Overview

URLperfectblogger01.blogspot.ru/2012/11/kota-prasejarah-tertua-di-eropa.html
IP 172.217.21.161 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-30 11:56:14 UTC
StatusLoading report..
IDS alerts0
Blocklist alert5
urlquery alerts No alerts detected
Tags None

Domain Summary (46)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.pki.goog (18) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
lh3.googleusercontent.com (7) 66 2013-05-30 23:27:19 UTC 2020-05-01 19:11:58 UTC 142.250.74.129
apis.google.com (1) 105 2013-05-30 23:17:44 UTC 2020-05-14 13:59:47 UTC 172.217.21.174
www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-30 04:48:28 UTC 142.250.74.132
play.google.com (1) 34 2018-05-12 00:28:37 UTC 2022-11-30 05:25:41 UTC 142.250.74.78
n.ads3-adnow.com (1) 225402 2015-03-11 14:56:18 UTC 2022-11-29 19:52:39 UTC 31.172.81.227
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-11-30 05:03:07 UTC 216.58.207.206
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-30 04:06:17 UTC 34.102.187.140
perfectblogger01.blogspot.com (7) 0 2015-01-06 23:15:43 UTC 2015-10-20 18:04:13 UTC 172.217.21.161 Unknown ranking
img2.blogblog.com (1) 113758 2012-05-21 13:44:19 UTC 2020-05-01 04:55:55 UTC 216.58.207.233
sites.google.com (2) 3163 2015-02-20 14:17:37 UTC 2022-11-30 04:33:49 UTC 142.250.74.78
1.bp.blogspot.com (2) 8403 2013-05-06 20:18:52 UTC 2020-05-14 01:22:22 UTC 142.250.74.161
www.facebook.com (2) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 31.13.72.36
dnacdn.net (2) 3760 2019-09-02 15:07:45 UTC 2022-11-30 04:16:38 UTC 178.250.2.146
r3.o.lencr.org (6) 344 No data No data 23.36.77.32
ocsp.digicert.com (7) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
bloggerblogwidgets.googlecode.com (2) 0 2012-06-26 16:53:23 UTC 2020-04-04 23:26:37 UTC 173.194.73.82 Unknown ranking
2.bp.blogspot.com (2) 11071 2013-07-04 03:01:31 UTC 2020-04-28 02:17:39 UTC 142.250.74.161
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.237.51.86
ust.chatango.com (1) 43894 2012-12-10 16:31:50 UTC 2022-11-29 22:42:17 UTC 208.93.230.24
perfectblogger01.blogspot.ru (1) 0 2014-02-27 13:12:10 UTC 2015-10-17 16:43:24 UTC 172.217.21.161 Unknown ranking
ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-11-30 06:05:46 UTC 142.250.74.42
sb.scorecardresearch.com (2) 134 2021-05-18 20:09:14 UTC 2022-11-30 06:11:59 UTC 143.204.55.96
trc-events.taboola.com (1) 1779 2020-06-09 13:52:57 UTC 2021-01-14 12:00:33 UTC 141.226.228.48
csm.fr.eu.criteo.net (1) 6845 2017-01-30 05:18:06 UTC 2020-04-05 15:55:22 UTC 178.250.0.162
code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2020-04-21 12:46:20 UTC 69.16.175.42
pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-11-30 06:13:30 UTC 172.217.21.162
www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-11-30 05:55:04 UTC 142.250.74.35 Domain (gstatic.com) ranked at: 540
fonts.gstatic.com (2) 0 2014-09-09 00:40:21 UTC 2022-11-30 04:54:31 UTC 142.250.74.35 Domain (gstatic.com) ranked at: 540
www.blogger.com (4) 8975 2012-05-22 07:35:03 UTC 2020-05-05 09:48:25 UTC 216.58.207.233
assets.kompas.com (4) 0 2019-10-30 02:10:54 UTC 2022-11-04 06:49:26 UTC 54.230.111.72 Domain (kompas.com) ranked at: 8187
3.bp.blogspot.com (4) 11048 2013-07-04 04:18:40 UTC 2020-05-14 03:02:58 UTC 142.250.74.161
cb6a6a86-a-62cb3a1a-s-sites.googlegroups.com (1) 0 2012-10-10 18:40:01 UTC 2015-10-18 08:14:04 UTC 64.233.165.137 Domain (googlegroups.com) ranked at: 15551
gum.criteo.com (4) 381 2015-01-22 10:58:57 UTC 2020-03-06 00:06:09 UTC 178.250.0.157
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-30 04:06:04 UTC 34.117.237.239
i580.photobucket.com (6) 0 2012-11-07 22:20:54 UTC 2022-11-22 04:58:18 UTC 143.204.55.79 Domain (photobucket.com) ranked at: 14012
st.chatango.com (3) 37357 2012-06-04 02:57:52 UTC 2022-11-30 10:16:36 UTC 208.93.230.24
l.yimg.com (55) 12286 2012-05-21 17:42:18 UTC 2020-02-27 16:34:56 UTC 87.248.119.252
ag.gbc.criteo.com (1) 5925 2018-12-17 13:17:41 UTC 2019-12-16 16:26:43 UTC 185.235.84.100
gem.gbc.criteo.com (1) 6039 2019-02-05 12:48:26 UTC 2019-12-16 15:58:47 UTC 178.250.6.129
badilah.googlecode.com (2) 0 2012-11-14 17:02:02 UTC 2015-10-19 07:35:03 UTC 173.194.73.82 Unknown ranking
st-n.ads3-adnow.com (1) 419213 2017-03-07 06:45:46 UTC 2020-07-03 21:08:04 UTC 92.223.97.97
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 104.18.32.68
cdn.taboola.com (2) 1040 2013-07-19 23:48:03 UTC 2020-04-10 11:29:57 UTC 151.101.193.44

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-30 2 perfectblogger01.blogspot.ru/2012/11/kota-prasejarah-tertua-di-eropa.html Malware
2022-11-30 2 perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html Malware
2022-11-30 2 perfectblogger01.blogspot.com/js/cookienotice.js Malware
2022-11-30 2 perfectblogger01.blogspot.com/2012/11/game-buatan-indonesia-dibajak.html Malware
2022-11-30 2 perfectblogger01.blogspot.com/2012/11/the-adventures-of-tintin-comics-downl (...) Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.217.21.161
Date UQ / IDS / BL URL IP
2023-01-30 17:21:56 +0000 0 - 0 - 1 pornagraphiegr.blogspot.com.ee/ 172.217.21.161
2023-01-30 16:58:49 +0000 0 - 0 - 2 ripullminigamecodes.blogspot.com.ee/ 172.217.21.161
2023-01-30 16:56:06 +0000 0 - 0 - 4 alexadownloadroblox.blogspot.ro/ 172.217.21.161
2023-01-30 16:56:05 +0000 0 - 0 - 2 howtogetfreerobloxgiftcardswithpas1.blogspot.lu/ 172.217.21.161
2023-01-30 16:56:02 +0000 0 - 0 - 4 shredrobloxcontrols.blogspot.co.at/ 172.217.21.161


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-01-30 17:59:04 +0000 0 - 0 - 2 samisamias.blogspot.hu/ 216.58.207.193
2023-01-30 17:52:08 +0000 0 - 0 - 3 robloxroyalehighdeardolliegloves.blogspot.no/ 216.58.207.193
2023-01-30 17:49:34 +0000 0 - 2 - 0 r4---sn-qxoednee.gvt1.com/edgedl/release2/upd (...) 74.125.9.9
2023-01-30 17:49:30 +0000 0 - 3 - 0 r3---sn-qxo7rn7r.gvt1.com/edgedl/release2/upd (...) 173.194.54.168
2023-01-30 17:49:29 +0000 0 - 3 - 0 r4---sn-qxo7rn7y.gvt1.com/edgedl/release2/upd (...) 173.194.55.73


Last 1 reports on domain: perfectblogger01.blogspot.ru
Date UQ / IDS / BL URL IP
2022-11-30 11:56:14 +0000 0 - 0 - 5 perfectblogger01.blogspot.ru/2012/11/kota-pra (...) 172.217.21.161


No other reports with similar screenshot

JavaScript

Executed Scripts (74)

Executed Evals (7)
#1 JavaScript::Eval (size: 18251) - SHA256: 51974846014891c229f17af62691d6623cfab1ea0ad5c56f7780c5d64b01d90e
(function() {
    var y, nv = function(n, E, I, e) {
            for (e = (I = a(E), 0); 0 < n; n--) e = e << 8 | z(E);
            Z(I, E, e)
        },
        c = function(n, E, I, e, X, L) {
            if (n.N.length) {
                (n.R = (n.R && 0(), true), n).rY = E;
                try {
                    e = n.Z(), n.G = e, n.I = 0, n.Y = e, L = Ia(E, n), X = n.Z() - n.Y, n.D += X, X < (I ? 0 : 10) || 0 >= n.l-- || (X = Math.floor(X), n.F.push(254 >= X ? X : 254))
                } finally {
                    n.R = false
                }
                return L
            }
        },
        iN = function(n, E, I) {
            if ((I = typeof n, "object") == I)
                if (n) {
                    if (n instanceof Array) return "array";
                    if (n instanceof Object) return I;
                    if ((E = Object.prototype.toString.call(n), "[object Window]") == E) return "object";
                    if ("[object Array]" == E || "number" == typeof n.length && "undefined" != typeof n.splice && "undefined" != typeof n.propertyIsEnumerable && !n.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == E || "undefined" != typeof n.call && "undefined" != typeof n.propertyIsEnumerable && !n.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == I && "undefined" == typeof n.call) return "object";
            return I
        },
        m = function(n, E) {
            n.N.splice(0, 0, E)
        },
        Lv = function(n, E) {
            return (n = n.create().shift(), E.S).create().length || E.v.create().length || (E.v = void 0, E.S = void 0), n
        },
        P = function(n, E, I, e, X, L) {
            if (!E.U) {
                if (3 < (I = (0 == ((L = void 0, I && I[0] === r) && (n = I[1], L = I[2], I = void 0), X = Q(19, E), X).length && (e = Q(117, E) >> 3, X.push(n, e >> 8 & 255, e & 255), void 0 != L && X.push(L & 255)), n = "", I && (I.message && (n += I.message), I.stack && (n += ":" + I.stack)), Q(504, E)), I)) {
                    E.L = (L = (n = (I -= (n = n.slice(0, (I | 0) - 3), n.length | 0) + 3, EK(n)), E.L), E);
                    try {
                        G(E, 446, f(2, n.length).concat(n), 9)
                    } finally {
                        E.L = L
                    }
                }
                Z(504, E, I)
            }
        },
        b = function(n, E, I) {
            n[Z(I, E, n), ev] = 2796
        },
        Tl = function(n, E) {
            (E.push(n[0] << 24 | n[1] << 16 | n[2] << 8 | n[3]), E.push(n[4] << 24 | n[5] << 16 | n[6] << 8 | n[7]), E).push(n[8] << 24 | n[9] << 16 | n[10] << 8 | n[11])
        },
        gN = function(n, E, I, e) {
            G(n, (I = (e = a(n), a(n)), I), f(E, Q(e, n)))
        },
        Xn = function(n, E) {
            if (E = (n = q.trustedTypes, null), !n || !n.createPolicy) return E;
            try {
                E = n.createPolicy("bg", {
                    createHTML: x0,
                    createScript: x0,
                    createScriptURL: x0
                })
            } catch (I) {
                q.console && q.console.error(I.message)
            }
            return E
        },
        aa = function(n, E, I, e) {
            return (e = O[n.substring(0, 3) + "_"]) ? e(n.substring(3), E, I) : wN(E, n)
        },
        DU = function(n, E, I, e) {
            try {
                e = n[((E | 0) + 2) % 3], n[E] = (n[E] | 0) - (n[((E | 0) + 1) % 3] | 0) - (e | 0) ^ (1 == E ? e << I : e >>> I)
            } catch (X) {
                throw X;
            }
        },
        Q = function(n, E) {
            if (void 0 === (E = E.K[n], E)) throw [r, 30, n];
            if (E.value) return E.create();
            return E.create(1 * n * n + -43 * n + -56), E.prototype
        },
        ZU = function(n, E, I, e, X, L) {
            for (e = (L = (I = ((X = a((E = n[zl] || {}, n)), E.TW = a(n), E).P = [], n.L == n) ? (z(n) | 0) - 1 : 1, a(n)), 0); e < I; e++) E.P.push(a(n));
            for (E.A = Q(X, n); I--;) E.P[I] = Q(E.P[I], n);
            return E.Kv = Q(L, n), E
        },
        Mi = function(n, E, I, e, X) {
            G(n, (((e = Q((X = a((e = (I = E & 4, E &= 3, a(n)), n)), e), n), I) && (e = EK("" + e)), E) && G(n, X, f(2, e.length)), X), e)
        },
        EK = function(n, E, I, e, X) {
            for (X = E = (n = n.replace(/\r\n/g, "\n"), I = [], 0); X < n.length; X++) e = n.charCodeAt(X), 128 > e ? I[E++] = e : (2048 > e ? I[E++] = e >> 6 | 192 : (55296 == (e & 64512) && X + 1 < n.length && 56320 == (n.charCodeAt(X + 1) & 64512) ? (e = 65536 + ((e & 1023) << 10) + (n.charCodeAt(++X) & 1023), I[E++] = e >> 18 | 240, I[E++] = e >> 12 & 63 | 128) : I[E++] = e >> 12 | 224, I[E++] = e >> 6 & 63 | 128), I[E++] = e & 63 | 128);
            return I
        },
        O, a = function(n, E) {
            if (n.S) return Lv(n.v, n);
            return (E = h(8, n, true), E & 128) && (E ^= 128, n = h(2, n, true), E = (E << 2) + (n | 0)), E
        },
        A = function(n, E) {
            E.T = ((E.T ? E.T + "~" : "E:") + n.message + ":" + n.stack).slice(0, 2048)
        },
        mC = function(n, E, I, e, X) {
            if ((I = n[0], I) == N) E.l = 25, E.u(n);
            else if (I == k) {
                X = n[1];
                try {
                    e = E.T || E.u(n)
                } catch (L) {
                    A(L, E), e = E.T
                }
                X(e)
            } else if (I == uN) E.u(n);
            else if (I == l) E.u(n);
            else if (I == WU) {
                try {
                    for (e = 0; e < E.C.length; e++) try {
                        X = E.C[e], X[0][X[1]](X[2])
                    } catch (L) {}
                } catch (L) {}(0, n[1])(function(L, T) {
                    E.o(L, true, T)
                }, (E.C = [], function(L) {
                    (m(E, (L = !E.N.length, [cU])), L) && c(E, true, false)
                }))
            } else {
                if (I == H) return e = n[2], Z(264, E, n[6]), Z(98, E, e), E.u(n);
                I == cU ? (E.F = [], E.K = null, E.X = []) : I == ev && "loading" === q.document.readyState && (E.h = function(L, T) {
                    function g() {
                        T || (T = true, L())
                    }
                    q.document.addEventListener("DOMContentLoaded", (T = false, g), F), q.addEventListener("load", g, F)
                })
            }
        },
        F = {
            passive: true,
            capture: true
        },
        wN = function(n, E) {
            return n(function(I) {
                I(E)
            }), [function() {
                return E
            }]
        },
        x0 = function(n) {
            return n
        },
        sK = function(n, E) {
            Z(169, n, (n.mu.push(n.K.slice()), n.K[169] = void 0, E))
        },
        v = function(n, E, I, e, X, L, T, g, x) {
            if (I.L = (T = (x = (g = (L = 0 < (E || I.I++, I).W && I.R && I.rY && 1 >= I.B && !I.S && !I.h && (!E || 1 < I.J - e) && 0 == document.hidden, (X = 4 == I.I) || L) ? I.Z() : I.G, g) - I.G, x >> 14), I.H && (I.H ^= T * (x << 2)), I.j += T, T) || I.L, X || L) I.I = 0, I.G = g;
            if (!L || g - I.Y < I.W - (n ? 255 : E ? 5 : 2)) return false;
            return I.h = ((Z((n = Q(E ? 117 : 169, (I.J = e, I)), 169), I, I.O), I).N.push([uN, n, E ? e + 1 : e]), B), true
        },
        Ia = function(n, E, I, e) {
            for (; E.N.length;) {
                e = (E.h = null, E).N.pop();
                try {
                    I = mC(e, E)
                } catch (X) {
                    A(X, E)
                }
                if (n && E.h) {
                    n = E.h, n(function() {
                        c(E, true, true)
                    });
                    break
                }
            }
            return I
        },
        Q6 = function(n, E, I, e) {
            return Q((Z(169, (rN(n, (e = Q(169, n), n.X && e < n.O ? (Z(169, n, n.O), sK(n, E)) : Z(169, n, E), I)), n), e), 98), n)
        },
        bN = function(n, E, I, e, X) {
            for (e = (I.xv = ((I.uV = ((I.aN = I[k], I).zW = V6, tI), I).Lv = Y0({get: function() {
                        return this.concat()
                    }
                }, I.g), J[I.g](I.Lv, {
                    value: {
                        value: {}
                    }
                })), 0), X = []; 128 > e; e++) X[e] = String.fromCharCode(e);
            c(I, true, (m(I, (m(I, (m(I, (Z(6, (b(function(L, T, g, x, w, D) {
                v(false, true, L, T) || (w = ZU(L.L), T = w.P, D = w.A, g = T.length, x = w.Kv, w = w.TW, T = 0 == g ? new x[D] : 1 == g ? new x[D](T[0]) : 2 == g ? new x[D](T[0], T[1]) : 3 == g ? new x[D](T[0], T[1], T[2]) : 4 == g ? new x[D](T[0], T[1], T[2], T[3]) : 2(), Z(w, L, T))
            }, (Z(446, I, R((b(function(L, T, g, x, w, D) {
                if (!v(true, true, L, T)) {
                    if ((D = (w = Q((T = (g = (D = a(L), T = a(L), a(L)), w = a(L), Q)(T, L), w), L), Q(D, L)), L = Q(g, L), "object") == iN(D)) {
                        for (x in g = [], D) g.push(x);
                        D = g
                    }
                    for (x = 0, g = D.length, L = 0 < L ? L : 1; x < g; x += L) T(D.slice(x, (x | 0) + (L | 0)), w)
                }
            }, I, ((b(function(L) {
                nv(4, L)
            }, (b(function(L, T, g, x, w, D, M) {
                for (x = (T = (g = Q((D = a(L), w = dN(L), M = "", 157), L), g.length), 0); w--;) x = ((x | 0) + (dN(L) | 0)) % T, M += X[g[x]];
                Z(D, L, M)
            }, I, (Z(409, (I.cV = (Z(373, I, [160, (b(function(L, T, g, x) {
                Z((x = Q((g = (T = a((g = (x = a(L), a(L)), L)), Q(g, L)), x), L), T), L, x[g])
            }, (b(function(L, T, g, x, w) {
                Z((w = (g = (g = a((x = (T = a(L), a(L)), L)), w = a(L), Q)(g, L), x = Q(x, L), Q(w, L)), T), L, PU(x, w, L, g))
            }, I, (b(function(L, T, g, x, w) {
                for (x = (w = (g = dN((T = a(L), L)), []), 0); x < g; x++) w.push(z(L));
                Z(T, L, w)
            }, I, (b(function(L) {
                gN(L, 1)
            }, (b(function(L, T, g, x) {
                !v(false, true, L, T) && (T = ZU(L), x = T.Kv, g = T.A, L.L == L || g == L.S0 && x == L) && (Z(T.TW, L, g.apply(x, T.P)), L.G = L.Z())
            }, (b(function(L, T, g, x) {
                Z((g = Q((T = a((g = a(L), L)), x = Q(T, L), g), L), T), L, x + g)
            }, (Z(19, I, (b(function(L, T, g) {
                Z((g = (T = a(L), a(L)), T = Q(T, L), T = iN(T), g), L, T)
            }, I, (b(function(L, T, g, x) {
                Z((T = a((x = (g = a(L), a(L)), L)), T), L, Q(g, L) || Q(x, L))
            }, I, (b(function(L, T) {
                L = (T = a(L), Q)(T, L.L), L[0].removeEventListener(L[1], L[2], F)
            }, (b(function(L, T, g) {
                v(false, true, L, T) || (T = a(L), g = a(L), Z(g, L, function(x) {
                    return eval(x)
                }(Gl(Q(T, L.L)))))
            }, I, (b(function(L) {
                Mi(L, 3)
            }, I, (b(function(L, T, g) {
                0 != (g = (g = (T = a(L), a(L)), Q)(g, L), Q(T, L)) && Z(169, L, g)
            }, (Z(426, I, (b(function(L, T, g, x, w) {
                x = (T = Q((g = (w = (T = (x = a(L), g = a(L), a)(L), a(L)), Q(g, L)), w = Q(w, L), T), L), Q)(x, L.L), 0 !== x && (T = PU(T, 1, L, w, x, g), x.addEventListener(g, T, F), Z(426, L, [x, g, T]))
            }, (Z((b(function(L) {
                gN(L, 4)
            }, (b(function(L, T, g, x) {
                Z((x = (T = (x = a(L), a(L)), g = a(L), T = Q(T, L), Q(x, L)), g), L, x in T | 0)
            }, (Z(258, (Z(504, (Z(98, I, (b(function() {}, I, (b(function(L, T, g, x) {
                Z((T = z((x = a(L), L)), g = a(L), g), L, Q(x, L) >>> T)
            }, I, (b(function(L, T, g) {
                Z((g = (T = a(L), a(L)), g), L, "" + Q(T, L))
            }, I, (b(function(L, T) {
                sK((T = Q(a(L), L), L.L), T)
            }, I, (b(function(L, T, g, x, w, D, M, W, t, p, V, u) {
                function U(Y, d) {
                    for (; g < Y;) u |= z(L) << g, g += 8;
                    return u >>= (d = u & (1 << (g -= Y, Y)) - 1, Y), d
                }
                for (w = (x = (g = (V = a(L), u = 0), M = (U(3) | 0) + 1, U(5)), []), D = T = 0; D < x; D++) W = U(1), w.push(W), T += W ? 0 : 1;
                for (p = (D = (T = ((T | 0) - 1).toString(2).length, 0), []); D < x; D++) w[D] || (p[D] = U(T));
                for (T = 0; T < x; T++) w[T] && (p[T] = a(L));
                for (t = []; M--;) t.push(Q(a(L), L));
                b(function(Y, d, y6, C, S) {
                    for (C = (y6 = [], S = [], 0); C < x; C++) {
                        if (d = p[C], !w[C]) {
                            for (; d >= S.length;) S.push(a(Y));
                            d = S[d]
                        }
                        y6.push(d)
                    }(Y.S = fv(t.slice(), Y), Y).v = fv(y6, Y)
                }, L, V)
            }, I, (b(function(L, T, g, x) {
                if (x = L.mu.pop()) {
                    for (g = z(L); 0 < g; g--) T = a(L), x[T] = L.K[T];
                    L.K = (x[504] = (x[19] = L.K[19], L).K[504], x)
                } else Z(169, L, L.O)
            }, (b(function(L) {
                Mi(L, 4)
            }, I, (b(function(L, T, g, x) {
                (x = (g = a((T = a(L), L)), a(L)), L.L == L) && (g = Q(g, L), x = Q(x, L), Q(T, L)[g] = x, 226 == T && (L.i = void 0, 2 == g && (L.H = h(32, L, false), L.i = void 0)))
            }, I, (b(function(L, T, g, x) {
                T = (g = a((T = (x = a(L), a(L)), L)), x = Q(x, L), Q)(T, L), Z(g, L, +(x == T))
            }, I, (Z(90, ((Z(117, (((I.l = 25, (I.T = void 0, (e = window.performance || {}, (I.v = (I.XU = 0, void 0), I.K = [], I).rY = (I.X = [], (I.O = 0, I.W = 0, I).N = [], I.H = (I.mu = [], I.R = false, void 0), I.B = 0, false), I).S = void 0, I.F = [], I).j = (I.Y = 0, I.V = void 0, I.G = 0, I.D = 0, 1), I).pv = (I.J = 8001, (I.I = void 0, I.h = (I.S0 = function(L) {
                this.L = L
            }, null), I.L = (I.C = [], I), I).U = false, (I.i = void 0, e).timeOrigin || (e.timing || {}).navigationStart || 0), Z)(169, I, 0), I), 0), I).Yv = 0, I), []), 111)), 292)), Z(184, I, 353), 170)), I), 382), 286)), 390)), 281)), 7)), 326)), {})), I), 2048), I), [0, 0, 0]), I), 44), I), 84), 207), I, q), I), 396), 0)), I), 323), 177)), 442)), I), 81), 376)), 433)), [])), I), 14), I), 222), I), 347), 287)), 50)), I), 123), 0), 0]), 0), I), I), 205)), I), 432), I).vV = 0, 215)), 4))), I), 228), I), 0), [ev])), [l, n])), [WU, E])), true))
        },
        R = function(n, E) {
            for (E = []; n--;) E.push(255 * Math.random() | 0);
            return E
        },
        f = function(n, E, I, e) {
            for (e = (I = (n | 0) - 1, []); 0 <= I; I--) e[(n | 0) - 1 - (I | 0)] = E >> 8 * I & 255;
            return e
        },
        Y0 = function(n, E) {
            return J[E](J.prototype, {
                splice: n,
                floor: n,
                pop: n,
                stack: n,
                document: n,
                call: n,
                length: n,
                prototype: n,
                parent: n,
                console: n,
                propertyIsEnumerable: n,
                replace: n
            })
        },
        Z = function(n, E, I) {
            if (169 == n || 117 == n) E.K[n] ? E.K[n].concat(I) : E.K[n] = fv(I, E);
            else {
                if (E.U && 226 != n) return;
                373 == n || 446 == n || 90 == n || 19 == n || 258 == n ? E.K[n] || (E.K[n] = pv(118, E, I, n)) : E.K[n] = pv(81, E, I, n)
            }
            226 == n && (E.H = h(32, E, false), E.i = void 0)
        },
        qi = function(n, E, I, e) {
            function X() {}
            return {
                invoke: (e = aa((I = void 0, n), function(L) {
                    X && (E && B(E), I = L, X(), X = void 0)
                }, !!E)[0], function(L, T, g, x) {
                    function w() {
                        I(function(D) {
                            B(function() {
                                L(D)
                            })
                        }, g)
                    }
                    if (!T) return T = e(g), L && L(T), T;
                    I ? w() : (x = X, X = function() {
                        (x(), B)(w)
                    })
                })
            }
        },
        OK = function(n, E, I) {
            if (3 == n.length) {
                for (I = 0; 3 > I; I++) E[I] += n[I];
                for (I = [13, 8, 13, 12, 16, (n = 0, 5), 3, 10, 15]; 9 > n; n++) E[3](E, n % 3, I[n])
            }
        },
        K = function(n, E, I) {
            I = this;
            try {
                bN(E, n, this)
            } catch (e) {
                A(e, this), n(function(X) {
                    X(I.T)
                })
            }
        },
        dN = function(n, E) {
            return E = z(n), E & 128 && (E = E & 127 | z(n) << 7), E
        },
        UK = function(n, E, I, e, X) {
            for (X = (I = I[e = I[2] | 0, 3] | 0, 0); 14 > X; X++) n = n >>> 8 | n << 24, n += E | 0, n ^= e + 2298, I = I >>> 8 | I << 24, E = E << 3 | E >>> 29, I += e | 0, I ^= X + 2298, E ^= n, e = e << 3 | e >>> 29, e ^= I;
            return [E >>> 24 & 255, E >>> 16 & 255, E >>> 8 & 255, E >>> 0 & 255, n >>> 24 & 255, n >>> 16 & 255, n >>> 8 & 255, n >>> 0 & 255]
        },
        hI = function(n, E, I) {
            return E.o(function(e) {
                I = e
            }, false, n), I
        },
        z = function(n) {
            return n.S ? Lv(n.v, n) : h(8, n, true)
        },
        jv = function(n, E) {
            return E[n] << 24 | E[(n | 0) + 1] << 16 | E[(n | 0) + 2] << 8 | E[(n | 0) + 3]
        },
        rN = function(n, E, I, e, X, L) {
            if (!n.T) {
                n.B++;
                try {
                    for (X = (L = 0, n.O), e = void 0; --E;) try {
                        if (I = void 0, n.S) e = Lv(n.S, n);
                        else {
                            if ((L = Q(169, n), L) >= X) break;
                            e = Q((Z(117, n, L), I = a(n), I), n)
                        }
                        v(false, false, (e && e[cU] & 2048 ? e(n, E) : P(0, n, [r, 21, I]), n), E)
                    } catch (T) {
                        Q(184, n) ? P(22, n, T) : Z(184, n, T)
                    }
                    if (!E) {
                        if (n.gY) {
                            rN(n, (n.B--, 168668240895));
                            return
                        }
                        P(0, n, [r, 33])
                    }
                } catch (T) {
                    try {
                        P(22, n, T)
                    } catch (g) {
                        A(g, n)
                    }
                }
                n.B--
            }
        },
        G = function(n, E, I, e, X, L) {
            if (n.L == n)
                for (L = Q(E, n), 446 == E ? (E = function(T, g, x, w) {
                        if ((w = (x = L.length, (x | 0) - 4 >> 3), L.q7) != w) {
                            g = [0, (w = (w << 3) - (L.q7 = w, 4), 0), X[1], X[2]];
                            try {
                                L.O$ = UK(jv((w | 0) + 4, L), jv(w, L), g)
                            } catch (D) {
                                throw D;
                            }
                        }
                        L.push(L.O$[x & 7] ^ T)
                    }, X = Q(258, n)) : E = function(T) {
                        L.push(T)
                    }, e && E(e & 255), n = 0, e = I.length; n < e; n++) E(I[n])
        },
        fv = function(n, E, I) {
            return ((I = J[E.g](E.xv), I)[E.g] = function() {
                return n
            }, I).concat = function(e) {
                n = e
            }, I
        },
        h = function(n, E, I, e, X, L, T, g, x, w, D, M, W, t) {
            if ((g = Q(169, E), g) >= E.O) throw [r, 31];
            for (w = (e = (D = E.aN.length, n), 0), x = g; 0 < e;) T = x >> 3, t = x % 8, W = 8 - (t | 0), L = E.X[T], W = W < e ? W : e, I && (X = E, X.i != x >> 6 && (X.i = x >> 6, M = Q(226, X), X.V = UK(X.i, X.H, [0, 0, M[1], M[2]])), L ^= E.V[T & D]), x += W, w |= (L >> 8 - (t | 0) - (W | 0) & (1 << W) - 1) << (e | 0) - (W | 0), e -= W;
            return Z(169, E, (I = w, (g | 0) + (n | 0))), I
        },
        q = this || self,
        B = q.requestIdleCallback ? function(n) {
            requestIdleCallback(function() {
                n()
            }, {
                timeout: 4
            })
        } : q.setImmediate ? function(n) {
            setImmediate(n)
        } : function(n) {
            setTimeout(n, 0)
        },
        PU = function(n, E, I, e, X, L) {
            function T() {
                if (I.L == I) {
                    if (I.K) {
                        var g = [H, n, e, void 0, X, L, arguments];
                        if (2 == E) var x = c(I, (m(I, g), false), false);
                        else if (1 == E) {
                            var w = !I.N.length;
                            (m(I, g), w) && c(I, false, false)
                        } else x = mC(g, I);
                        return x
                    }
                    X && L && X.removeEventListener(L, T, F)
                }
            }
            return T
        },
        pv = function(n, E, I, e, X, L, T, g) {
            return ((L = (T = n & (X = $0, I = [89, -43, 5, 1, 4, 91, I, 75, 51, -20], 7), J[E.g](E.Lv)), L)[E.g] = function(x) {
                T += 6 + 7 * n, g = x, T &= 7
            }, L).concat = function(x) {
                return (g = (x = (x = e % 16 + 1, -40 * e * e * g - x * g - -2240 * g + I[T + 51 & 7] * e * x + 40 * g * g + T + 1 * e * e * x - -1720 * e * g + (X() | 0) * x), void 0), x = I[x], I[(T + 13 & 7) + (n & 2)] = x, I)[T + (n & 2)] = -43, x
            }, L
        },
        zl = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        cU = ((K.prototype.gY = false, K.prototype.dY = void 0, K).prototype.s = "toString", K.prototype.BV = void 0, []),
        H = [],
        l = [],
        k = [],
        ev = [],
        WU = [],
        r = {},
        N = [],
        uN = [],
        $0 = ((y = (((Tl, function() {})(R), DU, function() {})(OK), K.prototype.g = "create", K.prototype), y).bV = function(n, E, I) {
            return n ^ ((E = ((E ^= E << 13, E ^= E >> 17, E) ^ E << 5) & I) || (E = 1), E)
        }, void 0),
        J = (y.o = (y.HV = function() {
            return Math.floor(this.D + (this.Z() - this.Y))
        }, ((y.GW = function(n, E, I, e, X, L) {
            for (X = (e = L = 0, []); L < n.length; L++)
                for (I = I << E | n[L], e += E; 7 < e;) e -= 8, X.push(I >> e & 255);
            return X
        }, y).Z = (y.he = function() {
            return Math.floor(this.Z())
        }, (window.performance || {}).now) ? function() {
            return this.pv + window.performance.now()
        } : function() {
            return +new Date
        }, y).PV = function(n, E, I, e, X) {
            for (e = X = 0; X < n.length; X++) e += n.charCodeAt(X), e += e << 10, e ^= e >> 6;
            return X = new Number((n = (e += e << 3, e ^= e >> 11, e + (e << 15) >>> 0), n & (1 << E) - 1)), X[0] = (n >>> E) % I, X
        }, function(n, E, I, e, X) {
            if (I = "array" === iN(I) ? I : [I], this.T) n(this.T);
            else try {
                e = [], X = !this.N.length, m(this, [N, e, I]), m(this, [k, n, e]), E && !X || c(this, E, true)
            } catch (L) {
                A(L, this), n(this.T)
            }
        }), r).constructor;
    (K.prototype.u = function(n, E) {
        return $0 = function() {
                return n == E ? -56 : -98
            }, E = {}, n = {},
            function(I, e, X, L, T, g, x, w, D, M, W, t, p, V, u) {
                n = (t = n, E);
                try {
                    if (e = I[0], e == l) {
                        p = I[1];
                        try {
                            for (x = (u = (V = [], L = 0, atob(p)), 0); L < u.length; L++) T = u.charCodeAt(L), 255 < T && (V[x++] = T & 255, T >>= 8), V[x++] = T;
                            Z(226, this, (this.O = (this.X = V, this).X.length << 3, [0, 0, 0]))
                        } catch (U) {
                            P(17, this, U);
                            return
                        }
                        rN(this, 8001)
                    } else if (e == N) I[1].push(Q(373, this).length, Q(504, this), Q(446, this).length, Q(90, this).length), Z(98, this, I[2]), this.K[67] && Q6(this, Q(67, this), 8001);
                    else {
                        if (e == k) {
                            (w = (V = I[2], f(2, (Q(373, this).length | 0) + 2)), X = this.L, this).L = this;
                            try {
                                W = Q(19, this), 0 < W.length && G(this, 373, f(2, W.length).concat(W), 10), G(this, 373, f(1, this.j), 109), G(this, 373, f(1, this[k].length)), u = 0, u += Q(6, this) & 2047, u -= (Q(373, this).length | 0) + 5, D = Q(446, this), 4 < D.length && (u -= (D.length | 0) + 3), 0 < u && G(this, 373, f(2, u).concat(R(u)), 15), 4 < D.length && G(this, 373, f(2, D.length).concat(D), 156)
                            } finally {
                                this.L = X
                            }
                            if (g = ((x = R(2).concat(Q(373, this)), x[1] = x[0] ^ 6, x)[3] = x[1] ^ w[0], x[4] = x[1] ^ w[1], this).N7(x)) g = "!" + g;
                            else
                                for (u = 0, g = ""; u < x.length; u++) M = x[u][this.s](16), 1 == M.length && (M = "0" + M), g += M;
                            return Q(((Z(504, this, ((L = g, Q)(373, this).length = V.shift(), V.shift())), Q(446, this)).length = V.shift(), 90), this).length = V.shift(), L
                        }
                        if (e == uN) Q6(this, I[1], I[2]);
                        else if (e == H) return Q6(this, I[1], 8001)
                    }
                } finally {
                    n = t
                }
            }
    }(), K.prototype.yC = 0, K.prototype).N7 = function(n, E, I, e) {
        if (I = window.btoa) {
            for (e = "", E = 0; E < n.length; E += 8192) e += String.fromCharCode.apply(null, n.slice(E, E + 8192));
            n = I(e).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
        } else n = void 0;
        return n
    }, K.prototype.Z4 = 0;
    var V6, tI = /./,
        AI = (K.prototype[WU] = [0, 0, 1, 1, 0, 1, 1], l.pop.bind(K.prototype[N])),
        Gl = function(n, E) {
            return (E = Xn()) && 1 === n.eval(E.createScript("1")) ? function(I) {
                return E.createScript(I)
            } : function(I) {
                return "" + I
            }
        }(((V6 = Y0({get: AI
        }, (tI[K.prototype.s] = AI, K.prototype.g)), K).prototype.iV = void 0, q));
    (O = q.botguard || (q.botguard = {}), 40 < O.m) || (O.m = 41, O.bg = qi, O.a = aa), O.kDL_ = function(n, E, I) {
        return [(I = new K(E, n), function(e) {
            return hI(e, I)
        })]
    };
}).call(this);
#2 JavaScript::Eval (size: 22) - SHA256: 355b9b382781cde432ccca7627a8fdecad5040be2910428d5fc5b4b57fed949b
0,
function(L) {
    nv(1, L)
}
#3 JavaScript::Eval (size: 15576) - SHA256: d4be0587aacd19697ae508209e99aa30536e2b75393db507b1cd329131d8e19c
/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var E = function(n) {
            return n
        },
        T = function(n, I) {
            if ((I = (n = null, e.trustedTypes), !I) || !I.createPolicy) return n;
            try {
                n = I.createPolicy("bg", {
                    createHTML: E,
                    createScript: E,
                    createScriptURL: E
                })
            } catch (L) {
                e.console && e.console.error(L.message)
            }
            return n
        },
        e = this || self;
    (0, eval)(function(n, I) {
        return (I = T()) && 1 === n.eval(I.createScript("1")) ? function(L) {
            return I.createScript(L)
        } : function(L) {
            return "" + L
        }
    }(e)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var y,nv=function(n,E,I,e){for(e=(I=a(E),0);0<n;n--)e=e<<8|z(E);Z(I,E,e)},c=function(n,E,I,e,X,L){if(n.N.length){(n.R=(n.R&&0(),true),n).rY=E;try{e=n.Z(),n.G=e,n.I=0,n.Y=e,L=Ia(E,n),X=n.Z()-n.Y,n.D+=X,X<(I?0:10)||0>=n.l--||(X=Math.floor(X),n.F.push(254>=X?X:254))}finally{n.R=false}return L}},iN=function(n,E,I){if((I=typeof n,"object")==I)if(n){if(n instanceof Array)return"array";if(n instanceof Object)return I;if((E=Object.prototype.toString.call(n),"[object Window]")==E)return"object";if("[object Array]"==E||"number"==typeof n.length&&"undefined"!=typeof n.splice&&"undefined"!=typeof n.propertyIsEnumerable&&!n.propertyIsEnumerable("splice"))return"array";if("[object Function]"==E||"undefined"!=typeof n.call&&"undefined"!=typeof n.propertyIsEnumerable&&!n.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==I&&"undefined"==typeof n.call)return"object";return I},m=function(n,E){n.N.splice(0,0,E)},Lv=function(n,E){return(n=n.create().shift(),E.S).create().length||E.v.create().length||(E.v=void 0,E.S=void 0),n},P=function(n,E,I,e,X,L){if(!E.U){if(3<(I=(0==((L=void 0,I&&I[0]===r)&&(n=I[1],L=I[2],I=void 0),X=Q(19,E),X).length&&(e=Q(117,E)>>3,X.push(n,e>>8&255,e&255),void 0!=L&&X.push(L&255)),n="",I&&(I.message&&(n+=I.message),I.stack&&(n+=":"+I.stack)),Q(504,E)),I)){E.L=(L=(n=(I-=(n=n.slice(0,(I|0)-3),n.length|0)+3,EK(n)),E.L),E);try{G(E,446,f(2,n.length).concat(n),9)}finally{E.L=L}}Z(504,E,I)}},b=function(n,E,I){n[Z(I,E,n),ev]=2796},Tl=function(n,E){(E.push(n[0]<<24|n[1]<<16|n[2]<<8|n[3]),E.push(n[4]<<24|n[5]<<16|n[6]<<8|n[7]),E).push(n[8]<<24|n[9]<<16|n[10]<<8|n[11])},gN=function(n,E,I,e){G(n,(I=(e=a(n),a(n)),I),f(E,Q(e,n)))},Xn=function(n,E){if(E=(n=q.trustedTypes,null),!n||!n.createPolicy)return E;try{E=n.createPolicy("bg",{createHTML:x0,createScript:x0,createScriptURL:x0})}catch(I){q.console&&q.console.error(I.message)}return E},aa=function(n,E,I,e){return(e=O[n.substring(0,3)+"_"])?e(n.substring(3),E,I):wN(E,n)},DU=function(n,E,I,e){try{e=n[((E|0)+2)%3],n[E]=(n[E]|0)-(n[((E|0)+1)%3]|0)-(e|0)^(1==E?e<<I:e>>>I)}catch(X){throw X;}},Q=function(n,E){if(void 0===(E=E.K[n],E))throw[r,30,n];if(E.value)return E.create();return E.create(1*n*n+-43*n+-56),E.prototype},ZU=function(n,E,I,e,X,L){for(e=(L=(I=((X=a((E=n[zl]||{},n)),E.TW=a(n),E).P=[],n.L==n)?(z(n)|0)-1:1,a(n)),0);e<I;e++)E.P.push(a(n));for(E.A=Q(X,n);I--;)E.P[I]=Q(E.P[I],n);return E.Kv=Q(L,n),E},Mi=function(n,E,I,e,X){G(n,(((e=Q((X=a((e=(I=E&4,E&=3,a(n)),n)),e),n),I)&&(e=EK(""+e)),E)&&G(n,X,f(2,e.length)),X),e)},EK=function(n,E,I,e,X){for(X=E=(n=n.replace(/\\r\\n/g,"\\n"),I=[],0);X<n.length;X++)e=n.charCodeAt(X),128>e?I[E++]=e:(2048>e?I[E++]=e>>6|192:(55296==(e&64512)&&X+1<n.length&&56320==(n.charCodeAt(X+1)&64512)?(e=65536+((e&1023)<<10)+(n.charCodeAt(++X)&1023),I[E++]=e>>18|240,I[E++]=e>>12&63|128):I[E++]=e>>12|224,I[E++]=e>>6&63|128),I[E++]=e&63|128);return I},O,a=function(n,E){if(n.S)return Lv(n.v,n);return(E=h(8,n,true),E&128)&&(E^=128,n=h(2,n,true),E=(E<<2)+(n|0)),E},A=function(n,E){E.T=((E.T?E.T+"~":"E:")+n.message+":"+n.stack).slice(0,2048)},mC=function(n,E,I,e,X){if((I=n[0],I)==N)E.l=25,E.u(n);else if(I==k){X=n[1];try{e=E.T||E.u(n)}catch(L){A(L,E),e=E.T}X(e)}else if(I==uN)E.u(n);else if(I==l)E.u(n);else if(I==WU){try{for(e=0;e<E.C.length;e++)try{X=E.C[e],X[0][X[1]](X[2])}catch(L){}}catch(L){}(0,n[1])(function(L,T){E.o(L,true,T)},(E.C=[],function(L){(m(E,(L=!E.N.length,[cU])),L)&&c(E,true,false)}))}else{if(I==H)return e=n[2],Z(264,E,n[6]),Z(98,E,e),E.u(n);I==cU?(E.F=[],E.K=null,E.X=[]):I==ev&&"loading"===q.document.readyState&&(E.h=function(L,T){function g(){T||(T=true,L())}q.document.addEventListener("DOMContentLoaded",(T=false,g),F),q.addEventListener("load",g,F)})}},F={passive:true,capture:true},wN=function(n,E){return n(function(I){I(E)}),[function(){return E}]},x0=function(n){return n},sK=function(n,E){Z(169,n,(n.mu.push(n.K.slice()),n.K[169]=void 0,E))},v=function(n,E,I,e,X,L,T,g,x){if(I.L=(T=(x=(g=(L=0<(E||I.I++,I).W&&I.R&&I.rY&&1>=I.B&&!I.S&&!I.h&&(!E||1<I.J-e)&&0==document.hidden,(X=4==I.I)||L)?I.Z():I.G,g)-I.G,x>>14),I.H&&(I.H^=T*(x<<2)),I.j+=T,T)||I.L,X||L)I.I=0,I.G=g;if(!L||g-I.Y<I.W-(n?255:E?5:2))return false;return I.h=((Z((n=Q(E?117:169,(I.J=e,I)),169),I,I.O),I).N.push([uN,n,E?e+1:e]),B),true},Ia=function(n,E,I,e){for(;E.N.length;){e=(E.h=null,E).N.pop();try{I=mC(e,E)}catch(X){A(X,E)}if(n&&E.h){n=E.h,n(function(){c(E,true,true)});break}}return I},Q6=function(n,E,I,e){return Q((Z(169,(rN(n,(e=Q(169,n),n.X&&e<n.O?(Z(169,n,n.O),sK(n,E)):Z(169,n,E),I)),n),e),98),n)},bN=function(n,E,I,e,X){for(e=(I.xv=((I.uV=((I.aN=I[k],I).zW=V6,tI),I).Lv=Y0({get:function(){return this.concat()}},I.g),J[I.g](I.Lv,{value:{value:{}}})),0),X=[];128>e;e++)X[e]=String.fromCharCode(e);c(I,true,(m(I,(m(I,(m(I,(Z(6,(b(function(L,T,g,x,w,D){v(false,true,L,T)||(w=ZU(L.L),T=w.P,D=w.A,g=T.length,x=w.Kv,w=w.TW,T=0==g?new x[D]:1==g?new x[D](T[0]):2==g?new x[D](T[0],T[1]):3==g?new x[D](T[0],T[1],T[2]):4==g?new x[D](T[0],T[1],T[2],T[3]):2(),Z(w,L,T))},(Z(446,I,R((b(function(L,T,g,x,w,D){if(!v(true,true,L,T)){if((D=(w=Q((T=(g=(D=a(L),T=a(L),a(L)),w=a(L),Q)(T,L),w),L),Q(D,L)),L=Q(g,L),"object")==iN(D)){for(x in g=[],D)g.push(x);D=g}for(x=0,g=D.length,L=0<L?L:1;x<g;x+=L)T(D.slice(x,(x|0)+(L|0)),w)}},I,((b(function(L){nv(4,L)},(b(function(L,T,g,x,w,D,M){for(x=(T=(g=Q((D=a(L),w=dN(L),M="",157),L),g.length),0);w--;)x=((x|0)+(dN(L)|0))%T,M+=X[g[x]];Z(D,L,M)},I,(Z(409,(I.cV=(Z(373,I,[160,(b(function(L,T,g,x){Z((x=Q((g=(T=a((g=(x=a(L),a(L)),L)),Q(g,L)),x),L),T),L,x[g])},(b(function(L,T,g,x,w){Z((w=(g=(g=a((x=(T=a(L),a(L)),L)),w=a(L),Q)(g,L),x=Q(x,L),Q(w,L)),T),L,PU(x,w,L,g))},I,(b(function(L,T,g,x,w){for(x=(w=(g=dN((T=a(L),L)),[]),0);x<g;x++)w.push(z(L));Z(T,L,w)},I,(b(function(L){gN(L,1)},(b(function(L,T,g,x){!v(false,true,L,T)&&(T=ZU(L),x=T.Kv,g=T.A,L.L==L||g==L.S0&&x==L)&&(Z(T.TW,L,g.apply(x,T.P)),L.G=L.Z())},(b(function(L,T,g,x){Z((g=Q((T=a((g=a(L),L)),x=Q(T,L),g),L),T),L,x+g)},(Z(19,I,(b(function(L,T,g){Z((g=(T=a(L),a(L)),T=Q(T,L),T=iN(T),g),L,T)},I,(b(function(L,T,g,x){Z((T=a((x=(g=a(L),a(L)),L)),T),L,Q(g,L)||Q(x,L))},I,(b(function(L,T){L=(T=a(L),Q)(T,L.L),L[0].removeEventListener(L[1],L[2],F)},(b(function(L,T,g){v(false,true,L,T)||(T=a(L),g=a(L),Z(g,L,function(x){return eval(x)}(Gl(Q(T,L.L)))))},I,(b(function(L){Mi(L,3)},I,(b(function(L,T,g){0!=(g=(g=(T=a(L),a(L)),Q)(g,L),Q(T,L))&&Z(169,L,g)},(Z(426,I,(b(function(L,T,g,x,w){x=(T=Q((g=(w=(T=(x=a(L),g=a(L),a)(L),a(L)),Q(g,L)),w=Q(w,L),T),L),Q)(x,L.L),0!==x&&(T=PU(T,1,L,w,x,g),x.addEventListener(g,T,F),Z(426,L,[x,g,T]))},(Z((b(function(L){gN(L,4)},(b(function(L,T,g,x){Z((x=(T=(x=a(L),a(L)),g=a(L),T=Q(T,L),Q(x,L)),g),L,x in T|0)},(Z(258,(Z(504,(Z(98,I,(b(function(){},I,(b(function(L,T,g,x){Z((T=z((x=a(L),L)),g=a(L),g),L,Q(x,L)>>>T)},I,(b(function(L,T,g){Z((g=(T=a(L),a(L)),g),L,""+Q(T,L))},I,(b(function(L,T){sK((T=Q(a(L),L),L.L),T)},I,(b(function(L,T,g,x,w,D,M,W,t,p,V,u){function U(Y,d){for(;g<Y;)u|=z(L)<<g,g+=8;return u>>=(d=u&(1<<(g-=Y,Y))-1,Y),d}for(w=(x=(g=(V=a(L),u=0),M=(U(3)|0)+1,U(5)),[]),D=T=0;D<x;D++)W=U(1),w.push(W),T+=W?0:1;for(p=(D=(T=((T|0)-1).toString(2).length,0),[]);D<x;D++)w[D]||(p[D]=U(T));for(T=0;T<x;T++)w[T]&&(p[T]=a(L));for(t=[];M--;)t.push(Q(a(L),L));b(function(Y,d,y6,C,S){for(C=(y6=[],S=[],0);C<x;C++){if(d=p[C],!w[C]){for(;d>=S.length;)S.push(a(Y));d=S[d]}y6.push(d)}(Y.S=fv(t.slice(),Y),Y).v=fv(y6,Y)},L,V)},I,(b(function(L,T,g,x){if(x=L.mu.pop()){for(g=z(L);0<g;g--)T=a(L),x[T]=L.K[T];L.K=(x[504]=(x[19]=L.K[19],L).K[504],x)}else Z(169,L,L.O)},(b(function(L){Mi(L,4)},I,(b(function(L,T,g,x){(x=(g=a((T=a(L),L)),a(L)),L.L==L)&&(g=Q(g,L),x=Q(x,L),Q(T,L)[g]=x,226==T&&(L.i=void 0,2==g&&(L.H=h(32,L,false),L.i=void 0)))},I,(b(function(L,T,g,x){T=(g=a((T=(x=a(L),a(L)),L)),x=Q(x,L),Q)(T,L),Z(g,L,+(x==T))},I,(Z(90,((Z(117,(((I.l=25,(I.T=void 0,(e=window.performance||{},(I.v=(I.XU=0,void 0),I.K=[],I).rY=(I.X=[],(I.O=0,I.W=0,I).N=[],I.H=(I.mu=[],I.R=false,void 0),I.B=0,false),I).S=void 0,I.F=[],I).j=(I.Y=0,I.V=void 0,I.G=0,I.D=0,1),I).pv=(I.J=8001,(I.I=void 0,I.h=(I.S0=function(L){this.L=L},null),I.L=(I.C=[],I),I).U=false,(I.i=void 0,e).timeOrigin||(e.timing||{}).navigationStart||0),Z)(169,I,0),I),0),I).Yv=0,I),[]),111)),292)),Z(184,I,353),170)),I),382),286)),390)),281)),7)),326)),{})),I),2048),I),[0,0,0]),I),44),I),84),207),I,q),I),396),0)),I),323),177)),442)),I),81),376)),433)),[])),I),14),I),222),I),347),287)),50)),I),123),0),0]),0),I),I),205)),I),432),I).vV=0,215)),4))),I),228),I),0),[ev])),[l,n])),[WU,E])),true))},R=function(n,E){for(E=[];n--;)E.push(255*Math.random()|0);return E},f=function(n,E,I,e){for(e=(I=(n|0)-1,[]);0<=I;I--)e[(n|0)-1-(I|0)]=E>>8*I&255;return e},Y0=function(n,E){return J[E](J.prototype,{splice:n,floor:n,pop:n,stack:n,document:n,call:n,length:n,prototype:n,parent:n,console:n,propertyIsEnumerable:n,replace:n})},Z=function(n,E,I){if(169==n||117==n)E.K[n]?E.K[n].concat(I):E.K[n]=fv(I,E);else{if(E.U&&226!=n)return;373==n||446==n||90==n||19==n||258==n?E.K[n]||(E.K[n]=pv(118,E,I,n)):E.K[n]=pv(81,E,I,n)}226==n&&(E.H=h(32,E,false),E.i=void 0)},qi=function(n,E,I,e){function X(){}return{invoke:(e=aa((I=void 0,n),function(L){X&&(E&&B(E),I=L,X(),X=void 0)},!!E)[0],function(L,T,g,x){function w(){I(function(D){B(function(){L(D)})},g)}if(!T)return T=e(g),L&&L(T),T;I?w():(x=X,X=function(){(x(),B)(w)})})}},OK=function(n,E,I){if(3==n.length){for(I=0;3>I;I++)E[I]+=n[I];for(I=[13,8,13,12,16,(n=0,5),3,10,15];9>n;n++)E[3](E,n%3,I[n])}},K=function(n,E,I){I=this;try{bN(E,n,this)}catch(e){A(e,this),n(function(X){X(I.T)})}},dN=function(n,E){return E=z(n),E&128&&(E=E&127|z(n)<<7),E},UK=function(n,E,I,e,X){for(X=(I=I[e=I[2]|0,3]|0,0);14>X;X++)n=n>>>8|n<<24,n+=E|0,n^=e+2298,I=I>>>8|I<<24,E=E<<3|E>>>29,I+=e|0,I^=X+2298,E^=n,e=e<<3|e>>>29,e^=I;return[E>>>24&255,E>>>16&255,E>>>8&255,E>>>0&255,n>>>24&255,n>>>16&255,n>>>8&255,n>>>0&255]},hI=function(n,E,I){return E.o(function(e){I=e},false,n),I},z=function(n){return n.S?Lv(n.v,n):h(8,n,true)},jv=function(n,E){return E[n]<<24|E[(n|0)+1]<<16|E[(n|0)+2]<<8|E[(n|0)+3]},rN=function(n,E,I,e,X,L){if(!n.T){n.B++;try{for(X=(L=0,n.O),e=void 0;--E;)try{if(I=void 0,n.S)e=Lv(n.S,n);else{if((L=Q(169,n),L)>=X)break;e=Q((Z(117,n,L),I=a(n),I),n)}v(false,false,(e&&e[cU]&2048?e(n,E):P(0,n,[r,21,I]),n),E)}catch(T){Q(184,n)?P(22,n,T):Z(184,n,T)}if(!E){if(n.gY){rN(n,(n.B--,168668240895));return}P(0,n,[r,33])}}catch(T){try{P(22,n,T)}catch(g){A(g,n)}}n.B--}},G=function(n,E,I,e,X,L){if(n.L==n)for(L=Q(E,n),446==E?(E=function(T,g,x,w){if((w=(x=L.length,(x|0)-4>>3),L.q7)!=w){g=[0,(w=(w<<3)-(L.q7=w,4),0),X[1],X[2]];try{L.O$=UK(jv((w|0)+4,L),jv(w,L),g)}catch(D){throw D;}}L.push(L.O$[x&7]^T)},X=Q(258,n)):E=function(T){L.push(T)},e&&E(e&255),n=0,e=I.length;n<e;n++)E(I[n])},fv=function(n,E,I){return((I=J[E.g](E.xv),I)[E.g]=function(){return n},I).concat=function(e){n=e},I},h=function(n,E,I,e,X,L,T,g,x,w,D,M,W,t){if((g=Q(169,E),g)>=E.O)throw[r,31];for(w=(e=(D=E.aN.length,n),0),x=g;0<e;)T=x>>3,t=x%8,W=8-(t|0),L=E.X[T],W=W<e?W:e,I&&(X=E,X.i!=x>>6&&(X.i=x>>6,M=Q(226,X),X.V=UK(X.i,X.H,[0,0,M[1],M[2]])),L^=E.V[T&D]),x+=W,w|=(L>>8-(t|0)-(W|0)&(1<<W)-1)<<(e|0)-(W|0),e-=W;return Z(169,E,(I=w,(g|0)+(n|0))),I},q=this||self,B=q.requestIdleCallback?function(n){requestIdleCallback(function(){n()},{timeout:4})}:q.setImmediate?function(n){setImmediate(n)}:function(n){setTimeout(n,0)},PU=function(n,E,I,e,X,L){function T(){if(I.L==I){if(I.K){var g=[H,n,e,void 0,X,L,arguments];if(2==E)var x=c(I,(m(I,g),false),false);else if(1==E){var w=!I.N.length;(m(I,g),w)&&c(I,false,false)}else x=mC(g,I);return x}X&&L&&X.removeEventListener(L,T,F)}}return T},pv=function(n,E,I,e,X,L,T,g){return((L=(T=n&(X=$0,I=[89,-43,5,1,4,91,I,75,51,-20],7),J[E.g](E.Lv)),L)[E.g]=function(x){T+=6+7*n,g=x,T&=7},L).concat=function(x){return(g=(x=(x=e%16+1,-40*e*e*g-x*g- -2240*g+I[T+51&7]*e*x+40*g*g+T+1*e*e*x- -1720*e*g+(X()|0)*x),void 0),x=I[x],I[(T+13&7)+(n&2)]=x,I)[T+(n&2)]=-43,x},L},zl=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),cU=((K.prototype.gY=false,K.prototype.dY=void 0,K).prototype.s="toString",K.prototype.BV=void 0,[]),H=[],l=[],k=[],ev=[],WU=[],r={},N=[],uN=[],$0=((y=(((Tl,function(){})(R),DU,function(){})(OK),K.prototype.g="create",K.prototype),y).bV=function(n,E,I){return n^((E=((E^=E<<13,E^=E>>17,E)^E<<5)&I)||(E=1),E)},void 0),J=(y.o=(y.HV=function(){return Math.floor(this.D+(this.Z()-this.Y))},((y.GW=function(n,E,I,e,X,L){for(X=(e=L=0,[]);L<n.length;L++)for(I=I<<E|n[L],e+=E;7<e;)e-=8,X.push(I>>e&255);return X},y).Z=(y.he=function(){return Math.floor(this.Z())},(window.performance||{}).now)?function(){return this.pv+window.performance.now()}:function(){return+new Date},y).PV=function(n,E,I,e,X){for(e=X=0;X<n.length;X++)e+=n.charCodeAt(X),e+=e<<10,e^=e>>6;return X=new Number((n=(e+=e<<3,e^=e>>11,e+(e<<15)>>>0),n&(1<<E)-1)),X[0]=(n>>>E)%I,X},function(n,E,I,e,X){if(I="array"===iN(I)?I:[I],this.T)n(this.T);else try{e=[],X=!this.N.length,m(this,[N,e,I]),m(this,[k,n,e]),E&&!X||c(this,E,true)}catch(L){A(L,this),n(this.T)}}),r).constructor;(K.prototype.u=function(n,E){return $0=function(){return n==E?-56:-98},E={},n={},function(I,e,X,L,T,g,x,w,D,M,W,t,p,V,u){n=(t=n,E);try{if(e=I[0],e==l){p=I[1];try{for(x=(u=(V=[],L=0,atob(p)),0);L<u.length;L++)T=u.charCodeAt(L),255<T&&(V[x++]=T&255,T>>=8),V[x++]=T;Z(226,this,(this.O=(this.X=V,this).X.length<<3,[0,0,0]))}catch(U){P(17,this,U);return}rN(this,8001)}else if(e==N)I[1].push(Q(373,this).length,Q(504,this),Q(446,this).length,Q(90,this).length),Z(98,this,I[2]),this.K[67]&&Q6(this,Q(67,this),8001);else{if(e==k){(w=(V=I[2],f(2,(Q(373,this).length|0)+2)),X=this.L,this).L=this;try{W=Q(19,this),0<W.length&&G(this,373,f(2,W.length).concat(W),10),G(this,373,f(1,this.j),109),G(this,373,f(1,this[k].length)),u=0,u+=Q(6,this)&2047,u-=(Q(373,this).length|0)+5,D=Q(446,this),4<D.length&&(u-=(D.length|0)+3),0<u&&G(this,373,f(2,u).concat(R(u)),15),4<D.length&&G(this,373,f(2,D.length).concat(D),156)}finally{this.L=X}if(g=((x=R(2).concat(Q(373,this)),x[1]=x[0]^6,x)[3]=x[1]^w[0],x[4]=x[1]^w[1],this).N7(x))g="!"+g;else for(u=0,g="";u<x.length;u++)M=x[u][this.s](16),1==M.length&&(M="0"+M),g+=M;return Q(((Z(504,this,((L=g,Q)(373,this).length=V.shift(),V.shift())),Q(446,this)).length=V.shift(),90),this).length=V.shift(),L}if(e==uN)Q6(this,I[1],I[2]);else if(e==H)return Q6(this,I[1],8001)}}finally{n=t}}}(),K.prototype.yC=0,K.prototype).N7=function(n,E,I,e){if(I=window.btoa){for(e="",E=0;E<n.length;E+=8192)e+=String.fromCharCode.apply(null,n.slice(E,E+8192));n=I(e).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else n=void 0;return n},K.prototype.Z4=0;var V6,tI=/./,AI=(K.prototype[WU]=[0,0,1,1,0,1,1],l.pop.bind(K.prototype[N])),Gl=function(n,E){return(E=Xn())&&1===n.eval(E.createScript("1"))?function(I){return E.createScript(I)}:function(I){return""+I}}(((V6=Y0({get:AI},(tI[K.prototype.s]=AI,K.prototype.g)),K).prototype.iV=void 0,q));(O=q.botguard||(q.botguard={}),40<O.m)||(O.m=41,O.bg=qi,O.a=aa),O.kDL_=function(n,E,I){return[(I=new K(E,n),function(e){return hI(e,I)})]};}).call(this);'));
}).call(this);
#4 JavaScript::Eval (size: 22) - SHA256: 662748d1507b16ab56d1bceff58b8302eb43f21ce0de70b24b21b8ef39aeff35
0,
function(L) {
    nv(2, L)
}
#5 JavaScript::Eval (size: 18) - SHA256: 0f3342bc14063d9ed7a669eb067b50ea17b2cb7dcb51968939b72fa9ac862d91
var foo = (x) => x + 1
#6 JavaScript::Eval (size: 64) - SHA256: 9908576f4e1cce70106175d94488f9071022d3485f8a8ccf0655b399b318a7c4
0,
function(L, T, g) {
    (T = (g = a((T = a(L), L)), L).K[T] && Q(T, L), Z)(g, L, T)
}
#7 JavaScript::Eval (size: 19) - SHA256: 56e50d855741d508ab6465d3860ef0ad117ab967993b9111caeaec90f64e912b
document.namespaces

Executed Writes (12)
#1 JavaScript::Write (size: 128) - SHA256: 74cd6472dc48a71fbe89bdb2b3f387cc7d714601094140cfe84911037e845f17
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/jam-alarm-tersadis-di-dunia.html" > Jam Alarm Tersadis di Dunia < /a></li >
#2 JavaScript::Write (size: 114) - SHA256: 7271de38793dcb6fb1d314acd73736664a1e0cd19ad4137ff846c91e59ed016e
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/100-fakta-fakta-unik.html" > 100 Fakta - fakta unik < /a></li >
#3 JavaScript::Write (size: 121) - SHA256: 1033748b3028e9a8cd9eaffea8ff199c338a8a3a5976bd2ba0c1668eff88dc04
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/gaji-di-perusahaan-game.html" > Gaji di Perusahaan Game < /a></li >
#4 JavaScript::Write (size: 146) - SHA256: f789ec24b98137c7654c0d43352a8ed4aa4d693e3e76b92f5b7471d8c0e715ce
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html" > Kota Prasejarah Tertua di Eropa Ditemukan < /a></li >
#5 JavaScript::Write (size: 134) - SHA256: 24e7ecf295e05d3838fe53edf5b52df966c9a2870accdf4a2e754b684daaef72
< li > < a href = "http://perfectblogger01.blogspot.com/2012/12/cara-membuat-read-more-di-blog.html" > Cara membuat read more di blog < /a></li >
#6 JavaScript::Write (size: 130) - SHA256: 7a6020c179027194c584faefd2ebe296b10ec3d1945cb493a49127449ba47712
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/mengatasi-tipe-tipe-konsumen.html" > Mengatasi Tipe - Tipe Konsumen < /a></li >
#7 JavaScript::Write (size: 5) - SHA256: 348845d8804b5c895e2a2938423ed17b2dc4cd3aad9f966c13e0ed89223b2f90
< /ul>
#8 JavaScript::Write (size: 4) - SHA256: 3988411e716c32c2021227e8c538a8334075eadf82ac452c4878969ffd8d2244
< ul >
#9 JavaScript::Write (size: 110) - SHA256: 805ad5c90f5123b12e5cc665c39b28179612f707d7f012ee25e242a75beb4d41
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/planet-hunian-baru.html" > Planet Hunian Baru < /a></li >
#10 JavaScript::Write (size: 152) - SHA256: b27fa19c66fddc1710e919801b12f46ba73ef0e4bcbbdeb162e1398e7f03b81f
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/barang-yang-tidak-bisa-melewati-bandara.html" > Barang yang tidak bisa Melewati Bandara < /a></li >
#11 JavaScript::Write (size: 105) - SHA256: 158a786d1fbe51e49d64b374edf353065735939267574d9c479c6664b45eab87
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/bumi-akan-gelap.html" > Bumi akan gelap < /a></li >
#12 JavaScript::Write (size: 150) - SHA256: 5ccd44227e84b7da9c248a2f48175d1418c80f98125a2f53e025653de0b75f9b
< li > < a href = "http://perfectblogger01.blogspot.com/2012/11/10-geng-motor-paling-ditakuti-di-dunia.html" > 10 Geng Motor Paling Ditakuti di Dunia < /a></li >


HTTP Transactions (175)


Request Response
                                        
                                            GET /2012/11/kota-prasejarah-tertua-di-eropa.html HTTP/1.1 
Host: perfectblogger01.blogspot.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.217.21.161
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Location: http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html
Content-Encoding: gzip
Date: Wed, 30 Nov 2022 11:56:02 GMT
Expires: Wed, 30 Nov 2022 11:56:02 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 215
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   215
Md5:    5a5633d85af5657bcc2a96d921e26cf1
Sha1:   6318f3df212ab58d9e3118c636e5b26f10670471
Sha256: 2738ae30dc828f4fcf9148bf26a6a2328211fea701f20ba0fb2bfa27fd19c0c1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4605
Expires: Wed, 30 Nov 2022 13:12:47 GMT
Date: Wed, 30 Nov 2022 11:56:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 862
Cache-Control: max-age=168579
Date: Wed, 30 Nov 2022 11:56:02 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 10:45:41 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 11:19:41 GMT
cache-control: public,max-age=3600
age: 2181
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2485
Expires: Wed, 30 Nov 2022 12:37:27 GMT
Date: Wed, 30 Nov 2022 11:56:02 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: IhJy2Cgs5mQh6WMJ2ftLWlOIha3DhUMmgZWT9GX8I+zAwWHnE4yUONtdBUBYdiy4m+vXCoP6/PE=
x-amz-request-id: KYJEGKQTNYJM54WY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 11:45:51 GMT
age: 611
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 30 Nov 2022 11:56:02 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /2012/11/kota-prasejarah-tertua-di-eropa.html HTTP/1.1 
Host: perfectblogger01.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Wed, 30 Nov 2022 11:56:02 GMT
Date: Wed, 30 Nov 2022 11:56:02 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 29 Nov 2022 13:24:36 GMT
ETag: W/"b13be1b223370345027d6f869348a9a9dbbcef78f5b92a8504d90fa2f62e41c2"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 22388
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (549)
Size:   22388
Md5:    558c3cca853add7b2c6d7d6691b1cb89
Sha1:   35313f64f123fb6aea7e7122a17d264f464bf7dc
Sha256: 1e2b11559978b54ec07a41cc9280a18c6e3cf1fb96a1c78fa8c1d5332aaa6d46

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 11:11:14 GMT
cache-control: public,max-age=3600
age: 2689
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /ajax/libs/jquery/1.4.4/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.42
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 27266
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 11:09:38 GMT
Expires: Wed, 29 Nov 2023 11:09:38 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Age: 89185


--- Additional Info ---
Magic:  ASCII text, with very long lines (820)
Size:   27266
Md5:    88ed7d5a26ffff39cbae41fa7b2c615d
Sha1:   5ea49f5aeeb49e8abd640da2f6d657fb57cc5acc
Sha256: 52943bd40a595c39f84e23ddd74755daa4d013b55c709de9b312661e59103ab3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 867
Cache-Control: 'max-age=158059'
Date: Wed, 30 Nov 2022 11:56:03 GMT
Last-Modified: Wed, 30 Nov 2022 11:41:36 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: perfectblogger01.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Wed, 30 Nov 2022 11:56:03 GMT
Expires: Wed, 07 Dec 2022 11:56:03 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 30 Nov 2022 09:55:07 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/recentcomment.js HTTP/1.1 
Host: badilah.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         173.194.73.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1583
Date: Wed, 30 Nov 2022 11:56:03 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1583
Md5:    92edd8838f54997e9e8f72283b1f75a1
Sha1:   8b63c4b30277e6644b50cdfa11b50e06f6bbcea4
Sha256: 813c4c01479ad6f9eb41f711f414cf7abc26aa5ad7da12627d90adaa91d10cbf
                                        
                                            GET /files/Rainbow_Colors_Way2blogging.js HTTP/1.1 
Host: bloggerblogwidgets.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         173.194.73.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1597
Date: Wed, 30 Nov 2022 11:56:03 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1597
Md5:    a3e18d32edb3b7b8550cce7e7551f986
Sha1:   d101cf50fd830b1fab69253757e3d86030d52c40
Sha256: 6d77430de1b09605488e6b003acc7459fbe448030da7619690dfcd6ebaec5b87
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/a.js HTTP/1.1 
Host: st-n.ads3-adnow.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         92.223.97.97
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 30 Nov 2022 11:56:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 04 Apr 2022 07:22:22 GMT
ETag: W/"624a9cae-157b4"
Expires: Wed, 30 Nov 2022 11:57:03 GMT
Cache-Control: max-age=60
Cache: HIT
X-Cached-Since: 2022-11-30T11:55:50+00:00
X-ID: sto5-up-gc11
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (903)
Size:   33742
Md5:    ea70c09f3816273429e9106723bc0f30
Sha1:   e9fb713bf361989872b591a36fabdbb8bac117da
Sha256: e3e1797a8eb677d4e9fb3458da34adc32df9226155009d2b0392a6c125d0c42c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /jquery-latest.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         69.16.175.42
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 83875
Last-Modified: Wed, 16 Feb 2022 10:50:39 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd6ff-4508e"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1669809363.dop003.sk1.t,1669809363.cds212.sk1.c


--- Additional Info ---
Magic:  ASCII text
Size:   83875
Md5:    ea735805900bbd9b4dc4f93e4348b8d8
Sha1:   2e2d5c3270d6a6a0e4aab05f3a3f4ea8f8f7c07c
Sha256: 962d003a78697a2a9508f3da6cc6a65259f3fb9b59d6eaa1486f7034830494b2
                                        
                                            GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:01:43 GMT
expires: Wed, 29 Nov 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
age: 78860
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30596)
Size:   6620
Md5:    6f46e6f68353c7911fe34f31faa1518f
Sha1:   ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
Sha256: 0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
                                        
                                            GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:44:05 GMT
expires: Wed, 29 Nov 2023 13:44:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
age: 79918
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1441)
Size:   6573
Md5:    f60e5037324bf7fd2256c16929886f09
Sha1:   aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
Sha256: 71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: img2.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 13:44:53 GMT
Expires: Tue, 06 Dec 2022 13:44:53 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 06:52:50 GMT
Age: 79870


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            GET /data/photo/2012/11/04/1823305620X310.jpg HTTP/1.1 
Host: assets.kompas.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         54.230.111.72
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Wed, 30 Nov 2022 11:56:03 GMT
Content-Length: 167
Connection: keep-alive
Location: https://assets.kompas.com/data/photo/2012/11/04/1823305620X310.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mJbIUutO4FmeBXjVYxZyUem5kBtuoKkHk1vF6x9ifmKeowUiGLrKZw==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
age: 108754
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56726
Md5:    1217c8e34acb09c7cea97bae4d386ea1
Sha1:   55ee17703d0a7710943e93913bacb49220d98b4b
Sha256: c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
                                        
                                            GET /-iOANl2pnXLY/TxBMw_XkS6I/AAAAAAAABSg/f7OYS-yF5GY/s1600/smileys.gif HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v1146"
Expires: Thu, 01 Dec 2022 11:56:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="smileys.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 11:56:03 GMT
Server: fife
Content-Length: 43
X-XSS-Protection: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 2 x 2\012- data
Size:   43
Md5:    eca0bd30aaa708a5e93a48822aaac070
Sha1:   11745272001f898516579f90f0c0d34113165c9f
Sha256: cce2ef82c68beb2105e67c9f95dd2d36a446d66fca38421cc65a57e38f615642
                                        
                                            GET /blogger_img_proxy/ANbyha2P_chGZGnI8JQNVczZoWflOu6DAVnJPlM7M5JGuuySZ4npnvqfo_gcb6zngD3vFIU7qFQsnfY0oryqrII7lTMMCFdqrbuNwfUS7VBO7BbNYTB8=w72-h72-n-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.129
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
expires: Thu, 01 Dec 2022 11:56:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 11:56:03 GMT
server: fife
content-length: 3985
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size:   3985
Md5:    c9c43ce7941f8b13e644932548e23c70
Sha1:   bf0206bda2421abcbebf7d4efb82d9bdf57cfa21
Sha256: 03df3f781949f095c6b35401cc2201a4d0fc572301fd55a49fe897b28c38a4d0
                                        
                                            GET /albums/ss248/z33s/down.png HTTP/1.1 
Host: i580.photobucket.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         143.204.55.79
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Wed, 30 Nov 2022 11:56:03 GMT
Content-Length: 167
Connection: keep-alive
Location: https://i580.photobucket.com/albums/ss248/z33s/down.png
X-Cache: Redirect from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -OFSRv3sPZ7rl84dio3usM5gvKYjNq-TkXL0n6riZBuTonQAqQFu6Q==
Vary: Origin


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /albums/ss248/z33s/house.png HTTP/1.1 
Host: i580.photobucket.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         143.204.55.79
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Wed, 30 Nov 2022 11:56:03 GMT
Content-Length: 167
Connection: keep-alive
Location: https://i580.photobucket.com/albums/ss248/z33s/house.png
X-Cache: Redirect from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QgqzfJgS9iXWb1_q9roc8nOsAQ0ZcnwDIIijfzLE3PS0BzaqOgrVxQ==
Vary: Origin


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /albums/ss248/z33s/refresh.png HTTP/1.1 
Host: i580.photobucket.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         143.204.55.79
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Wed, 30 Nov 2022 11:56:03 GMT
Content-Length: 167
Connection: keep-alive
Location: https://i580.photobucket.com/albums/ss248/z33s/refresh.png
X-Cache: Redirect from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _7Eb-lGMAMl7S7f_Y0DDllfBBwdQhgA_pddaWEJgFOA1nbxQhJtQ0Q==
Vary: Origin


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.217.21.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Wed, 30 Nov 2022 11:56:03 GMT
expires: Wed, 30 Nov 2022 11:56:03 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1279)
Size:   20984
Md5:    7ac44ef24e267df17ff72f195b252806
Sha1:   62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
Sha256: aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
                                        
                                            GET /-cyq-tnH4L74/T9Eiat08DSI/AAAAAAAAC-k/Y-5USGHOI8c/s000/feeds-blue.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "vbe9"
Expires: Thu, 01 Dec 2022 11:56:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="feeds-blue.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 11:56:03 GMT
Server: fife
Content-Length: 5669
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size:   5669
Md5:    33d3bba8f8a9ec2b93574f15e23ff4ac
Sha1:   272530cdabd9e56b6e00fca16e099325e24558ad
Sha256: 6e36ee24e9871b7571b81eec58fef4538ba6bfddd2f646fd0dfbc8df1b1a8a20
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /feeds/posts/default/-/Info%20-%20info%20lainnya?alt=json-in-script&callback=related_results_labels&max-results=10 HTTP/1.1 
Host: perfectblogger01.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"0344accf213d1a9e3d11e2330dcb041b74d094b4558cb824422567ad6093c264"
Date: Wed, 30 Nov 2022 11:56:03 GMT
Server: blogger-renderd
Expires: Wed, 30 Nov 2022 11:56:04 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 29 Nov 2022 13:24:36 GMT
Content-Encoding: gzip
Content-Length: 19031
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65418)
Size:   19031
Md5:    3fbb64575f72c49c3ef17e841a00042f
Sha1:   3813bfcb8c1ed4a4cd35340bb04cab9b90efc83b
Sha256: 02040e95f09d182ec48db3ee5f63252fdd5c4040c60298ac61c506f611cbb53b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PynI7DNrGVqXk1IX4RKdzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.237.51.86
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FivjwoURmE7erLgjx6EjpRRkw0Q=

                                        
                                            GET /-yFx9-Ji02gc/T9EiaId2EuI/AAAAAAAAC-M/pSV9VVUsZ9E/s000/search.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "vbe3"
Expires: Thu, 01 Dec 2022 11:56:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="search.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 11:56:03 GMT
Server: fife
Content-Length: 730
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   730
Md5:    1c14460969b272f349e8861e6b3cb51d
Sha1:   9342bc89f7f0970b736c8a268c3cdef23cff80c1
Sha256: 4222af73504edeb242ed124db241774381cbf717bf1e832fecc1d4d98a55b4e4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-8uo5GN0MrhY/T9EiZ_u5fLI/AAAAAAAAC-E/qVwr1Jh1ROs/s000/breadlabel.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="breadlabel.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4298
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 11:56:03 GMT
Expires: Thu, 24 Nov 2022 08:48:58 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vbe1"
Age: 0


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 30x19, components 3\012- data
Size:   4298
Md5:    502f2bb2bf35f2f3fb4785d60d731d63
Sha1:   2f9c4a97be7f66e41c0548eeb2003fa80d364e59
Sha256: b745976a1704a3a8d130cf84a57a85a83346e11057386b85189df0215040f20d
                                        
                                            GET /site/bukarahasiahost/blogger-comment-smileys/bukarahasiablogspot-ysmileys-bloggercomments.txt HTTP/1.1 
Host: sites.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.78
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
x-frame-options: SAMEORIGIN
x-robots-tag: noarchive
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 11:56:03 GMT
last-modified: Sun, 25 Dec 2011 16:53:39 GMT
etag: "1324832019510"
location: https://sites.google.com/site/bukarahasiahost/blogger-comment-smileys/bukarahasiablogspot-ysmileys-bloggercomments.txt?attredirects=0
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 232
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   232
Md5:    c19843200fa0161bbe8bac5f30cc4171
Sha1:   3baa85ccc5a916c675442c54de8ec693ecd0cfd9
Sha256: 6d0e79bbd2b666682841a7a41caa72bc3b1ca0cb792c62cf3fdfc71f7251df34
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-9kLIkpNuLug/T9EiZkmO1II/AAAAAAAAC98/nVFix2sl2Wk/s000/browse.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="browse.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4121
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 11:56:03 GMT
Expires: Wed, 30 Nov 2022 23:27:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vbdf"
Age: 0


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 13x16, components 3\012- data
Size:   4121
Md5:    2f1ae8b1dabbc7a8b8906e508a2c6037
Sha1:   78ae16f1e3d43af66716f7b3a49b0cb1bbeb2b7d
Sha256: b87d291a94a3b41c8c576dfbaa149e3b47edb27ee63ef7f20316f26b000e7061
                                        
                                            GET /plugins/like.php?href=http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html&action=like&layout=standard&show_faces=false&width=450&font=arial&colorscheme=light HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         31.13.72.36
HTTP/1.1 301 Moved Permanently
Content-Type: text/plain
                                        
Location: https://www.facebook.com/plugins/like.php?href=http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html&action=like&layout=standard&show_faces=false&width=450&font=arial&colorscheme=light
Server: proxygen-bolt
Date: Wed, 30 Nov 2022 11:56:03 GMT
Connection: keep-alive
Content-Length: 0

                                        
                                            GET /files/recentcomment.js HTTP/1.1 
Host: badilah.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         173.194.73.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1583
Date: Wed, 30 Nov 2022 11:56:03 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1583
Md5:    92edd8838f54997e9e8f72283b1f75a1
Sha1:   8b63c4b30277e6644b50cdfa11b50e06f6bbcea4
Sha256: 813c4c01479ad6f9eb41f711f414cf7abc26aa5ad7da12627d90adaa91d10cbf
                                        
                                            GET /-qKk9OFyPUMo/T9EiZYf_M_I/AAAAAAAAC90/pyKgT45MfY8/s000/bg.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3976
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 11:56:03 GMT
Expires: Wed, 30 Nov 2022 23:27:22 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vbdd"
Age: 0


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 11x70, components 3\012- data
Size:   3976
Md5:    0f266e82581c210e861c2daccb2bafa2
Sha1:   8203cd9de5cf5bcc81e07da771f5234503aa2f34
Sha256: f68518478fe7a7dac15c772fb0e7052ef7fc15e0f64d91ef8262744c46a96037
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1299
Cache-Control: max-age=165364
Date: Wed, 30 Nov 2022 11:56:03 GMT
Etag: "638722b4-1d7"
Expires: Fri, 02 Dec 2022 09:52:07 GMT
Last-Modified: Wed, 30 Nov 2022 09:30:28 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /feeds/comments/default?alt=json&callback=tb_recent_comments&max-results=5 HTTP/1.1 
Host: perfectblogger01.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"2ca6f3fa7239c43fe6c0d4e136550530763a1fe86ecc06667b1cdbe49d887e94"
Date: Wed, 30 Nov 2022 11:56:03 GMT
Server: blogger-renderd
Expires: Wed, 30 Nov 2022 11:56:04 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Wed, 02 Nov 2022 12:23:03 GMT
Content-Encoding: gzip
Content-Length: 1802
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  ASCII text, with very long lines (10078)
Size:   1802
Md5:    44922e920e0f608f81ac86b0a1a4c95d
Sha1:   491fbf4fa1bc1d08e160c1dccb2488ff3041946a
Sha256: 17c5aff20d9ee8393f939d382e33a6e3a650891d50bf0f3355e23ea161f6f424
                                        
                                            GET /files/Rainbow_Colors_Way2blogging.js HTTP/1.1 
Host: bloggerblogwidgets.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         173.194.73.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1597
Date: Wed, 30 Nov 2022 11:56:03 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1597
Md5:    a3e18d32edb3b7b8550cce7e7551f986
Sha1:   d101cf50fd830b1fab69253757e3d86030d52c40
Sha256: 6d77430de1b09605488e6b003acc7459fbe448030da7619690dfcd6ebaec5b87
                                        
                                            GET /plugins/like.php?href=http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html&action=like&layout=standard&show_faces=false&width=450&font=arial&colorscheme=light HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://perfectblogger01.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: keii6vPbTL6ujN9M1yN8O97x2K+8QsIIDiNYSRE9fWNzT0X+DKNTGsEnK5kpxu88VRFqexZR57/iyyxHsMylYg==
content-length: 0
date: Wed, 30 Nov 2022 11:56:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /site/bukarahasiahost/blogger-comment-smileys/bukarahasiablogspot-ysmileys-bloggercomments.txt?attredirects=0 HTTP/1.1 
Host: sites.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://perfectblogger01.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.78
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
location: https://cb6a6a86-a-62cb3a1a-s-sites.googlegroups.com/site/bukarahasiahost/blogger-comment-smileys/bukarahasiablogspot-ysmileys-bloggercomments.txt?attachauth=ANoY7cqyARfzpL9dMOec8NnVKlf6E-VL7SrZdTtNU4dPEdZu5Lx7lVTxa6Qom5ePgEJeB5dLiRLfUUaaTX4auCvAYhdNaBy3e8zAAWFV6TZSLPN9vRFlrJWowm6tKaVwMU5tQzU-F2lal8Ex9PlDnHaKND7-7KdZoymX5zqNUqV2WUumq8r72vxEID_vG5ibdkzGrQAONTjnqKdycSFVk9icodBG2fipHOdKURYlQA4G2jvSW7yStLSFvRRTtc5b1JRkj-pezHgu4mvdf4LT8LSpXhhmr_1-kfOZ-b6ZHxOLQ75j_CJGmo8%3D&attredirects=0
content-encoding: gzip
date: Wed, 30 Nov 2022 11:56:03 GMT
expires: Wed, 30 Nov 2022 11:56:03 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 531
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (534)
Size:   531
Md5:    8f29d6c1a5dfa39b31de80d739d43c3e
Sha1:   7e93459b3ab9e995af25ca057f642d25ff8c01d4
Sha256: b4ada289892c72876ae2cb7ed824ee5a9f366dbd635795b0940624b7812e7ef1
                                        
                                            GET /albums/ss248/z33s/down.png HTTP/1.1 
Host: i580.photobucket.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://perfectblogger01.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.79
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 518
date: Wed, 30 Nov 2022 11:56:03 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="down.webp"
expires: Thu, 30 Nov 2023 11:56:03 GMT
server: photobucket
x-amzn-trace-id: Root=1-638744d3-567488967b75e0a128025f25
x-request-id: 2FssIlRUvfqPnZue5wB14
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AMtS7hdcpmOjuSu1RGjBi7DgliEdVh4-xajd_z_UJKhormZigGPpQQ==
vary: Accept, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   518
Md5:    0b2b604a3bea315e5d76af352d797b5d
Sha1:   da3cbfbc9091b3057479ff367ad70dfe436e7241
Sha256: 9a260efd573f2ef6d91efa62f4b79199073de80a3d484663b29aaee3c44a4369
                                        
                                            GET /albums/ss248/z33s/refresh.png HTTP/1.1 
Host: i580.photobucket.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://perfectblogger01.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.79
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 686
date: Wed, 30 Nov 2022 11:56:03 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="refresh.webp"
expires: Thu, 30 Nov 2023 11:56:03 GMT
server: photobucket
x-amzn-trace-id: Root=1-638744d3-3350f7b54f2a11c07808ecbc
x-request-id: tspe3BTtl9OUfMqL93geA
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Vh-PviPrmzgfHudw3F905dQd9gjFea184Z-cNjlLepcJJT7Rlgx6tQ==
vary: Accept, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   686
Md5:    5815a473bf783e85b8d9964375d4f5a6
Sha1:   aaa892118d01e1810d7e7cca05b79b97e67f4946
Sha256: 5b35d216499224cc57bee71db3730c5f7d926ab5af6bc4cab46ec09680ec598d
                                        
                                            GET /_yEJFE2od2k8/TRkvizLRTOI/AAAAAAAAACU/hbnEpeIZM5s/w72-h72-p-k-no-nu/Crows%252BZero%252B3%252Bpic01.jpeg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v25"
Expires: Thu, 01 Dec 2022 11:56:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Crows+Zero+3+pic01.jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 11:56:03 GMT
Server: fife
Content-Length: 4236
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4236
Md5:    3aa624fed3810489c83016d75636875f
Sha1:   726cfbeb0aedeceb6909e191909a860e404f46ae
Sha256: 4be0291e2f0d2de3dfeadedaa0ee8ba182d64b67e9fb970f211f0b9ff8bc3ad6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1299
Cache-Control: max-age=165364
Date: Wed, 30 Nov 2022 11:56:03 GMT
Etag: "638722b4-1d7"
Expires: Fri, 02 Dec 2022 09:52:07 GMT
Last-Modified: Wed, 30 Nov 2022 09:30:28 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /js/gz/emb.js HTTP/1.1 
Host: st.chatango.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         208.93.230.24
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 30 Nov 2022 11:56:03 GMT
Content-Length: 23805
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
ETag: "636c32e7-5cfd"
Expires: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (1651)
Size:   23805
Md5:    805df181036cf9e5d8afe0106e6742bd
Sha1:   d724decdd99a4ad9e94ed1995c385cad56d1aa1d
Sha256: c8fb96eb9b2d14e8d0e359963ddd7a9cc8f1b2bb8e475d431a40d81a6bc0956e
                                        
                                            GET /albums/ss248/z33s/house.png HTTP/1.1 
Host: i580.photobucket.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://perfectblogger01.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.79
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 562
date: Wed, 30 Nov 2022 11:56:03 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="house.webp"
expires: Thu, 30 Nov 2023 11:56:03 GMT
server: photobucket
x-amzn-trace-id: Root=1-638744d3-0bfc1a2f7eba9a6f7f81df7c
x-request-id: PlGfPaDPrkGrEZKsnqO6q
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OO97lMARwY5mBbxw7Vcm1dN0PkbvDzcBEJzzb8izmcphatrx8OcuDg==
vary: Accept, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   562
Md5:    f48ffe4857d5573ba64d446acef1e5a7
Sha1:   b68e4fb4e7bce29f8184d95ae3e20419f9cc5905
Sha256: 11f61e9a481d941f57972896167b3df0bdcd425db6e294afcf3cb5bbcc741560
                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         172.217.21.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 09:32:01 GMT
Expires: Wed, 14 Dec 2022 09:32:01 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Age: 8642


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            GET /_yEJFE2od2k8/TNRCbChBLgI/AAAAAAAAABc/EVBDgQo4bYo/w72-h72-p-k-no-nu/crows_zero_3+download+free+movie.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v17"
Expires: Thu, 01 Dec 2022 11:56:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="crows_zero_3 download free movie.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 11:56:03 GMT
Server: fife
Content-Length: 5134
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   5134
Md5:    7f5989812478015b76992823380a09df
Sha1:   5dd6f409c11391446ad1c582767e5d158eec3e10
Sha256: 424efeebc8d53b4d92f7185b83aa5551361e66147a13a6f48ce8289bf2159293
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /blogger_img_proxy/ANbyha1tc7_z8uRMcezIKLGcNSpFNcgFw12xy3_qC1BBdGJWNdPo8C5pXMcGDhgYs9sGGMms5Um_XdbHYhPjxZnC3UTB5dRijp1MeY2r20QVojoafi4tQpPY5Ij-XL9_ZsL8MX_4BLEmXKSvA3S0PGsP=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.129
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 11:56:04 GMT
server: fife
content-length: 1749
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1749
Md5:    635962844401480b2058ffb290e409ab
Sha1:   36b4aff8d1677369b9a4553749521d60a6b56f1d
Sha256: 055a4ccaf3ce7551295da1c056eafdd373bc6718ee98c5552ddef148afa4d57a
                                        
                                            GET /blogger_img_proxy/ANbyha2VbQBC5bNqiAsYsNPLx-FDNEWtrpy_fHjDjJoaiFMgMsqLSWLEp1ak8hQOEX1MO2U7u6_spkbqrner5n2WI8KtAqjehxqQdILMgxv60ZVsUeDkuJB68RQK0EF52zeeDd2kRA=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.129
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 11:56:04 GMT
server: fife
content-length: 1735
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1735
Md5:    8ec137761c1a4e7c98b8b0db1a2f6046
Sha1:   7c91cdb0f4d6dc0fe7fd44095a9462a6b1f15b32
Sha256: e9a526cba3eb327ed129cf294d4b52508c647dfa2e63a197a2a33a079b25fb07
                                        
                                            GET /blogger_img_proxy/ANbyha24ZtKShWs1SiCSmFVYGkHeV8DuoP6R_D4hlEBuDd5bZUxWkOaophTWD1JJZZRxqdm3lRXqkeCn-by3G9rdX3evjKBiVo-dqLueTJo8MemfoDxKj0LRdEx38XlnCARoby7l_NhxbqUFVMQB4ZqjsXHFhvaocjHM3g=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.129
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 11:56:04 GMT
server: fife
content-length: 1763
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1763
Md5:    ead34e9bdfb8a1e27ed6ac29faf3c81b
Sha1:   118db239cd4d85df271c71713dbbfdf378b2c46c
Sha256: af04dd0144bcab8166d1404e87ee3ad1a205d765eede913c4818c3339b46c9dc
                                        
                                            GET /blogger_img_proxy/ANbyha3waGk_W470s31QPWAmtv1B_6vJqJPxdyEEnH3NKBlx6pj6z2DVlcWQMsCjkar6rHADn5eWEcOTNmwZYBldf5VuShr2lA5h1NYTv9Bi0eeyPIeEDgTJeEBLty23WLBEv0DcOfFBuFxBt5HYqwJBMhlvDQDaTXk35sflUmc96g=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.129
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 11:56:04 GMT
server: fife
content-length: 1771
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1771
Md5:    8a4171667a3b76802448372d2e55d5f5
Sha1:   903f6f08724d2bf1bac167972f2702b13bce120a
Sha256: f78ff9ca00b9f0fe0ce5a765e574c4f41d3a129b3d0a1a29f33a5933cb8cb0a6
                                        
                                            GET /site/bukarahasiahost/blogger-comment-smileys/bukarahasiablogspot-ysmileys-bloggercomments.txt?attachauth=ANoY7cqyARfzpL9dMOec8NnVKlf6E-VL7SrZdTtNU4dPEdZu5Lx7lVTxa6Qom5ePgEJeB5dLiRLfUUaaTX4auCvAYhdNaBy3e8zAAWFV6TZSLPN9vRFlrJWowm6tKaVwMU5tQzU-F2lal8Ex9PlDnHaKND7-7KdZoymX5zqNUqV2WUumq8r72vxEID_vG5ibdkzGrQAONTjnqKdycSFVk9icodBG2fipHOdKURYlQA4G2jvSW7yStLSFvRRTtc5b1JRkj-pezHgu4mvdf4LT8LSpXhhmr_1-kfOZ-b6ZHxOLQ75j_CJGmo8%3D&attredirects=0 HTTP/1.1 
Host: cb6a6a86-a-62cb3a1a-s-sites.googlegroups.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://perfectblogger01.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         64.233.165.137
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 11:56:04 GMT
last-modified: Sun, 25 Dec 2011 16:53:39 GMT
etag: "1324832019510"
content-disposition: attachment; filename="bukarahasiablogspot-ysmileys-bloggercomments.txt"
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (533), with CRLF, LF line terminators
Size:   5351
Md5:    bfd29c9f33ea305188e17c6018f91ed1
Sha1:   8db57af806e08eb21015f6b1d8e4227db503deba
Sha256: 4cb8351cc2d19c2a6540088b6b3dc2b67f9d5ae58a911016f4aabe0d6be0fb07
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /dyn-css/authorization.css?targetBlogID=7123727845425983736&zx=bbd931bc-997a-496a-a4d3-9ca56eaa1dfb HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.233
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 11:56:04 GMT
last-modified: Wed, 30 Nov 2022 11:56:04 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    a62e4d501434033d5d177e67d3aafdd0
Sha1:   34f7300c9ed47334cf10826d57af785321e3138b
Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.132
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Wed, 30 Nov 2022 11:56:04 GMT
date: Wed, 30 Nov 2022 11:56:04 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 665
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1034), with no line terminators
Size:   665
Md5:    34e37af4d526255a20a2056cd5f4addf
Sha1:   bcac186d6a49539e69a3f67aa08d0188966f5623
Sha256: 51a2c479b272414cb9d7e1ec62edffbad01217068b73d516d33cb8f26a4fc634
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:09:57 GMT
expires: Tue, 28 Nov 2023 19:09:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
age: 146767
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (730)
Size:   162976
Md5:    79d18cf4265108d7cecca1bf4ada6109
Sha1:   e51d0285a545381d4c39e9e0292a650ffeeecbb9
Sha256: 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
                                        
                                            OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.78
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
date: Wed, 30 Nov 2022 11:56:04 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+257; expires=Fri, 29-Nov-2024 11:56:04 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 30 Nov 2022 11:56:04 GMT
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 11:56:04 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 18:12:19 GMT
Expires: Tue, 06 Dec 2022 18:12:18 GMT
Etag: "12cc9eaa78506d049db9f0b64f0ff23387a6f23a"
Cache-Control: max-age=540373,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772365cf0f560b51-OSL

                                        
                                            GET /data/photo/2012/11/04/1823305620X310.jpg HTTP/1.1 
Host: assets.kompas.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://perfectblogger01.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.72
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 25737
date: Wed, 30 Nov 2022 11:56:04 GMT
server: nginx
last-modified: Mon, 11 Feb 2019 18:22:50 GMT
etag: "fda1bbdde7678dae48203f3dc37ee218"
x-amz-version-id: null
accept-ranges: bytes
expires: Thu, 30 Nov 2023 11:56:04 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, OPTION
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xr412hdsYOEAPKnVPXyGyS3DOBtj5mDf1YNBGwqF8pPEW79tGh2-9Q==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 620x310, components 3\012- data
Size:   25737
Md5:    fda1bbdde7678dae48203f3dc37ee218
Sha1:   c6c17aee45e398cb1f0237d174ef122d42d3cf6b
Sha256: 8f12ad02223645240908aebab6c1c5040525fd5338fb848cc08a081b4b4d24db
                                        
                                            GET /cfg/nc/r.json?4e27900020000201085533907 HTTP/1.1 
Host: st.chatango.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://perfectblogger01.blogspot.com
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         208.93.230.24
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Wed, 30 Nov 2022 11:56:04 GMT
Content-Length: 20
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
ETag: "636c32e7-14"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   20
Md5:    4b3e762cf64b26396adead3f3611a76c
Sha1:   893c563f825c4b4bdf3cef86fef6222829d9dfd7
Sha256: fbcb52aa5b5af5183d2787df206bc50a2a057fb4f04d004fa95072ed42beb3d0
                                        
                                            GET /a?Id=590232&uid=ssp-6d03efa6-9143-75a4-0934-0934-248f8bc6fe&sync=0&hours=11&ajax=0&domain=n.ads3-adnow.com&unq=1&cookies=1&_c=e30%3D&RNum=9477&docurl_=aHV2cz40NXdte3Bwb8KBcHt_eHl4woZFR0V6woXCicKCwo_CjcKNwpNOwoTCkcKQU1dWWFpYW1xbwpjCncKjwpFewqLCpcKVwqjCm8KhwpnCq8KbwqNpwrHCo8KxwrTCtsKjcMKowq5zwqzCusK4wrrCrHrCtcOCwrzCvA&client_info=eyJ3aW4iOnsidyI6MTI2OCwiaCI6OTM5fSwic2NyZWVuIjp7IndpZHRoIjoxMjgwLCJoZWlnaHQiOjEwMjQsImNvbG9yRGVwdGgiOjI0LCJwaXhlbERlcHRoIjoyNH0sIm5hdmlnYXRvciI6eyJsYW5ndWFnZSI6ImVuLVVTIiwiYnJvd3Nlckxhbmd1YWdlIjoiIiwic3lzdGVtTGFuZ3VhZ2UiOiIiLCJ1c2VyTGFuZ3VhZ2UiOiIiLCJwbGF0Zm9ybSI6IkxpbnV4IHg4Nl82NCIsInZlbmRvciI6IiIsInRpbWVab25lIjowLCJkYXRlIjoiMjAyMi0xMS0zMFQxMTo1NjowMy4xMThaIiwiaG91ciI6MTEsIndpZHRoIjoxMjgwLCJoZWlnaHQiOjkzOSwicGx1Z2lucyI6W10sImZsYXNoVmVyc2lvbiI6ZmFsc2UsImNvbm5lY3Rpb25UeXBlIjoidW5kZWYifX0%3D&doc_inf=eyJ0aXRsZSI6IktvdGElMjBQcmFzZWphcmFoJTIwVGVydHVhJTIwZGklMjBFcm9wYSUyMERpdGVtdWthbiUyMCU3QyUyMFRoZSUyMEdyZWF0JTIwQmxvZ3N0ZXIlMjA0RXZlciUyMGxsIiwiZGVzY3JpcHRpb24iOiJLb3RhJTIwUHJhc2VqYXJhaCUyMFRlcnR1YSUyMGRpJTIwRXJvcGElMjBEaXRlbXVrYW4lMjAlN0MlMjAlMjAlMjBUaGUlMjBHcmVhdCUyMEJsb2dzdGVyJTIwNEV2ZXIlMjAlMjBsbCUyMCUyMCUyMCU3QyUyMEtvdGElMjBQcmFzZWphcmFoJTIwVGVydHVhJTIwZGklMjBFcm9wYSUyMERpdGVtdWthbiIsImNoYXJTZXQiOiJVVEYtOCJ9&set=e30%3D&ver=8&bln=1&bver=5 HTTP/1.1 
Host: n.ads3-adnow.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         31.172.81.227
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Server: nginx/1.10.3
Date: Wed, 30 Nov 2022 11:56:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   149
Md5:    7be1b461da006b023ee68dc99f131a96
Sha1:   9b28edb81db30d656f29ad7ccc0ec0c07bd90553
Sha256: 2d17d6c2ab99667c9549f96a502c5b6bc23a94592210e4ddbe476704b40d44ff
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:48:03 GMT
expires: Fri, 24 Nov 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 482881
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:43 GMT
expires: Fri, 24 Nov 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 501321
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10954
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 11:56:05 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10954
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 11:56:05 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10954
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 11:56:05 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10954
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 11:56:05 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:51 GMT
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
age: 50354
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7298
Md5:    e00769bd1391b8f4f5b8ab128a825355
Sha1:   e4ddf955e8ac1986045ed55880c43c69e588a021
Sha256: 81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9670
x-amzn-requestid: d9a529ac-9dc6-4e12-80c5-3250dc97e7bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcFiAoAMF0nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-116ddf09265d51523c3638b3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dTu4TnkeBj5Jm6nU8CA37pptq4F43BUYXcAJPcXro47W1MJriiVrcw==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "3d8c927b6945d880f92d4e7a686cad5a9985e8ad"
age: 51090
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9670
Md5:    33ee67e62c49fc8d51f18df313002aac
Sha1:   3d8c927b6945d880f92d4e7a686cad5a9985e8ad
Sha256: ba6e66e07cd93219926927fd2b468a92b8d02cc9bf1da0b3b9a3c48da160bbdc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:11:32 GMT
age: 49473
etag: "2f3a39a528d3b759060203931de33c12303592e1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9330
Md5:    bbe350ea797a0fec5a19a450fc5de4b4
Sha1:   2f3a39a528d3b759060203931de33c12303592e1
Sha256: 4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rtfl896JX35oFFEVmqyH9Nm62iSY6rqwzkLwZMcM45p_ySF6J2QwEQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:47 GMT
age: 51078
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9051
Md5:    05196ec43964cf559caa0c0279148d62
Sha1:   6170d6776615503e3e29f86783febc3e3e78ca66
Sha256: 47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GydenCzPtpFdVLqN4ssiZ4dKN48WGneS3mwzEdDE81pobtLznfC4VQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:07:59 GMT
age: 49686
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5785
Md5:    59baec8db5ced0210ab766ea5636a5fd
Sha1:   f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
Sha256: 33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e4GuUolL0WIMXvnF7BZ80j-dMMSILN2gd-1mqFwNns-zCUBsJa8iHQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:43:04 GMT
age: 51181
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10958
Md5:    777ce44582c70bf01a31da4cab366f36
Sha1:   57e1d34f146d5ccd9943aa97bcc3158f7103bb07
Sha256: fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/7.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: 3d9aM5suOCFbMlR0rVDzRe7E0gBbSkBIrwQ81iVSjdcMgRtDUrb8+8klPnFTFsVNImYkxukFcWE=
x-amz-request-id: B5AS4N5EV434Q2SM
Date: Mon, 28 Nov 2022 07:11:49 GMT
Last-Modified: Thu, 17 May 2018 10:04:29 GMT
ETag: "28afdbdbe4b3151467cdba83b46ad7eb"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:36 GMT
x-amz-meta-mbst-etag: "YM:1:f22a4c15-5a0b-413a-90f6-93f8763c00160004ce772a89a867"
x-amz-meta-x-ysws-mbst-vtime: 1352911116937319
Expires: Sun, 14 May 2028 10:04:28 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 2728
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 189858
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 20 x 18\012- data
Size:   2728
Md5:    28afdbdbe4b3151467cdba83b46ad7eb
Sha1:   bdc2331f8419229281d96a82f1671283663243f8
Sha256: 31e672e937d310c2c3bf162c3511ec4ab40b732aff1aacb5ab8e2314f1130963
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/5.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: 9tiufKJMK8d1EksZXi9sSbr0tpYD5P2Ayc4sb/ImkhYWCC+kMgk8lEquS/c456kpNo3AhPF1Q1k=
x-amz-request-id: RY1NXC6YTAA1M03M
Date: Mon, 07 Nov 2022 21:14:56 GMT
Last-Modified: Mon, 14 May 2018 21:52:11 GMT
ETag: "dbaac7390963160b6a608102fcc86f03"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:26 GMT
x-amz-meta-mbst-etag: "YM:1:b06b56b9-5209-4821-b583-3f66b523fb880004ce7729ecc7c1"
x-amz-meta-x-ysws-mbst-vtime: 1352911106656193
Expires: Thu, 11 May 2028 21:52:10 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 1146
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1953671
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   1146
Md5:    dbaac7390963160b6a608102fcc86f03
Sha1:   a279960c563ede246db2afc1bed1cd71f4ee040c
Sha256: 10ee5e8619abdcc97a5f5b1aa9691ef04f670521d51acb3ed845d7bfbbe15b87
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/4.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: CilwgmW3OCf7Are8piZS9ZoM0c5lhP0IArQDePltc0VAlTNGHW4eIVaLCoeSC8qH8ZH5/6gv+XY=
x-amz-request-id: KRZZ7S6MTC9DAD24
Date: Fri, 18 Nov 2022 11:01:46 GMT
Last-Modified: Fri, 18 May 2018 13:33:14 GMT
ETag: "f1e05c82c7d3af8df68c934bb4ca5f37"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:21 GMT
x-amz-meta-mbst-etag: "YM:1:e7ef0e92-9c58-4c12-a0a9-745984d042ed0004ce77299f2988"
x-amz-meta-x-ysws-mbst-vtime: 1352911101569416
Expires: Mon, 15 May 2028 13:33:12 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 536
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1040061
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   536
Md5:    f1e05c82c7d3af8df68c934bb4ca5f37
Sha1:   93ee757596b622f23eda97fe2c43a038e96034e2
Sha256: 90444038b976c070a1e5a423a84d6c6cd8d9d08b60ec58fff377ffcd74549b92
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/1.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: Wp2MStPzkxQMBrQnyS1ar9Iqlb/NawcFyhWA0aQc4m4MfODXh/dF8LgIyC+BHAH+2jCoLjyVwyQ=
x-amz-request-id: 5EY95HK7GKCWDCZF
Date: Tue, 15 Nov 2022 18:50:37 GMT
Last-Modified: Tue, 22 May 2018 09:57:41 GMT
ETag: "7acab697005b42df765344852bb92543"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:02 GMT
x-amz-meta-mbst-etag: "YM:1:2803c9b9-afc6-43d2-bbec-9131c203765b0004ce77287a993c"
x-amz-meta-x-ysws-mbst-vtime: 1352911082395964
Expires: Fri, 19 May 2028 09:57:40 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 1197
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1271129
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   1197
Md5:    7acab697005b42df765344852bb92543
Sha1:   8ecda921e08e3da132042ad4d0d737180e2bc011
Sha256: e80814ecc035b9c8d9bb98c6acdcd2b9452d99d57f57c885b7ed722cbfbe5b07
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/3.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: jkfWeNehV5zwT7PMcVusFr+S45pRqtgslRYQg2coKm3jPk7Rut2z1BeBt03Jj/O2VAdWdLCXb9o=
x-amz-request-id: 9YSJRBVZ66SN4XP1
Date: Wed, 30 Nov 2022 06:18:14 GMT
Last-Modified: Sun, 20 May 2018 05:57:17 GMT
ETag: "4bc8e6787527cdf7bb61efc409d49168"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:16 GMT
x-amz-meta-mbst-etag: "YM:1:9a7c873c-f1f5-4055-996d-f53535245edb0004ce772951a81b"
x-amz-meta-x-ysws-mbst-vtime: 1352911096490011
Expires: Wed, 17 May 2028 05:57:16 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 1001
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 20273
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   1001
Md5:    4bc8e6787527cdf7bb61efc409d49168
Sha1:   04dce5fb45dc3945fd87984d804cd9e6fa6defea
Sha256: 6c799bdee0667cbaecc9db6160e76df91dd615800a797b1c63ec14c9fb013c32
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/2.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: CgtRWYk6OqmogzMHMGa4vPn8KD5D5idVuJLehEQpCRuwHXzhKHLIZ9OoIFOKG2X49kKAYRWeh3w=
x-amz-request-id: VTV080X4BJYMDVWG
Date: Mon, 28 Nov 2022 22:53:01 GMT
Last-Modified: Sun, 20 May 2018 20:59:29 GMT
ETag: "8ff7886d573e7ce876fafe18e38256c0"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:11 GMT
x-amz-meta-mbst-etag: "YM:1:dd1c75e1-d2b8-4c68-87bb-358dd9c222020004ce7729008e09"
x-amz-meta-x-ysws-mbst-vtime: 1352911091174921
Expires: Wed, 17 May 2028 20:59:27 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 1001
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 133386
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   1001
Md5:    8ff7886d573e7ce876fafe18e38256c0
Sha1:   69285dcb190e5d8fb419bf682cd67fea32095fbf
Sha256: 929f0885478c8f10c7b60e0a6f5a520f7f7055a994ab31a12cf95fd8ab8b2973
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/8.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: XTQKWi4SkLtIucGYXf4mvAROXzS0ttApGacNClQChY7C0YNds4lOxDZWCvYv9F3DURsm1yOVFhw=
x-amz-request-id: XFSZQ2Q2MXX9SDHV
Date: Thu, 17 Nov 2022 11:45:55 GMT
Last-Modified: Sun, 20 May 2018 04:39:10 GMT
ETag: "fa1910d94b83caa6e9a61dfe2e04103f"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:41 GMT
x-amz-meta-mbst-etag: "YM:1:bd3ffbb2-07d2-4529-8696-6985d3c045180004ce772ad6714c"
x-amz-meta-x-ysws-mbst-vtime: 1352911121969484
Expires: Wed, 17 May 2028 04:39:09 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 2323
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1123811
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   2323
Md5:    fa1910d94b83caa6e9a61dfe2e04103f
Sha1:   34c3ed6096db71d86b84b6ecaf3e444acb20ebfd
Sha256: 4063598ee349698a6e8ac7fcea8f46a3d949a05aa3c46033313033104dd809ed
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/10.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: NSsuq9gWPufgGLZVcdNM6pBWVndNgxNNh/s25pWnInVLEnwkGjdLK849b4rHieVz1CwyXGEkVL4=
x-amz-request-id: V4QXMSDQVC3AZ6S8
Date: Wed, 09 Nov 2022 08:57:07 GMT
Last-Modified: Mon, 21 May 2018 07:27:48 GMT
ETag: "03719bd2e66d16ac9166413e9874fabc"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:02 GMT
x-amz-meta-mbst-etag: "YM:1:1b654a14-d111-4262-8a7a-b358c3a9f0060004ce77288183cb"
x-amz-meta-x-ysws-mbst-vtime: 1352911082849227
Expires: Thu, 18 May 2028 07:27:47 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 845
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1825139
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   845
Md5:    03719bd2e66d16ac9166413e9874fabc
Sha1:   e660b1316e52d5d43e5d9d1a9cfe8ebdccfe2afb
Sha256: 4743fc126b332eeef5d8615a74678aae3291a8c9cc68fe7db1d09a46a7e8c243
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/11.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: Cji5MMqyFvVN/MUO5rsTPtpirB+WW8MVcWSowYDpkhSVTQqo0mu9HIuhogRGyEtIbMfKc9UAVaM=
x-amz-request-id: WCRFNZ7N7YQDA8P3
Date: Tue, 01 Nov 2022 12:07:25 GMT
Last-Modified: Fri, 18 May 2018 08:48:24 GMT
ETag: "8fe036e92e61161e89bafcafcb07b87c"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:07 GMT
x-amz-meta-mbst-etag: "YM:1:49a2be40-a53f-49a9-a2f9-e9894a243edf0004ce7728c2067d"
x-amz-meta-x-ysws-mbst-vtime: 1352911087076989
Expires: Mon, 15 May 2028 08:48:23 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 1317
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 2504922
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   1317
Md5:    8fe036e92e61161e89bafcafcb07b87c
Sha1:   dee722bfa2cf1c506114abbcee0e0a7408392cec
Sha256: 69408195af42830e24e6bfab42b211bee01636d6e3dc26c96e253fc8e2fe85ea
                                        
                                            GET /h5/gz/r1109221504/id.html HTTP/1.1 
Host: st.chatango.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         208.93.230.24
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 30 Nov 2022 11:56:04 GMT
Content-Length: 224208
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
ETag: "636c32e7-36bd0"
Expires: Thu, 30 Nov 2023 11:56:04 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size:   224208
Md5:    b5e55978fc6de5b845040e267bfa4de0
Sha1:   6fd166bb4fc22482e5c2b7ceca0e165ce2277a96
Sha256: b246b03701578765cdfc5fde2324acb491a9ca1b279d84119a98e537799800a0
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: perfectblogger01.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html
Cookie: SC_unique_590226=1; SC_unique_590232=1

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                        
Expires: Wed, 30 Nov 2022 11:56:05 GMT
Date: Wed, 30 Nov 2022 11:56:05 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 29 Nov 2022 13:24:36 GMT
ETag: W/"b13be1b223370345027d6f869348a9a9dbbcef78f5b92a8504d90fa2f62e41c2"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size:   412
Md5:    501c61a70f5c41181aa050d9110909ca
Sha1:   5b985d5671a7caf686fdfb1df13488c4407f6c9f
Sha256: c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
                                        
                                            GET /2012/11/game-buatan-indonesia-dibajak.html HTTP/1.1 
Host: perfectblogger01.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html
Cookie: SC_unique_590226=1; SC_unique_590232=1

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Wed, 30 Nov 2022 11:56:05 GMT
Date: Wed, 30 Nov 2022 11:56:05 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 29 Nov 2022 13:24:36 GMT
ETag: W/"b13be1b223370345027d6f869348a9a9dbbcef78f5b92a8504d90fa2f62e41c2"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 22534
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (546)
Size:   22534
Md5:    7bca284fd31b080a34661fc30f9ad0d5
Sha1:   7565e985ddac6575c0844ebb558d64d57cd36763
Sha256: c2aa99e39e719573bdfc3bce5b99c419beb11dcb65584be0a7831e11bdb7e3f2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /2012/11/the-adventures-of-tintin-comics-download.html HTTP/1.1 
Host: perfectblogger01.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/2012/11/kota-prasejarah-tertua-di-eropa.html
Cookie: SC_unique_590226=1; SC_unique_590232=1

search
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Wed, 30 Nov 2022 11:56:05 GMT
Date: Wed, 30 Nov 2022 11:56:05 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 29 Nov 2022 13:24:36 GMT
ETag: W/"b13be1b223370345027d6f869348a9a9dbbcef78f5b92a8504d90fa2f62e41c2"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 25029
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1854)
Size:   25029
Md5:    a5c90b5ec320bea2923933cac6903d26
Sha1:   50ba4ede13f7c5960802d1f744713e2f21690518
Sha256: 6dd79e99570e189bc1865e4de52a85307c15e3b2892999c2fcbd47ab8f378217

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/29.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: k3G9s12GmjHlk7Nm1Ufppx9jpN2gXazJC3cFpMUwd83AlOfReVQXe0oMg/vrLKEG6vWAAoydCX4=
x-amz-request-id: 15RWV4BVPWW2GF0E
Date: Fri, 15 Apr 2022 13:19:50 GMT
Last-Modified: Thu, 17 May 2018 08:59:54 GMT
ETag: "4f9ba3888cb7db00825183fae2e9170a"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:16 GMT
x-amz-meta-mbst-etag: "YM:1:a40b1898-a989-408d-9646-981d655364200004ce77294a83c0"
x-amz-meta-x-ysws-mbst-vtime: 1352911096021952
Expires: Sun, 14 May 2028 08:59:53 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 977
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 19780576
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   977
Md5:    4f9ba3888cb7db00825183fae2e9170a
Sha1:   6ef6914110a7e9b6fc104c938714f8b777a48b58
Sha256: bffc640574d841ef9844165b58e020bfcf973fe13f36ece792bfc82e85de5ab7
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/44.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: +ojuis96gEEVQNzSdxRfHe7+L6MdQMLZnhKGE5fwD4VX355euwvryV+EJu412aAnGBS3s0wQEWU=
x-amz-request-id: 2XY3KPC2Z6ZB4TD1
Date: Thu, 27 Oct 2022 06:28:00 GMT
Last-Modified: Mon, 21 May 2018 12:44:30 GMT
ETag: "d213bcf48d2db0762d98160650b27c18"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:23 GMT
x-amz-meta-mbst-etag: "YM:1:fe60361e-3280-4d13-b720-2fa4e869923b0004ce7729c3f76a"
x-amz-meta-x-ysws-mbst-vtime: 1352911103981418
Expires: Thu, 18 May 2028 12:44:29 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 975
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 2957287
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   975
Md5:    d213bcf48d2db0762d98160650b27c18
Sha1:   9a63ac9dac52e660658cf97330cc8019a53fc53b
Sha256: dcc6087e5e469dd23089dce5893b699aa16cc9d89a2cd4168f46f7b9937ca9ed
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/14.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: V4y0bg30t4+QCyJLb6m6dTX7quM0nLrjnuBE9b4pwpBEUTg7ZqhOQ3sSc+SY6mXjQD6bnV084mw=
x-amz-request-id: 0FQ3TBSJGQFBED8Q
Date: Sun, 20 Nov 2022 08:41:07 GMT
Last-Modified: Sat, 19 May 2018 17:27:25 GMT
ETag: "4d49992cfe29e5c873a1f3a0926d2282"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:08 GMT
x-amz-meta-mbst-etag: "YM:1:25072fa3-f482-43f8-8e94-78b5964be2700004ce7728d6d2f5"
x-amz-meta-x-ysws-mbst-vtime: 1352911088440053
Expires: Tue, 16 May 2028 17:27:24 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 4770
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 875699
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 18\012- data
Size:   4770
Md5:    4d49992cfe29e5c873a1f3a0926d2282
Sha1:   ce5745a8a669f3a8c4c0bbefe5e0276f3b9fa096
Sha256: 2001896aba31da0a7ce904f4952c3e987ddb66996c5b407a2ba280a0c7848cc0
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/13.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: 0b060w5U/mfgtAMUumAtJ+QopfTlbs+l9SAdEwUzKGbcKLnp1me+l0cYH/LpU+wJomJruH6LvFI=
x-amz-request-id: 0TJ2JB0CB9HF5KJR
Date: Fri, 11 Nov 2022 10:49:53 GMT
Last-Modified: Sat, 12 May 2018 22:20:57 GMT
ETag: "99f42d956240d0bbcfd3df166ba7b42d"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:08 GMT
x-amz-meta-mbst-etag: "YM:1:47356a4f-fcc7-4258-947e-643cf732454b0004ce7728d0856f"
x-amz-meta-x-ysws-mbst-vtime: 1352911088026991
Expires: Tue, 09 May 2028 22:20:56 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 1668
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1645574
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   1668
Md5:    99f42d956240d0bbcfd3df166ba7b42d
Sha1:   7470e40e21b3c9e319d0ec7cc279655f63d66b0c
Sha256: 9589d448636d9b6ee869497ec60e3a2d60239287d1b74b5b1d0f22156e80041c
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/15.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: 8LbGuaJ6BAeBYdXWo5B0Y9wBNN0Uvzvukyk8UqLGOJzIDgp/x7Mp4jlRLk51nBHyNsObDdq0ptY=
x-amz-request-id: Q8C4WCM2G221XYS8
Date: Wed, 16 Nov 2022 23:09:21 GMT
Last-Modified: Tue, 15 May 2018 23:18:51 GMT
ETag: "73eb09c15dae9c7d5bcbbbf4e9b79417"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:08 GMT
x-amz-meta-mbst-etag: "YM:1:49feadd8-4f11-4a0e-8dc6-54a20b0c845b0004ce7728dddec5"
x-amz-meta-x-ysws-mbst-vtime: 1352911088901829
Expires: Fri, 12 May 2028 23:18:50 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 809
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1169206
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   809
Md5:    73eb09c15dae9c7d5bcbbbf4e9b79417
Sha1:   749402e912636f5129e457ae8f154751f89ad81f
Sha256: 32602a3d513b772a449b366c257c79286f76997edc49da007d9eed72f1c68238
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/16.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: w465SdwR463Fe8Xln8RovuuLzceSxpoqIdRKjLuYCMweNVfrbN3gmDaugUrBaNhK7vew87er28g=
x-amz-request-id: 90BKSRHEM17XNHWM
Date: Tue, 22 Nov 2022 12:04:05 GMT
Last-Modified: Sat, 12 May 2018 14:11:37 GMT
ETag: "26e1a5a12b7cc8ab49ef0358618f0e6f"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:09 GMT
x-amz-meta-mbst-etag: "YM:1:eb8a8bcb-c89c-43aa-a109-27768795cded0004ce7728e3ef04"
x-amz-meta-x-ysws-mbst-vtime: 1352911089299204
Expires: Tue, 09 May 2028 14:11:36 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 1017
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 690721
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   1017
Md5:    26e1a5a12b7cc8ab49ef0358618f0e6f
Sha1:   3a005a05a0aa8dae61d8ac9d8e114585ee797e5b
Sha256: 1d424977e57e0895a86a6b8368bcc5bc9acfe389a3f7708cc92997c05219ec21
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/17.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: dBHM65rZL0ps5MdgiAQQrGvCGrf0LCuxJmM3wlXQF31afeR/AmgqCXMtyMJvJFafNKixXFIe9gE=
x-amz-request-id: ZPYD5NMWSNFN4AKJ
Date: Mon, 07 Nov 2022 15:00:35 GMT
Last-Modified: Wed, 16 May 2018 06:31:08 GMT
ETag: "514e1cfa8f84c79da4d96d8cb5e93aeb"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:09 GMT
x-amz-meta-mbst-etag: "YM:1:59b8f9aa-5d79-412c-8e9b-8d75ee5f4e7d0004ce7728eb1276"
x-amz-meta-x-ysws-mbst-vtime: 1352911089767030
Expires: Sat, 13 May 2028 06:31:06 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 1203
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1976132
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   1203
Md5:    514e1cfa8f84c79da4d96d8cb5e93aeb
Sha1:   516bbc4f4ac1a1765cb45e9d67d300656ac5e0cc
Sha256: a06f503e9559e46ea4dea87cd1bce2854a3c2c6897f239407d774cab36f843a4
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/12.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: 3H5uPlKM9v9iu0pUkS/F6VbLcnkZAlsm+82yuVBqJxUbc2m7bnvYecBF8VkU7nqkLiE7c4L4+Dw=
x-amz-request-id: 97W3X3PF2D3GB1XD
Date: Wed, 16 Nov 2022 12:52:09 GMT
Last-Modified: Fri, 18 May 2018 07:30:00 GMT
ETag: "e9dfcd8a0b7e8380af7d46101afcbb20"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:07 GMT
x-amz-meta-mbst-etag: "YM:1:b5b29adc-08ed-4a5d-897a-ceca9cf929360004ce7728c97f55"
x-amz-meta-x-ysws-mbst-vtime: 1352911087566677
Expires: Mon, 15 May 2028 07:29:59 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 2318
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1206237
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   2318
Md5:    e9dfcd8a0b7e8380af7d46101afcbb20
Sha1:   f85300a499338903fb81eb1b216a5828e02c2460
Sha256: 4e625176b1d0db2c3303c1c04dbb67ffdb1447cbc55d080bb439b2fedd8fa7ef
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/18.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: OgT8eLvUw13sTlQJs6mwgUw1m+SH7tKrqFtFdcrKPwRM4melVOX7YW3hy1YiQR49lxgibE2vT7c=
x-amz-request-id: G3ZPXGV4D6FBRST2
Date: Thu, 17 Nov 2022 19:40:04 GMT
Last-Modified: Thu, 17 May 2018 06:56:43 GMT
ETag: "48f65db11bfbd25e5b6d8f1ad69876d5"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:10 GMT
x-amz-meta-mbst-etag: "YM:1:0c171d1b-cc15-436b-830b-ff4312af32c30004ce7728f26cdf"
x-amz-meta-x-ysws-mbst-vtime: 1352911090248927
Expires: Sun, 14 May 2028 06:56:42 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 4268
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1095362
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 18\012- data
Size:   4268
Md5:    48f65db11bfbd25e5b6d8f1ad69876d5
Sha1:   a7aee8ad02a2e4327ca1c44662f5950ba84acd34
Sha256: 51641a057a042b4af707e4a5143d087a652d35dcc923ccb2b96d44babbf62dfa
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/19.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: /ODPS9Rfml/VBB8We7sCoS8IoZgqBKpnyH7N+yW/PzZsAuahWkMlBH2XaxGwwnJG/Tj6zWewDMg=
x-amz-request-id: SAK04DWCCRVBB9W6
Date: Tue, 22 Nov 2022 14:16:52 GMT
Last-Modified: Mon, 21 May 2018 07:58:19 GMT
ETag: "f83923c724cfc51c039c88dd32a084f7"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:10 GMT
x-amz-meta-mbst-etag: "YM:1:c48ad7f8-d2f2-418a-b9e8-023936a441760004ce7728f97132"
x-amz-meta-x-ysws-mbst-vtime: 1352911090708786
Expires: Thu, 18 May 2028 07:58:17 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 4005
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 682755
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   4005
Md5:    f83923c724cfc51c039c88dd32a084f7
Sha1:   7d54039d6a76ad1c5127f17a6e6f3a1cf969850c
Sha256: 217c2b9c767a058986f32c566b543df4bda9f26766eae9b809941cba54ec3701
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/21.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: 4BusT65U2qcxgWN0nhWGN5beS1GaMbiLTjIchPkU2PSv9LB9fTpfcUxP1Ucqhue7NKIjm6fJbGA=
x-amz-request-id: MEG9568Z4A7VVGF4
Date: Thu, 10 Nov 2022 14:40:31 GMT
Last-Modified: Sat, 19 May 2018 16:20:52 GMT
ETag: "ec2a8f0ee25edc930992ec8251c785ba"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:12 GMT
x-amz-meta-mbst-etag: "YM:1:0cc9eefb-4bb7-497a-983f-c641210f740b0004ce77290e7ad9"
x-amz-meta-x-ysws-mbst-vtime: 1352911092087513
Expires: Tue, 16 May 2028 16:20:51 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 646
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1718136
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   646
Md5:    ec2a8f0ee25edc930992ec8251c785ba
Sha1:   410d977b617553b9397603b1afe96b625d91ec65
Sha256: f6e966586cf780e7d1e31d58091c2c65264b8fb4456e19136c6ff1fdac1547ff
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/23.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: CW+rO6U2uuryuqzFjg54fA1qCiVM78rVDiaOcDlhvAOwEIwsQYPYt+AX/If/UEah5PdOmJEQfQ4=
x-amz-request-id: Z6N1NHKVKJXY0ZQS
Date: Fri, 11 Nov 2022 13:50:33 GMT
Last-Modified: Wed, 16 May 2018 15:54:25 GMT
ETag: "7b7d2cbb90dd9c2ef0c1766104ec592e"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:13 GMT
x-amz-meta-mbst-etag: "YM:1:027fd8b0-84a3-44fe-9f57-19ee2992ce6d0004ce77291df45c"
x-amz-meta-x-ysws-mbst-vtime: 1352911093101660
Expires: Sat, 13 May 2028 15:54:24 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 821
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1634733
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   821
Md5:    7b7d2cbb90dd9c2ef0c1766104ec592e
Sha1:   e9bb99e12b8c8cd3191a3053a2d5499932cf7c60
Sha256: 70ddb1ea2939ca72b8a2a020106517c62825e3a7b592ae4974759197c0265595
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/20.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: gevIfbCFlyien2MmRAyNDJuuCfzvZ70n3Bf0z03IX8OTWwGYTIT6KKUqQv7Uvu58lCuUwwBsGf8=
x-amz-request-id: KWSJXE16J45ADVP7
Date: Tue, 29 Nov 2022 10:33:00 GMT
Last-Modified: Sun, 20 May 2018 06:36:11 GMT
ETag: "3975eb53d4cd7521ae85c1c5a71fc2f8"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:11 GMT
x-amz-meta-mbst-etag: "YM:1:ec817004-985b-4c09-9e1f-9f538f6951660004ce7729076cd1"
x-amz-meta-x-ysws-mbst-vtime: 1352911091625169
Expires: Wed, 17 May 2028 06:36:10 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 2304
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 91386
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 22 x 18\012- data
Size:   2304
Md5:    3975eb53d4cd7521ae85c1c5a71fc2f8
Sha1:   3ac04e158486a8312decf37cdcae01fd3c238a41
Sha256: d9958b894312def0740bbc9864893b959c5fe3a2111f7e829ff5ef3ec15c9653
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/22.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: yZU6I3ttKrtFhX1/1dUiJomTmF161VtYOrLq5B9D7YWyFOcTKHoTVeiHn3FPpva0hQ/Ui3xcscI=
x-amz-request-id: DNMDRCWHVW13DQWT
Date: Tue, 29 Nov 2022 11:15:35 GMT
Last-Modified: Fri, 18 May 2018 15:46:20 GMT
ETag: "ce342dd366fa6ca26f97affd167e4d24"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:12 GMT
x-amz-meta-mbst-etag: "YM:1:9fce05a3-5ad7-4a53-9556-4784524741a50004ce7729163e9f"
x-amz-meta-x-ysws-mbst-vtime: 1352911092596383
Expires: Mon, 15 May 2028 15:46:19 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 613
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 88832
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   613
Md5:    ce342dd366fa6ca26f97affd167e4d24
Sha1:   7663109ccb56658351b3df4474b4b9a41fa5011a
Sha256: 1e42a23eb790c639d5228b2f20fc786d95c659c0f4f3d66ffe85e30c1b2d8067
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/24.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: P0KPm2sXIRq4NOjO8yMeb5SngOXlXdvYim1oYptLHI7JXftAqWjR3hOlPxvz4Mj5YoaGHYCheFI=
x-amz-request-id: R2D37Q74SMM5FATS
Date: Mon, 24 Oct 2022 18:52:10 GMT
Last-Modified: Tue, 22 May 2018 11:45:52 GMT
ETag: "7877501f9b3ffafe62da446da24e8dcf"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:13 GMT
x-amz-meta-mbst-etag: "YM:1:ef557531-0b13-4804-9e45-0e4477daaca70004ce7729255d99"
x-amz-meta-x-ysws-mbst-vtime: 1352911093587353
Expires: Fri, 19 May 2028 11:45:51 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 11360
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 3171837
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 30 x 18\012- data
Size:   11360
Md5:    7877501f9b3ffafe62da446da24e8dcf
Sha1:   1618d2c18e99e165dbef15e697fd6d33229a2a54
Sha256: b029c76378ea5eb0d17be0ae40b316f329298b08b0b47105020d3c5aaea4a82e
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/25.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: Y1wR2WFhJNPDOReb0GtlxwUaxuZhfeegDC+cyJKnnEidiNzF4uS1tehV3pxpo1DNwsL3Zp6ag14=
x-amz-request-id: 4TYYZ25FT7NJBJDH
Date: Thu, 17 Nov 2022 07:38:24 GMT
Last-Modified: Fri, 18 May 2018 04:30:17 GMT
ETag: "73ee4ab7ce337d752cbeb90b8479835a"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:14 GMT
x-amz-meta-mbst-etag: "YM:1:950f86c8-ef8e-449c-9167-2eae578384d50004ce77292c9a13"
x-amz-meta-x-ysws-mbst-vtime: 1352911094061587
Expires: Mon, 15 May 2028 04:30:16 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 7815
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 1138663
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 30 x 18\012- data
Size:   7815
Md5:    73ee4ab7ce337d752cbeb90b8479835a
Sha1:   e7412bddf83298a9e6727994f240a0ba450f2228
Sha256: 4082ac8d4d6a325b27f998b4413f5e127019ea13b5da0151ad6e3a04f91e6db6
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/100.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: cCDKKxEsDOSrG1xGIK+L+cC97q5GKPWPfI+xAUqWH+0FivY/s2FAPKRfaH9QKkICkAEFxFMqEAs=
x-amz-request-id: 4NX169Z7ZZFYFX54
Date: Sat, 29 Oct 2022 07:43:44 GMT
Last-Modified: Mon, 21 May 2018 03:23:25 GMT
ETag: "b21805bf46b6be2546e1d7ecd8b5a890"
x-amz-server-side-encryption: AES256
Cache-Control: public,max-age=315360000
x-amz-meta-created-date: Wed, 14 Nov 2012 16:38:03 GMT
x-amz-meta-mbst-etag: "YM:1:d9317348-18c1-4796-80a7-7d31a793ca7f0004ce7728897cc0"
x-amz-meta-x-ysws-mbst-vtime: 1352911083371712
Expires: Thu, 18 May 2028 03:23:24 GMT
x-amz-meta-x-ysws-access: public
Accept-Ranges: bytes
Server: ATS
Content-Length: 3606
Referrer-Policy: no-referrer-when-downgrade
Vary: Origin
Age: 2779942
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 31 x 18\012- data
Size:   3606
Md5:    b21805bf46b6be2546e1d7ecd8b5a890
Sha1:   d95cc47ad2e9ab3b22bcc02e7ad5371b529836f1
Sha256: 6ea022ea348c90010dc1bcafc08581048624a12eedcd48d8d551247c3c4634ee
                                        
                                            GET /us.yimg.com/i/mesg/emoticons7/101.gif HTTP/1.1 
Host: l.yimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perfectblogger01.blogspot.com/

search
                                         87.248.119.252
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
x-amz-id-2: qtfrDjSMKQiAj3TqyVz3Yj7oDHZPB0EOjKBqGx1Dk4VB3z9FfRYbYCQwSSDNmIFCxITMLKougiQ=
x-amz-request-id: 54RB347H04ZTDT1V