd0f0c8ffd74dddb818105b8b048ff89de94f0a52d4eeb7090d46647448d4403e916eb&pst=1670579488&rmtc=t HTTP/1.1 

                                        
                                            
Host: stealcalmgenus.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: u_pl=16704211; ain=eyJhbGciOiJIUzI1NiJ9.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.pFS6zW6m2j9OZuXkfsZJhifX2tTCVbMbd0YSzve6vnY 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         173.233.137.52

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:28 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Custom-Referer: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Origin: https://hassannewswhitaker.blogspot.com 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Set-Cookie: uid_id2=12b857b1-1ad7-4227-881a-3851f139cf56:2:1; expires=Fri, 16 Dec 2022 09:50:28 GMT; secure; SameSite=None
iprc3652afbe515a0b3948be32ac62026efc=2717341; expires=Sat, 10 Dec 2022 11:50:28 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
uncs=1; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
pdhtkv32=true; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None
uncs32=1; expires=Sat, 10 Dec 2022 09:50:28 GMT; secure; SameSite=None 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: 91c3af27883d934c566cd8ce1568ef04 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (601)

                                                Size:   640

                                                Md5:    6f790a735f894c1ec95da58cf5f3b713

                                                Sha1:   632b04fdedbbab714f452dc02e0e2c2e029b7e33

                                                Sha256: 0404e59c18e81efeb1e92af72199d7c68b243616360c209f49c5fd82bdd58ee4

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - quad9: Sinkholed

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "FCF240A4CA086341AB65066AFC0674C72D8F1467F3798DA9E214D6B730077301" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=14783 

                                        
                                            
Expires: Fri, 09 Dec 2022 13:56:52 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:29 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=16704211 HTTP/1.1 

                                        
                                            
Host: www.spikereekvelocity.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://hassannewswhitaker.blogspot.com/ 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         173.233.137.44

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:29 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Set-Cookie: u_pl=16122660; expires=Sat, 10 Dec 2022 09:50:29 GMT
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjEyMjY2MCwiayI6Ijg2MzcwNWJjYmI0YjZhNTU0ZGRiMzU5NjY1Mzk1YTZmIiwic2lkIjoiMTY3MDQyMTEiLCJpc2lkIjoyLCJhc2lkIjoxLCJ6aWQiOjE0NjQxNSwicGlkIjo5NzI5OSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjI4LCJwdCI6NCwicGsiOiJkeWZjMWswOSIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6ZmFsc2UsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9oYXNzYW5uZXdzd2hpdGFrZXIuYmxvZ3Nwb3QuY29tLyJ9fQ.ZM8AoCn-BY4jG1C0ZIV7eYoLTljQr-jfb3F1QgsDSDQ; expires=Fri, 09 Dec 2022 09:51:29 GMT 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: a017fcdbe65096516b5388b26f95ce0c 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text

                                                Size:   1272

                                                Md5:    72a1cad170798f956d1394b7f166996a

                                                Sha1:   d7395c061c311f20cc96f795b182deaba6bb279f

                                                Sha256: 658b93177d85c5739ad78a118357f98f53e5a3e9f5a89632e7e9dc377342cd1e

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - quad9: Sinkholed

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            GET /dyfc1k09?shu=29f8ac6046236b7919f56b8689781ce0266366ec39b856c8a2a432bbc173121c1319078f82dd31293a8aaba730ed811dcce4ef5758c097b22e85c496ee18ca9f0f75acaa4361c12eb219c142b1fe69cc2780372225f7daa08cedb482faca1871&pst=1670579489&rmtc=t&uuid=&pii=&in=false&key=863705bcbb4b6a554ddb359665395a6f&refer=https%3A%2F%2Fhassannewswhitaker.blogspot.com%2F&psid=16704211 HTTP/1.1 

                                        
                                            
Host: www.spikereekvelocity.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.spikereekvelocity.com/dyfc1k09?key=0f22c1fd609f13cb7947c8cabfe1a90d&submetric=16122660 

                                        
                                            
Cookie: u_pl=16122660; ain=eyJhbGciOiJIUzI1NiJ9.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.ZM8AoCn-BY4jG1C0ZIV7eYoLTljQr-jfb3F1QgsDSDQ; cjs=t 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         173.233.137.44

                                        
                                            HTTP/1.1 302 Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Server: nginx/1.19.5 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:29 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Location: https://adserving.unibet.com/redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=16122660 

                                        
                                            
Set-Cookie: pdhtkv=true; expires=Sat, 10 Dec 2022 09:50:29 GMT
uncs=1; expires=Sat, 10 Dec 2022 09:50:29 GMT
pdhtkv28=true; expires=Sat, 10 Dec 2022 09:50:29 GMT
uncs28=1; expires=Sat, 10 Dec 2022 09:50:29 GMT 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: a3d948bed0bcf68748fdea5250b223df 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - quad9: Sinkholed

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            GET /redirect.aspx?bid=37950&pid=15135578&sref=ADST&ADST=16122660 HTTP/1.1 

                                        
                                            
Host: adserving.unibet.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.spikereekvelocity.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         23.36.79.43

                                        
                                            HTTP/2 307 Temporary Redirect 

                                        
                                            
content-type: text/html 

                                        
                                    
                                        

                                        
                                            
content-length: 0 

                                        
                                            
location: https://www.unibet.nu/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_5988BFEE9B50410EB2A685F677386F42&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950 

                                        
                                            
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies" 

                                        
                                            
x-aspnet-version: 4.0.30319 

                                        
                                            
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0 

                                        
                                            
access-control-expose-headers: Request-Context 

                                        
                                            
expires: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
cache-control: max-age=0, no-cache, no-store 

                                        
                                            
pragma: no-cache 

                                        
                                            
date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670579429990)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2022129950%22%7d%5d; SameSite=None;; domain=.unibet.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228538413988%7c1%22%7d%5d; domain=.unibet.com; expires=Sun, 09-Dec-3021 09:50:30 GMT; path=/; secure; SameSite=Strict 

                                        
                                            
server-timing: cdn-cache; desc=MISS, edge; dur=40, origin; dur=135 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_5988BFEE9B50410EB2A685F677386F42&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950 HTTP/1.1 

                                        
                                            
Host: www.unibet.nu 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.spikereekvelocity.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         85.184.96.0

                                        
                                            HTTP/2 301 Moved Permanently 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
location: https://www.unibet.nu:443/stan/redirecttocampaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_5988BFEE9B50410EB2A685F677386F42&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950&landingPageUrl=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950 

                                        
                                            
set-cookie: JSESSIONID=node01q65dtv23ub1i7nujr5jbx7g34789510.node0; Path=/stan; Secure; HttpOnly; SameSite=Strict
__ucbt=node01q65dtv23ub1i7nujr5jbx7g3; Path=/; Domain=.unibet.nu; Expires=Sun, 08-Dec-2024 09:50:30 GMT; Max-Age=63072000; Secure; SameSite=None
uniattr=ST.0.T; Path=/; Domain=.unibet.nu; Expires=Sun, 08-Dec-2024 09:50:30 GMT; Max-Age=63072000; Secure; SameSite=None
uniattr_ref="https://www.spikereekvelocity.com/"; Path=/; Domain=.unibet.nu; Expires=Sun, 08-Dec-2024 09:50:30 GMT; Max-Age=63072000; Secure; SameSite=None
UNIBET_REQUEST_URL=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFILIATE_REQUEST_URL=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
UNIBET_INTERNAL_CAMPAIGN_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
affid=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
netwid=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
CLAIM_CODE=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
REGISTRATION_CODE=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
campaignId=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
affiliateId=1; Path=/; Domain=.unibet.nu; Secure; SameSite=None
B-TAG=127656177_5988BFEE9B50410EB2A685F677386F42; Path=/; Domain=.unibet.nu; Secure; SameSite=None
REGISTRATION_CODE=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
BID=37950; Path=/; Domain=.unibet.nu; Secure; SameSite=None
PID=68246908; Path=/; Domain=.unibet.nu; Secure; SameSite=None
CHID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
REFERER=https%3A%2F%2Fwww.spikereekvelocity.com%2F; Path=/; Domain=.unibet.nu; Secure; SameSite=None
UNIBET_INTERNAL_CAMPAIGN_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
UNIBET_REQUEST_URL=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFILIATE_REQUEST_URL=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFILIATE_CAMPAIGN_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AMS_INVITE_CHAT_ACCEPTED=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AMS_INVITE_CHAT_DECLINED=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
BOCAID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
PRODUCT_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
AFFILIATE_REQUEST_URL=https%3A%2F%2Fwww.unibet.nu%2Fstan%2Fcampaign.do%3FcmpId%3D2799402%26affiliateId%3D1%26unibetTarget%3D%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%26targetDomain%3Dhttps%3A%2F%2Fwelcome.unibet.com%26btag%3D127656177_5988BFEE9B50410EB2A685F677386F42%26sref%3DADST%26ADST%3D16122660%26affiliateId%3D1%26pid%3D68246908%26bid%3D37950; Path=/; Domain=.unibet.nu; Secure; SameSite=None
AFFILIATE_CAMPAIGN_ID=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
campaignId=; Path=/; Domain=.unibet.nu; Expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0; Secure; SameSite=None
clientId=polopoly_desktop; Domain=www.unibet.nu; Path=/; SameSite=None; Secure 

                                        
                                            
referer: https://www.spikereekvelocity.com/ 

                                        
                                            
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate 

                                        
                                            
expires: Thu, 01 Jan 1970 00:00:00 GMT, Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
server: kindred-loadbalancer 

                                        
                                            
strict-transport-security: max-age=63072000; preload 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *; 

                                        
                                            
x-browser-class: A 

                                        
                                            
x-os-class: M 

                                        
                                            
x-ooops-debug: /500-pages/www.unibet.nu/index.html 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /stan/redirecttocampaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=127656177_5988BFEE9B50410EB2A685F677386F42&sref=ADST&ADST=16122660&affiliateId=1&pid=68246908&bid=37950&landingPageUrl=https%3A%2F%2Fwelcome.unibet.com%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%3Fmktid%3D1%3A127656177%3A68246908-37950 HTTP/1.1 

                                        
                                            
Host: www.unibet.nu 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.spikereekvelocity.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: __ucbt=node01q65dtv23ub1i7nujr5jbx7g3; uniattr=ST.0.T; uniattr_ref="https://www.spikereekvelocity.com/"; affiliateId=1; B-TAG=127656177_5988BFEE9B50410EB2A685F677386F42; BID=37950; PID=68246908; REFERER=https%3A%2F%2Fwww.spikereekvelocity.com%2F; AFFILIATE_REQUEST_URL=https%3A%2F%2Fwww.unibet.nu%2Fstan%2Fcampaign.do%3FcmpId%3D2799402%26affiliateId%3D1%26unibetTarget%3D%2Fnu%2Fpop%2Fsportsbook%2Fmultisports%2Findex.html%26targetDomain%3Dhttps%3A%2F%2Fwelcome.unibet.com%26btag%3D127656177_5988BFEE9B50410EB2A685F677386F42%26sref%3DADST%26ADST%3D16122660%26affiliateId%3D1%26pid%3D68246908%26bid%3D37950; clientId=polopoly_desktop 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         85.184.96.0

                                        
                                            HTTP/2 301 Moved Permanently 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
location: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_5988BFEE9B50410EB2A685F677386F42&bid=37950&campaignId=2799402&pid=68246908 

                                        
                                            
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate 

                                        
                                            
expires: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
server: kindred-loadbalancer 

                                        
                                            
strict-transport-security: max-age=63072000; preload 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *; 

                                        
                                            
x-browser-class: A 

                                        
                                            
x-os-class: M 

                                        
                                            
x-ooops-debug: /500-pages/www.unibet.nu/index.html 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.33.119.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "68DBF4281845E78B9334A2DFFC5786B1B5DECC766CB4131C18D480502B96E6E6" 

                                        
                                            
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=10736 

                                        
                                            
Expires: Fri, 09 Dec 2022 12:49:26 GMT 

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /nu/pop/sportsbook/multisports/1-styles.css HTTP/1.1 

                                        
                                            
Host: welcome.unibet.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_5988BFEE9B50410EB2A685F677386F42&bid=37950&campaignId=2799402&pid=68246908 

                                        
                                            
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670579429990)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2022129950%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228538413988%7c1%22%7d%5d 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         104.18.24.188

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
cache-control: public, max-age=900, immutable 

                                        
                                            
content-md5: zXkBqwBMviPPaK5rBIapmA== 

                                        
                                            
last-modified: Mon, 21 Nov 2022 12:34:11 GMT 

                                        
                                            
etag: W/"0x8DACBBCB117460B" 

                                        
                                            
x-ms-request-id: dbafa778-701e-0034-4703-0321ca000000 

                                        
                                            
x-ms-version: 2014-02-14 

                                        
                                            
x-ms-lease-status: unlocked 

                                        
                                            
x-ms-lease-state: available 

                                        
                                            
x-ms-blob-type: BlockBlob 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 350594 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 776cd6421d93b523-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   5742

                                                Md5:    76716d405ae8a4b4a76a27ef51da0830

                                                Sha1:   1b309b16418b5c11c1d3690f69343079e007ac75

                                                Sha256: 7ebef5aeaa910b41c9240027175b8c27d5434787df50d7974378da619a2f35b1

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /nu/pop/sportsbook/multisports/1-main.js HTTP/1.1 

                                        
                                            
Host: welcome.unibet.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_5988BFEE9B50410EB2A685F677386F42&bid=37950&campaignId=2799402&pid=68246908 

                                        
                                            
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670579429990)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2022129950%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228538413988%7c1%22%7d%5d 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         104.18.24.188

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
cache-control: public, max-age=900, immutable 

                                        
                                            
content-md5: BPxI3njL/F0VV+nfOZx3Mw== 

                                        
                                            
last-modified: Mon, 21 Nov 2022 12:34:17 GMT 

                                        
                                            
etag: W/"0x8DACBBCB50B45F5" 

                                        
                                            
x-ms-request-id: 10dfb792-f01e-0077-0703-03c796000000 

                                        
                                            
x-ms-version: 2014-02-14 

                                        
                                            
x-ms-lease-status: unlocked 

                                        
                                            
x-ms-lease-state: available 

                                        
                                            
x-ms-blob-type: BlockBlob 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 350594 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 776cd6421d95b523-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, Unicode text, UTF-8 text

                                                Size:   1974

                                                Md5:    507476286a7540eee55efc2d545ee2c7

                                                Sha1:   fdb3795d3d1d819eb27b6d25e14a1d0fa3ae1563

                                                Sha256: 042f0ac123ea005a07b8378dd2b90984e55684c77d297f227d68c39360f748d6

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1 

                                        
                                            
Host: ajax.googleapis.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://welcome.unibet.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" 

                                        
                                            
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 30399 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Tue, 06 Dec 2022 11:09:22 GMT 

                                        
                                            
expires: Wed, 06 Dec 2023 11:09:22 GMT 

                                        
                                            
cache-control: public, max-age=31536000, stale-while-revalidate=2592000 

                                        
                                            
age: 254468 

                                        
                                            
last-modified: Tue, 03 Mar 2020 19:15:00 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (65451)

                                                Size:   30399

                                                Md5:    0f83cadc148d2ad7e53c91f6c4ee05bb

                                                Sha1:   90035c5fffedf4b0f099465f6b929a030b46c92b

                                                Sha256: 3f59aa77bbbed7760a9968af27d3c19ffddda021c948edf0bf0c0f828dd308ae

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /nu/pop/sportsbook/multisports/icon-expert.svg HTTP/1.1 

                                        
                                            
Host: welcome.unibet.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://welcome.unibet.com/nu/pop/sportsbook/multisports/index.html?mktid=1:127656177:68246908-37950&btag=127656177_5988BFEE9B50410EB2A685F677386F42&bid=37950&campaignId=2799402&pid=68246908 

                                        
                                            
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670579429990)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2022129950%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228538413988%7c1%22%7d%5d 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers
search 
                                         104.18.24.188

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/svg+xml 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
cache-control: public, max-age=900, immutable 

                                        
                                            
content-md5: Z4302O+bSqlX5UM92U+35A== 

                                        
                                            
last-modified: Mon, 21 Nov 2022 12:34:15 GMT 

                                        
                                            
etag: W/"0x8DACBBCB3A5CF50" 

                                        
                                            
x-ms-request-id: cd88faad-301e-0047-5503-037959000000 

                                        
                                            
x-ms-version: 2014-02-14 

                                        
                                            
x-ms-lease-status: unlocked 

                                        
                                            
x-ms-lease-state: available 

                                        
                                            
x-ms-blob-type: BlockBlob 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 350594 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 776cd6422db5b523-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (966), with no line terminators

                                                Size:   804

                                                Md5:    3343db5e38a2d72de3ca1024ccc9b30d

                                                Sha1:   4fbe5e2dbdecdce8d64cdb9594dbd57a68fc8c31

                                                Sha256: adf6b554a267aa7c9e425f33b23cf674fdc464246aa3d6086d1a8ff05bb51dd5

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /unibet/bannerflow/scripts/master_tag.js HTTP/1.1 

                                        
                                            
Host: a1s-cdn.unibet.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://welcome.unibet.com/ 

                                        
                                            
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a68246908%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670579429990)%5c%2f%22%2c%22CookieTag%22%3a%223795068246908451240919C2022129950%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%228538413988%7c1%22%7d%5d 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-site
search 
                                         85.184.96.5

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript 

                                        
                                    
                                        

                                        
                                            
date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
content-length: 956 

                                        
                                            
last-modified: Mon, 25 Apr 2022 12:19:34 GMT 

                                        
                                            
etag: "3bc-5dd7996cc0ce1" 

                                        
                                            
cache-control: max-age=1800, public, must-revalidate 

                                        
                                            
server: kindred-loadbalancer 

                                        
                                            
strict-transport-security: max-age=63072000; preload 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *; 

                                        
                                            
x-browser-class: A 

                                        
                                            
x-os-class: M 

                                        
                                            
set-cookie: clientId=polopoly_desktop; Domain=a1s-cdn.unibet.com; Path=/; SameSite=None; Secure 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   956

                                                Md5:    fd48e87ecd4d06d9c5df490b91dc813e

                                                Sha1:   a65a437db44444634e4f41732c590c1d14433b3f

                                                Sha256: 2f786ae3f4577ed970f60aa7a9edf726300a740fdb360a8364db7ff4b7ca8e47

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Fri, 09 Dec 2022 09:50:30 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache