Overview

URL macamlawak.blogspot.com/2014/01/bayi-ditemui-mati-dalam-mangkuk-tanda.html
IP142.250.74.161
ASNGOOGLE
Location United States
Report completed2022-09-29 03:35:54 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-29 2 macamlawak.blogspot.com/2014/01/bayi-ditemui-mati-dalam-mangkuk-tanda.html Phishing
2022-09-29 2 macamlawak.blogspot.com/2014/01/ketagih-sayang.html Phishing
2022-09-29 2 macamlawak.blogspot.com/2014/01/video-depe-tanpa-segan-silu-rakam.html Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-28 2 datatechonert.com Sinkholed


Files

No files detected



Passive DNS (41)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS apis.google.com (2) 105 2013-05-30 23:17:44 UTC 2022-09-28 05:22:13 UTC 142.250.74.174
mnemonic passive DNS encrypted-tbn3.gstatic.com (1) 0 2016-01-11 16:32:15 UTC 2022-09-28 14:47:30 UTC 142.250.74.78 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS logv33.xiti.com (2) 776887 2018-03-05 15:49:52 UTC 2022-09-27 03:53:22 UTC 143.204.46.236
mnemonic passive DNS onmarshtompor.com (1) 24517 2020-10-19 12:36:32 UTC 2022-09-28 14:01:51 UTC 139.45.197.243
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-09-29 00:04:53 UTC 216.58.211.10
mnemonic passive DNS www.widgeo.net (15) 774083 2012-05-25 10:10:10 UTC 2022-09-29 00:01:46 UTC 104.26.11.22
mnemonic passive DNS 1.bp.blogspot.com (20) 8403 2013-05-06 20:18:52 UTC 2022-09-28 11:03:48 UTC 142.250.74.161
mnemonic passive DNS ylx-i.advertica-cdn2.com (2) 193063 2017-12-29 06:36:01 UTC 2022-09-28 07:49:21 UTC 185.66.200.127
mnemonic passive DNS datatechonert.com (1) 46154 2021-12-24 16:44:17 UTC 2022-09-28 23:42:21 UTC 139.45.195.253
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-28 04:36:06 UTC 34.117.237.239
mnemonic passive DNS ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-09-28 22:27:35 UTC 142.250.74.170
mnemonic passive DNS ylx-4.com (1) 0 2016-06-21 08:36:39 UTC 2022-09-26 03:50:45 UTC 185.66.200.221 Unknown ranking
mnemonic passive DNS 4.bp.blogspot.com (6) 11215 2013-05-06 20:18:52 UTC 2022-09-28 21:47:43 UTC 142.250.74.161
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-09-28 23:18:11 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS ebaaa.xyz (2) 0 2022-01-23 17:19:07 UTC 2022-09-28 15:48:51 UTC 185.66.201.8 Unknown ranking
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-29 00:48:38 UTC 104.18.32.68
mnemonic passive DNS my.rtmark.net (1) 9054 2017-08-22 14:11:49 UTC 2022-09-28 12:03:19 UTC 139.45.195.8
mnemonic passive DNS www.blogger.com (5) 8975 2012-05-22 07:35:03 UTC 2022-09-28 21:47:43 UTC 142.250.74.105
mnemonic passive DNS resources.blogblog.com (1) 13274 2017-01-30 04:47:40 UTC 2022-09-28 21:47:43 UTC 142.250.74.105
mnemonic passive DNS bedrapiona.com (1) 34930 2020-05-08 13:43:48 UTC 2022-09-28 08:28:16 UTC 139.45.197.234
mnemonic passive DNS 3.bp.blogspot.com (13) 11048 2013-07-04 04:18:40 UTC 2022-09-28 21:47:43 UTC 142.250.74.161
mnemonic passive DNS myblogtalk.com (2) 0 2012-09-22 21:36:35 UTC 2022-09-26 03:50:45 UTC 35.186.238.101 Unknown ranking
mnemonic passive DNS pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-09-29 00:17:17 UTC 142.250.74.98
mnemonic passive DNS yllix.com (1) 10423 2012-08-23 21:38:40 UTC 2022-09-28 02:52:27 UTC 185.66.200.224
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-28 18:56:49 UTC 143.204.55.35
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-28 18:52:26 UTC 93.184.220.29
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-28 16:21:22 UTC 142.250.74.164
mnemonic passive DNS lh5.googleusercontent.com (3) 157 2012-05-30 06:59:05 UTC 2022-09-29 02:46:51 UTC 142.250.74.1
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-28 05:13:47 UTC 143.204.55.49
mnemonic passive DNS macamlawak.blogspot.com (6) 0 2014-05-24 18:18:09 UTC 2022-09-27 02:19:11 UTC 142.250.74.161 Unknown ranking
mnemonic passive DNS play.google.com (1) 34 2018-05-12 00:28:37 UTC 2022-09-28 23:42:26 UTC 142.250.74.110
mnemonic passive DNS ocsp.pki.goog (26) 175 2017-06-14 07:23:31 UTC 2022-09-28 04:36:20 UTC 142.250.74.3
mnemonic passive DNS 2.bp.blogspot.com (9) 11071 2013-07-04 03:01:31 UTC 2022-09-28 21:47:43 UTC 142.250.74.161
mnemonic passive DNS lh3.googleusercontent.com (1) 66 2013-05-30 23:27:19 UTC 2022-09-29 01:46:41 UTC 142.250.74.1
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-28 04:42:17 UTC 142.250.74.72
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-28 08:06:38 UTC 34.120.237.76
mnemonic passive DNS tzegilo.com (1) 0 2022-01-14 15:27:15 UTC 2022-09-28 16:32:27 UTC 104.21.84.149 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:36:09 UTC 23.36.77.32
mnemonic passive DNS ylx-1.com (4) 931694 2017-01-29 20:35:12 UTC 2022-09-26 03:50:45 UTC 185.66.200.221
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-28 05:02:28 UTC 35.161.6.128
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-28 04:36:33 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161

Date UQ / IDS / BL URL IP
2022-12-02 10:37:40 +0000
0 - 0 - 1 peartreedigitaldesigns.blogspot.com/search/la (...) 142.250.74.161
2022-12-02 10:36:40 +0000
0 - 0 - 2 notivideox.blogspot.com/2013/05/barcelona-vs- (...) 142.250.74.161
2022-12-02 10:35:32 +0000
0 - 0 - 3 foxonlines.blogspot.com/search/label/Kajal%20 (...) 142.250.74.161
2022-12-02 09:46:03 +0000
0 - 0 - 2 cjmscghyekbuambdcarc4069276122.blogspot.com/u (...) 142.250.74.161
2022-12-02 09:37:55 +0000
0 - 0 - 3 baggrunde.blogspot.nl/search/label/Pizza 142.250.74.161

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-12-02 10:52:00 +0000
0 - 0 - 2 ajasxkqdyfgxkpgifeiq4991117694.blogspot.com/knee 142.250.74.33
2022-12-02 10:51:52 +0000
1 - 0 - 0 console.cloud.google.com/logs/query;storageSc (...) 216.58.211.14
2022-12-02 10:51:51 +0000
0 - 0 - 5 9000-aud-per-week.blogspot.com/?p=9pd! 142.250.74.33
2022-12-02 10:48:06 +0000
0 - 0 - 3 gtamtycity.blogspot.com/ 172.217.21.161
2022-12-02 10:47:51 +0000
0 - 0 - 1 blogomatic.net/ 34.98.99.30

Last 5 reports on domain: macamlawak.blogspot.com

Date UQ / IDS / BL URL IP
2022-11-19 02:50:40 +0000
0 - 0 - 2 macamlawak.blogspot.com/search/label/Politik 142.250.74.161
2022-11-09 03:46:51 +0000
0 - 0 - 3 macamlawak.blogspot.com/2014/11/kejam-cucuh-a (...) 142.250.74.161
2022-11-05 04:01:08 +0000
0 - 0 - 4 macamlawak.blogspot.com/2014/08/latihan-hardc (...) 142.250.74.161
2022-10-20 01:29:45 +0000
0 - 0 - 1 macamlawak.blogspot.com/2014/01/video-depe-ta (...) 142.250.74.161
2022-10-12 01:55:40 +0000
0 - 0 - 1 macamlawak.blogspot.com/search/label/mahkamah 142.250.74.161

No other reports with similar screenshot



JavaScript

Executed Scripts (78)


Executed Evals (6)

#1 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 531ec07d216cb5810b6ebf63f292c8c1759049139e175d847973b17cd08238fa

                                        0,
function(J) {
    WO(J, 1)
}
                                    

#2 JavaScript::Eval (size: 62, repeated: 1) - SHA256: 9a40ef33f7700831131770a8048c5a08faa312d7311fc2c6ced1909ea6e458ce

                                        0,
function(J, h, S) {
    S = (h = (S = W(J), W)(J), J.o)[S] && N(J, S), D(J, h, S)
}
                                    

#3 JavaScript::Eval (size: 15552, repeated: 1) - SHA256: b7bb0c5ac33ab436c5fe975360ef1af5f66987c6c8bf5c0569e749197b16ecaa

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var c = function(E) {
            return E
        },
        h = this || self,
        L = function(E, R) {
            if (R = (E = h.trustedTypes, null), !E || !E.createPolicy) return R;
            try {
                R = E.createPolicy("bg", {
                    createHTML: c,
                    createScript: c,
                    createScriptURL: c
                })
            } catch (J) {
                h.console && h.console.error(J.message)
            }
            return R
        };
    (0, eval)(function(E, R) {
        return (R = L()) && 1 === E.eval(R.createScript("1")) ? function(J) {
            return R.createScript(J)
        } : function(J) {
            return "" + J
        }
    }(h)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var R4=function(E,R,c,L,O,J){function h(){if(E.A==E){if(E.o){var S=[C,R,c,void 0,O,J,arguments];if(2==L)var q=a(false,false,(K(S,E),E));else if(1==L){var r=!E.j.length;K(S,E),r&&a(false,false,E)}else q=EI(E,S);return q}O&&J&&O.removeEventListener(J,h,u)}}return h},J_=function(E,R,c,L){function O(){}return{invoke:(L=sI(E,(c=void 0,function(J){O&&(R&&Y(R),c=J,O(),O=void 0)}),!!R)[0],function(J,h,S,q){function r(){c(function(A){Y(function(){J(A)})},S)}if(!h)return h=L(S),J&&J(h),h;c?r():(q=O,O=function(){Y((q(),r))})})}},D=function(E,R,c){if(260==R||63==R)E.o[R]?E.o[R].concat(c):E.o[R]=cO(E,c);else{if(E.l&&174!=R)return;139==R||279==R||115==R||108==R||485==R?E.o[R]||(E.o[R]=h_(134,c,R,E)):E.o[R]=h_(17,c,R,E)}174==R&&(E.S=e(32,E,false),E.X=void 0)},l=function(E,R){R.h=((R.h?R.h+"~":"E:")+E.message+":"+E.stack).slice(0,2048)},Sy=function(E,R,c,L){try{L=E[((R|0)+2)%3],E[R]=(E[R]|0)-(E[((R|0)+1)%3]|0)-(L|0)^(1==R?L<<c:L>>>c)}catch(O){throw O;}},OI=function(E,R){return R(function(c){c(E)}),[function(){return E}]},q0=function(E,R,c){return E.u(function(L){c=L},false,R),c},CU=function(E,R,c,L,O){(L=N((c=W((L=(E&=(O=E&4,3),W(R)),R)),R),L),O&&(L=rm(""+L)),E)&&B(c,X(L.length,2),R),B(c,L,R)},W=function(E,R){if(E.W)return KU(E.Z,E);return(R=e(8,E,true),R&128)&&(R^=128,E=e(2,E,true),R=(R<<2)+(E|0)),R},m=function(E,R,c){c=this;try{a4(this,R,E)}catch(L){l(L,this),R(function(O){O(c.h)})}},A_=function(E,R,c,L,O){for(R=(L=R[O=0,3]|0,R[2]|0);14>O;O++)c=c>>>8|c<<24,L=L>>>8|L<<24,c+=E|0,E=E<<3|E>>>29,c^=R+1890,L+=R|0,L^=O+1890,R=R<<3|R>>>29,E^=c,R^=L;return[E>>>24&255,E>>>16&255,E>>>8&255,E>>>0&255,c>>>24&255,c>>>16&255,c>>>8&255,c>>>0&255]},uN=function(E,R){D(R,260,((R.hh.push(R.o.slice()),R).o[260]=void 0,E))},Z=function(E,R){for(R=[];E--;)R.push(255*Math.random()|0);return R},sI=function(E,R,c,L){return(L=y[E.substring(0,3)+"_"])?L(E.substring(3),R,c):OI(E,R)},cO=function(E,R,c){return(c=g[E.U](E.sl),c[E.U]=function(){return R},c).concat=function(L){R=L},c},iN=function(E,R){((R.push(E[0]<<24|E[1]<<16|E[2]<<8|E[3]),R).push(E[4]<<24|E[5]<<16|E[6]<<8|E[7]),R).push(E[8]<<24|E[9]<<16|E[10]<<8|E[11])},X=function(E,R,c,L){for(c=(L=[],R|0)-1;0<=c;c--)L[(R|0)-1-(c|0)]=E>>8*c&255;return L},nU=function(E,R,c,L){L=(c=W(E),W(E)),B(L,X(N(E,c),R),E)},TT=function(E,R,c,L){for(;R.j.length;){c=(R.G=null,R.j.pop());try{L=EI(R,c)}catch(O){l(O,R)}if(E&&R.G){(E=R.G,E)(function(){a(true,true,R)});break}}return L},wm=function(E,R){return g[E](g.prototype,{parent:R,propertyIsEnumerable:R,prototype:R,console:R,floor:R,document:R,splice:R,replace:R,call:R,pop:R,length:R,stack:R})},h_=function(E,R,c,L,O,J,h,S){return h=g[L.U]((J=(R=[51,27,-23,78,28,-90,(O=Y1,R),37,-90,16],E&7),L).Ah),h[L.U]=function(q){J+=(S=q,6)+7*E,J&=7},h.concat=function(q){return(q=(q=c%16+1,5)*c*c*q- -1972*S-918*c*S+J+34*S*S+(O()|0)*q-q*S+R[J+35&7]*c*q-170*c*c*S,q=R[q],S=void 0,R)[(J+61&7)+(E&2)]=q,R[J+(E&2)]=27,q},h},a=function(E,R,c,L,O,J){if(c.j.length){c.qN=(c.i&&0(),E),c.i=true;try{O=c.K(),c.I=O,c.H=0,c.B=O,L=TT(E,c),J=c.K()-c.I,c.Y+=J,J<(R?0:10)||0>=c.L--||(J=Math.floor(J),c.N.push(254>=J?J:254))}finally{c.i=false}return L}},pU=function(E,R){if(R=(E=null,x).trustedTypes,!R||!R.createPolicy)return E;try{E=R.createPolicy("bg",{createHTML:zT,createScript:zT,createScriptURL:zT})}catch(c){x.console&&x.console.error(c.message)}return E},K=function(E,R){R.j.splice(0,0,E)},a4=function(E,R,c,L,O){for(L=(O=((E.Ah=((E.yp=D8,E).pz=ey,E.XL=E[P],wm)(E.U,{get:function(){return this.concat()}}),E).sl=g[E.U](E.Ah,{value:{value:{}}}),[]),0);128>L;L++)O[L]=String.fromCharCode(L);((K([(V(348,E,(V((V(390,E,((V(461,((V(452,E,(V(249,E,(V(364,(V((V(164,(V(188,((V(234,E,(D(E,139,[160,0,(D(E,115,(D(E,279,(V(69,E,(V((V(61,(V(141,(D(E,(E.eG=(D(E,(V((D((V(437,(D(E,485,(D(E,(V(229,E,(D(E,((D(E,408,(V(200,(V(402,E,(V(236,E,(D(E,(V(214,E,(V(0,((V(23,(D(E,293,(D(E,(D(E,260,(E.Kz=(E.WF=(E.g=((E.h=(E.P=[],void 0),E.X=void 0,E).W=void 0,E.T=(E.v=(E.C=1,E.Y=0,8001),0),(E.B=0,E).L=(E.A=E,E.o=[],E.F=[],(E.H=void 0,E).N=[],(E.qN=false,E.Z=void 0,E.G=null,E).S=void 0,(E.j=[],E.O=void 0,E).l=((E.ZX=0,E).s=0,L=(E.I=0,window.performance||{}),false),E.hh=[],25),0),function(J){this.A=J}),E.i=false,L.timeOrigin||(L.timing||{}).navigationStart||0),0)),63),0),E)),E),function(J,h,S,q,r,A,n){for(q=(h=N(J,(n=(A=W(J),r=vO(J),""),224)),h.length),S=0;r--;)S=((S|0)+(vO(J)|0))%q,n+=O[h[S]];D(J,A,n)}),V)(406,E,function(J){CU(3,J)}),E),function(J,h,S,q){D(J,(S=(h=W(J),W(J)),q=W(J),q),N(J,h)||N(J,S))}),function(){})),21),0),function(J,h,S,q){D(J,(S=N(J,(q=N(J,(h=(q=(S=W(J),W(J)),W(J)),q)),S)),h),S in q|0)})),function(J,h,S){0!=N(J,(h=N(J,(h=W((S=W(J),J)),h)),S))&&D(J,260,h)})),E),function(J){CU(4,J)}),2048)),V)(128,E,function(J,h,S){(h=N(J,(S=(h=W(J),W(J)),h)),h=t_(h),D)(J,S,h)}),207),467),function(J,h,S,q){S=(h=I((q=W(J),J)),W(J)),D(J,S,N(J,q)>>>h)})),416),x),[0,0,0])),E),function(J,h,S,q){D(J,(S=(h=(q=(h=W(J),W(J)),N(J,h)),N(J,q)),q),S+h)}),E),108,[]),317),E,function(J,h,S,q,r,A,n,z,T,v,w,p){function H(t,Q){for(;r<t;)p|=I(J)<<r,r+=8;return Q=(r-=t,p)&(1<<t)-1,p>>=t,Q}for(p=(n=W(J),r=0),T=(H(3)|0)+1,S=H(5),h=[],q=w=0;w<S;w++)z=H(1),h.push(z),q+=z?0:1;for(v=(q=(w=((q|0)-1).toString(2).length,0),[]);q<S;q++)h[q]||(v[q]=H(w));for(w=0;w<S;w++)h[w]&&(v[w]=W(J));for(A=[];T--;)A.push(N(J,W(J)));V(n,J,function(t,Q,d,k,LU){for(Q=(LU=(d=[],[]),0);Q<S;Q++){if(!h[k=v[Q],Q]){for(;k>=d.length;)d.push(W(t));k=d[k]}LU.push(k)}t.Z=cO(t,(t.W=cO(t,A.slice()),LU))})}),446),{}),0),278),0),E),function(J){nU(J,4)}),E),function(J,h,S,q){D(J,(q=(S=N(J,(q=(S=W(J),W(J)),h=W(J),S)),N)(J,q),h),+(S==q))}),409),E,function(J,h){(J=N((h=W(J),J.A),h),J[0]).removeEventListener(J[1],J[2],u)}),function(J,h,S,q,r){for(r=(S=(q=vO((h=W(J),J)),0),[]);S<q;S++)r.push(I(J));D(J,h,r)})),Z(4))),[])),0)]),function(J,h,S,q){(h=(S=W(J),W(J)),q=W(J),J.A==J)&&(q=N(J,q),h=N(J,h),N(J,S)[h]=q,174==S&&(J.X=void 0,2==h&&(J.S=e(32,J,false),J.X=void 0)))})),V)(209,E,function(J,h,S){D(J,(S=(h=W(J),W)(J),S),""+N(J,h))}),E),function(J,h,S,q,r){h=N(J,(r=(S=N((r=(h=(q=W(J),W(J)),W(J)),S=W(J),J),S),q=N(J.A,q),N(J,r)),h)),0!==q&&(S=R4(J,r,S,1,q,h),q.addEventListener(h,S,u),D(J,21,[q,h,S]))}),E),function(J){nU(J,1)}),225),E,function(J,h,S,q,r,A){G(h,J,false,true)||(q=N0(J.A),h=q.R,S=q.oe,A=q.D,r=A.length,q=q.El,h=0==r?new S[h]:1==r?new S[h](A[0]):2==r?new S[h](A[0],A[1]):3==r?new S[h](A[0],A[1],A[2]):4==r?new S[h](A[0],A[1],A[2],A[3]):2(),D(J,q,h))}),E.ae=0,E),function(J,h,S){G(h,J,false,true)||(h=W(J),S=W(J),D(J,S,function(q){return eval(q)}(lN(N(J.A,h)))))}),function(J,h){h=N(J,W(J)),uN(h,J.A)})),function(J,h,S,q,r,A){if(!G(h,J,true,true)){if("object"==t_((A=(h=N((q=W((A=(r=W((h=W(J),J)),W(J)),J)),J),h),r=N(J,r),N(J,A)),J=N(J,q),h))){for(S in q=[],h)q.push(S);h=q}for(A=0<A?A:1,S=0,q=h.length;S<q;S+=A)r(h.slice(S,(S|0)+(A|0)),J)}})),E).kt=0,E),function(J){WO(J,4)}),V)(252,E,function(J,h,S,q,r){S=N(J,(q=N(J,(r=N(J,(q=(r=(S=(h=W(J),W(J)),W(J)),W(J)),r)),q)),S)),D(J,h,R4(J,S,r,q))}),function(J,h,S,q){!G(h,J,false,true)&&(h=N0(J),S=h.R,q=h.oe,J.A==J||S==J.WF&&q==J)&&(D(J,h.El,S.apply(q,h.D)),J.B=J.K())})),447),E,function(J,h,S,q){if(S=J.hh.pop()){for(q=I(J);0<q;q--)h=W(J),S[h]=J.o[h];((S[108]=J.o[108],S)[408]=J.o[408],J).o=S}else D(J,260,J.s)}),function(J,h,S,q){h=(S=N(J,(q=W((h=(S=W(J),W(J)),J)),S)),N(J,h)),D(J,q,S[h])})),QE)],E),K)([M,c],E),K)([BO,R],E),a(true,true,E)},rm=function(E,R,c,L,O){for(O=(E=E.replace(/\\r\\n/g,"\\n"),[]),R=L=0;L<E.length;L++)c=E.charCodeAt(L),128>c?O[R++]=c:(2048>c?O[R++]=c>>6|192:(55296==(c&64512)&&L+1<E.length&&56320==(E.charCodeAt(L+1)&64512)?(c=65536+((c&1023)<<10)+(E.charCodeAt(++L)&1023),O[R++]=c>>18|240,O[R++]=c>>12&63|128):O[R++]=c>>12|224,O[R++]=c>>6&63|128),O[R++]=c&63|128);return O},x=this||self,e=function(E,R,c,L,O,J,h,S,q,r,A,n,z,T){if((S=N(R,260),S)>=R.s)throw[f,31];for(L=(J=0,R.XL.length),h=E,n=S;0<h;)T=n>>3,r=n%8,q=R.F[T],O=8-(r|0),O=O<h?O:h,c&&(z=R,z.X!=n>>6&&(z.X=n>>6,A=N(z,174),z.O=A_(z.S,[0,0,A[1],A[2]],z.X)),q^=R.O[T&L]),n+=O,J|=(q>>8-(r|0)-(O|0)&(1<<O)-1)<<(h|0)-(O|0),h-=O;return D(R,260,(c=J,(S|0)+(E|0))),c},Xf=function(E,R,c){if(3==E.length){for(c=0;3>c;c++)R[c]+=E[c];for(c=(E=[13,8,13,12,16,5,3,10,15],0);9>c;c++)R[3](R,c%3,E[c])}},t_=function(E,R,c){if("object"==(c=typeof E,c))if(E){if(E instanceof Array)return"array";if(E instanceof Object)return c;if("[object Window]"==(R=Object.prototype.toString.call(E),R))return"object";if("[object Array]"==R||"number"==typeof E.length&&"undefined"!=typeof E.splice&&"undefined"!=typeof E.propertyIsEnumerable&&!E.propertyIsEnumerable("splice"))return"array";if("[object Function]"==R||"undefined"!=typeof E.call&&"undefined"!=typeof E.propertyIsEnumerable&&!E.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==c&&"undefined"==typeof E.call)return"object";return c},G=function(E,R,c,L,O,J,h,S,q){if((R.A=((q=(O=(h=(S=4==(J=(L||R.H++,0<R.g&&R.i&&R.qN&&1>=R.T)&&!R.W&&!R.G&&(!L||1<R.v-E)&&0==document.hidden,R.H))||J?R.K():R.B,h)-R.B,O)>>14,R.S)&&(R.S^=q*(O<<2)),q)||R.A,R.C+=q,S)||J)R.B=h,R.H=0;if(!J||h-R.I<R.g-(c?255:L?5:2))return false;return(c=N(R,(R.v=E,L?63:260)),D(R,260,R.s),R.j).push([m4,c,L?E+1:E]),R.G=Y,true},vO=function(E,R){return(R=I(E),R)&128&&(R=R&127|I(E)<<7),R},o4=function(E,R,c,L){return N(c,(D(c,260,(HO(((L=N(c,260),c.F&&L<c.s)?(D(c,260,c.s),uN(R,c)):D(c,260,R),E),c),L)),446))},b=function(E,R,c,L,O,J){if(!E.l){if(3<(c=N(((R=((J=void 0,c&&c[0]===f&&(J=c[2],R=c[1],c=void 0),O=N(E,108),0)==O.length&&(L=N(E,63)>>3,O.push(R,L>>8&255,L&255),void 0!=J&&O.push(J&255)),""),c)&&(c.message&&(R+=c.message),c.stack&&(R+=":"+c.stack)),E),408),c)){J=(R=(c-=((R=R.slice(0,(c|0)-3),R).length|0)+3,rm(R)),E.A),E.A=E;try{B(279,X(R.length,2).concat(R),E,9)}finally{E.A=J}}D(E,408,c)}},Z8=function(E,R){return R[E]<<24|R[(E|0)+1]<<16|R[(E|0)+2]<<8|R[(E|0)+3]},I=function(E){return E.W?KU(E.Z,E):e(8,E,true)},zT=function(E){return E},EI=function(E,R,c,L,O){if(L=R[0],L==F)E.L=25,E.V(R);else if(L==P){O=R[1];try{c=E.h||E.V(R)}catch(J){l(J,E),c=E.h}O(c)}else if(L==m4)E.V(R);else if(L==M)E.V(R);else if(L==BO){try{for(c=0;c<E.P.length;c++)try{O=E.P[c],O[0][O[1]](O[2])}catch(J){}}catch(J){}(0,(E.P=[],R)[1])(function(J,h){E.u(J,true,h)},function(J){K([yE],(J=!E.j.length,E)),J&&a(true,false,E)})}else{if(L==C)return c=R[2],D(E,433,R[6]),D(E,446,c),E.V(R);L==yE?(E.o=null,E.F=[],E.N=[]):L==QE&&"loading"===x.document.readyState&&(E.G=function(J,h){function S(){h||(h=true,J())}(x.document.addEventListener("DOMContentLoaded",S,(h=false,u)),x).addEventListener("load",S,u)})}},B=function(E,R,c,L,O,J){if(c.A==c)for(O=N(c,E),279==E?(E=function(h,S,q,r){if((r=(S=O.length,S|0)-4>>3,O).Ul!=r){q=[0,(r=(r<<3)-(O.Ul=r,4),0),J[1],J[2]];try{O.z$=A_(Z8(r,O),q,Z8((r|0)+4,O))}catch(A){throw A;}}O.push(O.z$[S&7]^h)},J=N(c,485)):E=function(h){O.push(h)},L&&E(L&255),c=0,L=R.length;c<L;c++)E(R[c])},Y=x.requestIdleCallback?function(E){requestIdleCallback(function(){E()},{timeout:4})}:x.setImmediate?function(E){setImmediate(E)}:function(E){setTimeout(E,0)},WO=function(E,R,c,L){for(c=(L=W(E),0);0<R;R--)c=c<<8|I(E);D(E,L,c)},V=function(E,R,c){D(R,E,c),c[QE]=2796},y,U,N=function(E,R){if((E=E.o[R],void 0)===E)throw[f,30,R];if(E.value)return E.create();return(E.create(5*R*R+27*R+-58),E).prototype},HO=function(E,R,c,L,O,J){if(!R.h){R.T++;try{for(O=(J=(c=R.s,void 0),0);--E;)try{if((L=void 0,R).W)J=KU(R.W,R);else{if(O=N(R,260),O>=c)break;J=N(R,(D(R,63,O),L=W(R),L))}G((J&&J[yE]&2048?J(R,E):b(R,0,[f,21,L]),E),R,false,false)}catch(h){N(R,207)?b(R,22,h):D(R,207,h)}if(!E){if(R.bG){HO((R.T--,188885615751),R);return}b(R,0,[f,33])}}catch(h){try{b(R,22,h)}catch(S){l(S,R)}}R.T--}},N0=function(E,R,c,L,O,J){for(c=(O=E[gm]||{},R=W(E),O.El=W(E),O.D=[],J=E.A==E?(I(E)|0)-1:1,L=W(E),0);c<J;c++)O.D.push(W(E));for(O.oe=N(E,L);J--;)O.D[J]=N(E,O.D[J]);return O.R=N(E,R),O},KU=function(E,R){return(E=E.create().shift(),R).W.create().length||R.Z.create().length||(R.Z=void 0,R.W=void 0),E},u={passive:true,capture:true},gm=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),BO=(m.prototype.bG=!(m.prototype.J="toString",1),[]),f=(m.prototype.mf=(m.prototype.Vp=void 0,void 0),{}),M=[],m4=[],F=[],yE=[],QE=[],P=[],C=[],Y1=((iN,Z,Sy,Xf,m.prototype).U="create",U=m.prototype,U.nz=function(E,R,c,L,O,J){for(O=(c=0,[]),J=0;J<E.length;J++)for(c+=R,L=L<<R|E[J];7<c;)c-=8,O.push(L>>c&255);return O},U.DX=function(E,R,c,L,O){for(L=O=0;L<E.length;L++)O+=E.charCodeAt(L),O+=O<<10,O^=O>>6;return(O=(E=(O+=O<<3,O^=O>>11,O+(O<<15)>>>0),new Number(E&(1<<R)-1)),O)[0]=(E>>>R)%c,O},void 0),g=f.constructor;(((U.K=(window.performance||{}).now?function(){return this.Kz+window.performance.now()}:function(){return+new Date},U.th=(U.dC=function(){return Math.floor(this.Y+(this.K()-this.I))},function(){return Math.floor(this.K())}),U).SG=function(E,R,c){return E^(R^=R<<13,R^=R>>17,(R=(R^R<<5)&c)||(R=1),R)},U).u=function(E,R,c,L,O){if(c="array"===t_(c)?c:[c],this.h)E(this.h);else try{O=[],L=!this.j.length,K([F,O,c],this),K([P,E,O],this),R&&!L||a(R,true,this)}catch(J){l(J,this),E(this.h)}},m.prototype).V=function(E,R){return R=(Y1=(E={},function(){return R==E?-58:-12}),{}),function(c,L,O,J,h,S,q,r,A,n,z,T,v,w,p){R=(n=R,E);try{if(S=c[0],S==M){z=c[1];try{for(h=(T=(p=[],atob(z)),v=0);v<T.length;v++)A=T.charCodeAt(v),255<A&&(p[h++]=A&255,A>>=8),p[h++]=A;D(this,(this.s=(this.F=p,this.F.length)<<3,174),[0,0,0])}catch(H){b(this,17,H);return}HO(8001,this)}else if(S==F)c[1].push(N(this,139).length,N(this,115).length,N(this,408),N(this,279).length),D(this,446,c[2]),this.o[479]&&o4(8001,N(this,479),this);else{if(S==P){this.A=(J=(O=X(((p=c[2],N(this,139).length)|0)+2,2),this.A),this);try{r=N(this,108),0<r.length&&B(139,X(r.length,2).concat(r),this,10),B(139,X(this.C,1),this,109),B(139,X(this[P].length,1),this),T=0,T+=N(this,278)&2047,T-=(N(this,139).length|0)+5,w=N(this,279),4<w.length&&(T-=(w.length|0)+3),0<T&&B(139,X(T,2).concat(Z(T)),this,15),4<w.length&&B(139,X(w.length,2).concat(w),this,156)}finally{this.A=J}if(((h=Z(2).concat(N(this,139)),h)[1]=h[0]^6,h)[3]=h[1]^O[0],h[4]=h[1]^O[1],L=this.jG(h))L="!"+L;else for(L="",T=0;T<h.length;T++)q=h[T][this.J](16),1==q.length&&(q="0"+q),L+=q;return N((D(this,408,(N(this,(N(this,(v=L,139)).length=p.shift(),115)).length=p.shift(),p.shift())),this),279).length=p.shift(),v}if(S==m4)o4(c[2],c[1],this);else if(S==C)return o4(8001,c[1],this)}}finally{R=n}}}();var ey,D8=(m.prototype.rC=((m.prototype.jG=function(E,R,c,L){if(c=window.btoa){for(L=0,R="";L<E.length;L+=8192)R+=String.fromCharCode.apply(null,E.slice(L,L+8192));E=c(R).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else E=void 0;return E},m.prototype).xt=0,0),m.prototype[BO]=[0,0,1,1,0,1,1],/./),x1=M.pop.bind(m.prototype[F]),lN=function(E,R){return(R=pU())&&1===E.eval(R.createScript("1"))?function(c){return R.createScript(c)}:function(c){return""+c}}(((ey=(D8[m.prototype.J]=x1,wm(m.prototype.U,{get:x1})),m).prototype.G$=void 0,x));(40<(y=x.botguard||(x.botguard={}),y.m)||(y.m=41,y.bg=J_,y.a=sI),y).ABO_=function(E,R,c){return[(c=new m(E,R),function(L){return q0(c,L)})]};}).call(this);'));
}).call(this);
                                    

#4 JavaScript::Eval (size: 15743, repeated: 1) - SHA256: 976ccd60d049bb46d950cb6815c3fa95864ccab748f7bd0f787c4110d00ea63e

                                        (function() {
    var R4 = function(E, R, c, L, O, J) {
            function h() {
                if (E.A == E) {
                    if (E.o) {
                        var S = [C, R, c, void 0, O, J, arguments];
                        if (2 == L) var q = a(false, false, (K(S, E), E));
                        else if (1 == L) {
                            var r = !E.j.length;
                            K(S, E), r && a(false, false, E)
                        } else q = EI(E, S);
                        return q
                    }
                    O && J && O.removeEventListener(J, h, u)
                }
            }
            return h
        },
        J_ = function(E, R, c, L) {
            function O() {}
            return {
                invoke: (L = sI(E, (c = void 0, function(J) {
                    O && (R && Y(R), c = J, O(), O = void 0)
                }), !!R)[0], function(J, h, S, q) {
                    function r() {
                        c(function(A) {
                            Y(function() {
                                J(A)
                            })
                        }, S)
                    }
                    if (!h) return h = L(S), J && J(h), h;
                    c ? r() : (q = O, O = function() {
                        Y((q(), r))
                    })
                })
            }
        },
        D = function(E, R, c) {
            if (260 == R || 63 == R) E.o[R] ? E.o[R].concat(c) : E.o[R] = cO(E, c);
            else {
                if (E.l && 174 != R) return;
                139 == R || 279 == R || 115 == R || 108 == R || 485 == R ? E.o[R] || (E.o[R] = h_(134, c, R, E)) : E.o[R] = h_(17, c, R, E)
            }
            174 == R && (E.S = e(32, E, false), E.X = void 0)
        },
        l = function(E, R) {
            R.h = ((R.h ? R.h + "~" : "E:") + E.message + ":" + E.stack).slice(0, 2048)
        },
        Sy = function(E, R, c, L) {
            try {
                L = E[((R | 0) + 2) % 3], E[R] = (E[R] | 0) - (E[((R | 0) + 1) % 3] | 0) - (L | 0) ^ (1 == R ? L << c : L >>> c)
            } catch (O) {
                throw O;
            }
        },
        OI = function(E, R) {
            return R(function(c) {
                c(E)
            }), [function() {
                return E
            }]
        },
        q0 = function(E, R, c) {
            return E.u(function(L) {
                c = L
            }, false, R), c
        },
        CU = function(E, R, c, L, O) {
            (L = N((c = W((L = (E &= (O = E & 4, 3), W(R)), R)), R), L), O && (L = rm("" + L)), E) && B(c, X(L.length, 2), R), B(c, L, R)
        },
        W = function(E, R) {
            if (E.W) return KU(E.Z, E);
            return (R = e(8, E, true), R & 128) && (R ^= 128, E = e(2, E, true), R = (R << 2) + (E | 0)), R
        },
        m = function(E, R, c) {
            c = this;
            try {
                a4(this, R, E)
            } catch (L) {
                l(L, this), R(function(O) {
                    O(c.h)
                })
            }
        },
        A_ = function(E, R, c, L, O) {
            for (R = (L = R[O = 0, 3] | 0, R[2] | 0); 14 > O; O++) c = c >>> 8 | c << 24, L = L >>> 8 | L << 24, c += E | 0, E = E << 3 | E >>> 29, c ^= R + 1890, L += R | 0, L ^= O + 1890, R = R << 3 | R >>> 29, E ^= c, R ^= L;
            return [E >>> 24 & 255, E >>> 16 & 255, E >>> 8 & 255, E >>> 0 & 255, c >>> 24 & 255, c >>> 16 & 255, c >>> 8 & 255, c >>> 0 & 255]
        },
        uN = function(E, R) {
            D(R, 260, ((R.hh.push(R.o.slice()), R).o[260] = void 0, E))
        },
        Z = function(E, R) {
            for (R = []; E--;) R.push(255 * Math.random() | 0);
            return R
        },
        sI = function(E, R, c, L) {
            return (L = y[E.substring(0, 3) + "_"]) ? L(E.substring(3), R, c) : OI(E, R)
        },
        cO = function(E, R, c) {
            return (c = g[E.U](E.sl), c[E.U] = function() {
                return R
            }, c).concat = function(L) {
                R = L
            }, c
        },
        iN = function(E, R) {
            ((R.push(E[0] << 24 | E[1] << 16 | E[2] << 8 | E[3]), R).push(E[4] << 24 | E[5] << 16 | E[6] << 8 | E[7]), R).push(E[8] << 24 | E[9] << 16 | E[10] << 8 | E[11])
        },
        X = function(E, R, c, L) {
            for (c = (L = [], R | 0) - 1; 0 <= c; c--) L[(R | 0) - 1 - (c | 0)] = E >> 8 * c & 255;
            return L
        },
        nU = function(E, R, c, L) {
            L = (c = W(E), W(E)), B(L, X(N(E, c), R), E)
        },
        TT = function(E, R, c, L) {
            for (; R.j.length;) {
                c = (R.G = null, R.j.pop());
                try {
                    L = EI(R, c)
                } catch (O) {
                    l(O, R)
                }
                if (E && R.G) {
                    (E = R.G, E)(function() {
                        a(true, true, R)
                    });
                    break
                }
            }
            return L
        },
        wm = function(E, R) {
            return g[E](g.prototype, {
                parent: R,
                propertyIsEnumerable: R,
                prototype: R,
                console: R,
                floor: R,
                document: R,
                splice: R,
                replace: R,
                call: R,
                pop: R,
                length: R,
                stack: R
            })
        },
        h_ = function(E, R, c, L, O, J, h, S) {
            return h = g[L.U]((J = (R = [51, 27, -23, 78, 28, -90, (O = Y1, R), 37, -90, 16], E & 7), L).Ah), h[L.U] = function(q) {
                J += (S = q, 6) + 7 * E, J &= 7
            }, h.concat = function(q) {
                return (q = (q = c % 16 + 1, 5) * c * c * q - -1972 * S - 918 * c * S + J + 34 * S * S + (O() | 0) * q - q * S + R[J + 35 & 7] * c * q - 170 * c * c * S, q = R[q], S = void 0, R)[(J + 61 & 7) + (E & 2)] = q, R[J + (E & 2)] = 27, q
            }, h
        },
        a = function(E, R, c, L, O, J) {
            if (c.j.length) {
                c.qN = (c.i && 0(), E), c.i = true;
                try {
                    O = c.K(), c.I = O, c.H = 0, c.B = O, L = TT(E, c), J = c.K() - c.I, c.Y += J, J < (R ? 0 : 10) || 0 >= c.L-- || (J = Math.floor(J), c.N.push(254 >= J ? J : 254))
                } finally {
                    c.i = false
                }
                return L
            }
        },
        pU = function(E, R) {
            if (R = (E = null, x).trustedTypes, !R || !R.createPolicy) return E;
            try {
                E = R.createPolicy("bg", {
                    createHTML: zT,
                    createScript: zT,
                    createScriptURL: zT
                })
            } catch (c) {
                x.console && x.console.error(c.message)
            }
            return E
        },
        K = function(E, R) {
            R.j.splice(0, 0, E)
        },
        a4 = function(E, R, c, L, O) {
            for (L = (O = ((E.Ah = ((E.yp = D8, E).pz = ey, E.XL = E[P], wm)(E.U, {get: function() {
                        return this.concat()
                    }
                }), E).sl = g[E.U](E.Ah, {
                    value: {
                        value: {}
                    }
                }), []), 0); 128 > L; L++) O[L] = String.fromCharCode(L);
            ((K([(V(348, E, (V((V(390, E, ((V(461, ((V(452, E, (V(249, E, (V(364, (V((V(164, (V(188, ((V(234, E, (D(E, 139, [160, 0, (D(E, 115, (D(E, 279, (V(69, E, (V((V(61, (V(141, (D(E, (E.eG = (D(E, (V((D((V(437, (D(E, 485, (D(E, (V(229, E, (D(E, ((D(E, 408, (V(200, (V(402, E, (V(236, E, (D(E, (V(214, E, (V(0, ((V(23, (D(E, 293, (D(E, (D(E, 260, (E.Kz = (E.WF = (E.g = ((E.h = (E.P = [], void 0), E.X = void 0, E).W = void 0, E.T = (E.v = (E.C = 1, E.Y = 0, 8001), 0), (E.B = 0, E).L = (E.A = E, E.o = [], E.F = [], (E.H = void 0, E).N = [], (E.qN = false, E.Z = void 0, E.G = null, E).S = void 0, (E.j = [], E.O = void 0, E).l = ((E.ZX = 0, E).s = 0, L = (E.I = 0, window.performance || {}), false), E.hh = [], 25), 0), function(J) {
                this.A = J
            }), E.i = false, L.timeOrigin || (L.timing || {}).navigationStart || 0), 0)), 63), 0), E)), E), function(J, h, S, q, r, A, n) {
                for (q = (h = N(J, (n = (A = W(J), r = vO(J), ""), 224)), h.length), S = 0; r--;) S = ((S | 0) + (vO(J) | 0)) % q, n += O[h[S]];
                D(J, A, n)
            }), V)(406, E, function(J) {
                CU(3, J)
            }), E), function(J, h, S, q) {
                D(J, (S = (h = W(J), W(J)), q = W(J), q), N(J, h) || N(J, S))
            }), function() {})), 21), 0), function(J, h, S, q) {
                D(J, (S = N(J, (q = N(J, (h = (q = (S = W(J), W(J)), W(J)), q)), S)), h), S in q | 0)
            })), function(J, h, S) {
                0 != N(J, (h = N(J, (h = W((S = W(J), J)), h)), S)) && D(J, 260, h)
            })), E), function(J) {
                CU(4, J)
            }), 2048)), V)(128, E, function(J, h, S) {
                (h = N(J, (S = (h = W(J), W(J)), h)), h = t_(h), D)(J, S, h)
            }), 207), 467), function(J, h, S, q) {
                S = (h = I((q = W(J), J)), W(J)), D(J, S, N(J, q) >>> h)
            })), 416), x), [0, 0, 0])), E), function(J, h, S, q) {
                D(J, (S = (h = (q = (h = W(J), W(J)), N(J, h)), N(J, q)), q), S + h)
            }), E), 108, []), 317), E, function(J, h, S, q, r, A, n, z, T, v, w, p) {
                function H(t, Q) {
                    for (; r < t;) p |= I(J) << r, r += 8;
                    return Q = (r -= t, p) & (1 << t) - 1, p >>= t, Q
                }
                for (p = (n = W(J), r = 0), T = (H(3) | 0) + 1, S = H(5), h = [], q = w = 0; w < S; w++) z = H(1), h.push(z), q += z ? 0 : 1;
                for (v = (q = (w = ((q | 0) - 1).toString(2).length, 0), []); q < S; q++) h[q] || (v[q] = H(w));
                for (w = 0; w < S; w++) h[w] && (v[w] = W(J));
                for (A = []; T--;) A.push(N(J, W(J)));
                V(n, J, function(t, Q, d, k, LU) {
                    for (Q = (LU = (d = [], []), 0); Q < S; Q++) {
                        if (!h[k = v[Q], Q]) {
                            for (; k >= d.length;) d.push(W(t));
                            k = d[k]
                        }
                        LU.push(k)
                    }
                    t.Z = cO(t, (t.W = cO(t, A.slice()), LU))
                })
            }), 446), {}), 0), 278), 0), E), function(J) {
                nU(J, 4)
            }), E), function(J, h, S, q) {
                D(J, (q = (S = N(J, (q = (S = W(J), W(J)), h = W(J), S)), N)(J, q), h), +(S == q))
            }), 409), E, function(J, h) {
                (J = N((h = W(J), J.A), h), J[0]).removeEventListener(J[1], J[2], u)
            }), function(J, h, S, q, r) {
                for (r = (S = (q = vO((h = W(J), J)), 0), []); S < q; S++) r.push(I(J));
                D(J, h, r)
            })), Z(4))), [])), 0)]), function(J, h, S, q) {
                (h = (S = W(J), W(J)), q = W(J), J.A == J) && (q = N(J, q), h = N(J, h), N(J, S)[h] = q, 174 == S && (J.X = void 0, 2 == h && (J.S = e(32, J, false), J.X = void 0)))
            })), V)(209, E, function(J, h, S) {
                D(J, (S = (h = W(J), W)(J), S), "" + N(J, h))
            }), E), function(J, h, S, q, r) {
                h = N(J, (r = (S = N((r = (h = (q = W(J), W(J)), W(J)), S = W(J), J), S), q = N(J.A, q), N(J, r)), h)), 0 !== q && (S = R4(J, r, S, 1, q, h), q.addEventListener(h, S, u), D(J, 21, [q, h, S]))
            }), E), function(J) {
                nU(J, 1)
            }), 225), E, function(J, h, S, q, r, A) {
                G(h, J, false, true) || (q = N0(J.A), h = q.R, S = q.oe, A = q.D, r = A.length, q = q.El, h = 0 == r ? new S[h] : 1 == r ? new S[h](A[0]) : 2 == r ? new S[h](A[0], A[1]) : 3 == r ? new S[h](A[0], A[1], A[2]) : 4 == r ? new S[h](A[0], A[1], A[2], A[3]) : 2(), D(J, q, h))
            }), E.ae = 0, E), function(J, h, S) {
                G(h, J, false, true) || (h = W(J), S = W(J), D(J, S, function(q) {
                    return eval(q)
                }(lN(N(J.A, h)))))
            }), function(J, h) {
                h = N(J, W(J)), uN(h, J.A)
            })), function(J, h, S, q, r, A) {
                if (!G(h, J, true, true)) {
                    if ("object" == t_((A = (h = N((q = W((A = (r = W((h = W(J), J)), W(J)), J)), J), h), r = N(J, r), N(J, A)), J = N(J, q), h))) {
                        for (S in q = [], h) q.push(S);
                        h = q
                    }
                    for (A = 0 < A ? A : 1, S = 0, q = h.length; S < q; S += A) r(h.slice(S, (S | 0) + (A | 0)), J)
                }
            })), E).kt = 0, E), function(J) {
                WO(J, 4)
            }), V)(252, E, function(J, h, S, q, r) {
                S = N(J, (q = N(J, (r = N(J, (q = (r = (S = (h = W(J), W(J)), W(J)), W(J)), r)), q)), S)), D(J, h, R4(J, S, r, q))
            }), function(J, h, S, q) {
                !G(h, J, false, true) && (h = N0(J), S = h.R, q = h.oe, J.A == J || S == J.WF && q == J) && (D(J, h.El, S.apply(q, h.D)), J.B = J.K())
            })), 447), E, function(J, h, S, q) {
                if (S = J.hh.pop()) {
                    for (q = I(J); 0 < q; q--) h = W(J), S[h] = J.o[h];
                    ((S[108] = J.o[108], S)[408] = J.o[408], J).o = S
                } else D(J, 260, J.s)
            }), function(J, h, S, q) {
                h = (S = N(J, (q = W((h = (S = W(J), W(J)), J)), S)), N(J, h)), D(J, q, S[h])
            })), QE)], E), K)([M, c], E), K)([BO, R], E), a(true, true, E)
        },
        rm = function(E, R, c, L, O) {
            for (O = (E = E.replace(/\r\n/g, "\n"), []), R = L = 0; L < E.length; L++) c = E.charCodeAt(L), 128 > c ? O[R++] = c : (2048 > c ? O[R++] = c >> 6 | 192 : (55296 == (c & 64512) && L + 1 < E.length && 56320 == (E.charCodeAt(L + 1) & 64512) ? (c = 65536 + ((c & 1023) << 10) + (E.charCodeAt(++L) & 1023), O[R++] = c >> 18 | 240, O[R++] = c >> 12 & 63 | 128) : O[R++] = c >> 12 | 224, O[R++] = c >> 6 & 63 | 128), O[R++] = c & 63 | 128);
            return O
        },
        x = this || self,
        e = function(E, R, c, L, O, J, h, S, q, r, A, n, z, T) {
            if ((S = N(R, 260), S) >= R.s) throw [f, 31];
            for (L = (J = 0, R.XL.length), h = E, n = S; 0 < h;) T = n >> 3, r = n % 8, q = R.F[T], O = 8 - (r | 0), O = O < h ? O : h, c && (z = R, z.X != n >> 6 && (z.X = n >> 6, A = N(z, 174), z.O = A_(z.S, [0, 0, A[1], A[2]], z.X)), q ^= R.O[T & L]), n += O, J |= (q >> 8 - (r | 0) - (O | 0) & (1 << O) - 1) << (h | 0) - (O | 0), h -= O;
            return D(R, 260, (c = J, (S | 0) + (E | 0))), c
        },
        Xf = function(E, R, c) {
            if (3 == E.length) {
                for (c = 0; 3 > c; c++) R[c] += E[c];
                for (c = (E = [13, 8, 13, 12, 16, 5, 3, 10, 15], 0); 9 > c; c++) R[3](R, c % 3, E[c])
            }
        },
        t_ = function(E, R, c) {
            if ("object" == (c = typeof E, c))
                if (E) {
                    if (E instanceof Array) return "array";
                    if (E instanceof Object) return c;
                    if ("[object Window]" == (R = Object.prototype.toString.call(E), R)) return "object";
                    if ("[object Array]" == R || "number" == typeof E.length && "undefined" != typeof E.splice && "undefined" != typeof E.propertyIsEnumerable && !E.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == R || "undefined" != typeof E.call && "undefined" != typeof E.propertyIsEnumerable && !E.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == c && "undefined" == typeof E.call) return "object";
            return c
        },
        G = function(E, R, c, L, O, J, h, S, q) {
            if ((R.A = ((q = (O = (h = (S = 4 == (J = (L || R.H++, 0 < R.g && R.i && R.qN && 1 >= R.T) && !R.W && !R.G && (!L || 1 < R.v - E) && 0 == document.hidden, R.H)) || J ? R.K() : R.B, h) - R.B, O) >> 14, R.S) && (R.S ^= q * (O << 2)), q) || R.A, R.C += q, S) || J) R.B = h, R.H = 0;
            if (!J || h - R.I < R.g - (c ? 255 : L ? 5 : 2)) return false;
            return (c = N(R, (R.v = E, L ? 63 : 260)), D(R, 260, R.s), R.j).push([m4, c, L ? E + 1 : E]), R.G = Y, true
        },
        vO = function(E, R) {
            return (R = I(E), R) & 128 && (R = R & 127 | I(E) << 7), R
        },
        o4 = function(E, R, c, L) {
            return N(c, (D(c, 260, (HO(((L = N(c, 260), c.F && L < c.s) ? (D(c, 260, c.s), uN(R, c)) : D(c, 260, R), E), c), L)), 446))
        },
        b = function(E, R, c, L, O, J) {
            if (!E.l) {
                if (3 < (c = N(((R = ((J = void 0, c && c[0] === f && (J = c[2], R = c[1], c = void 0), O = N(E, 108), 0) == O.length && (L = N(E, 63) >> 3, O.push(R, L >> 8 & 255, L & 255), void 0 != J && O.push(J & 255)), ""), c) && (c.message && (R += c.message), c.stack && (R += ":" + c.stack)), E), 408), c)) {
                    J = (R = (c -= ((R = R.slice(0, (c | 0) - 3), R).length | 0) + 3, rm(R)), E.A), E.A = E;
                    try {
                        B(279, X(R.length, 2).concat(R), E, 9)
                    } finally {
                        E.A = J
                    }
                }
                D(E, 408, c)
            }
        },
        Z8 = function(E, R) {
            return R[E] << 24 | R[(E | 0) + 1] << 16 | R[(E | 0) + 2] << 8 | R[(E | 0) + 3]
        },
        I = function(E) {
            return E.W ? KU(E.Z, E) : e(8, E, true)
        },
        zT = function(E) {
            return E
        },
        EI = function(E, R, c, L, O) {
            if (L = R[0], L == F) E.L = 25, E.V(R);
            else if (L == P) {
                O = R[1];
                try {
                    c = E.h || E.V(R)
                } catch (J) {
                    l(J, E), c = E.h
                }
                O(c)
            } else if (L == m4) E.V(R);
            else if (L == M) E.V(R);
            else if (L == BO) {
                try {
                    for (c = 0; c < E.P.length; c++) try {
                        O = E.P[c], O[0][O[1]](O[2])
                    } catch (J) {}
                } catch (J) {}(0, (E.P = [], R)[1])(function(J, h) {
                    E.u(J, true, h)
                }, function(J) {
                    K([yE], (J = !E.j.length, E)), J && a(true, false, E)
                })
            } else {
                if (L == C) return c = R[2], D(E, 433, R[6]), D(E, 446, c), E.V(R);
                L == yE ? (E.o = null, E.F = [], E.N = []) : L == QE && "loading" === x.document.readyState && (E.G = function(J, h) {
                    function S() {
                        h || (h = true, J())
                    }(x.document.addEventListener("DOMContentLoaded", S, (h = false, u)), x).addEventListener("load", S, u)
                })
            }
        },
        B = function(E, R, c, L, O, J) {
            if (c.A == c)
                for (O = N(c, E), 279 == E ? (E = function(h, S, q, r) {
                        if ((r = (S = O.length, S | 0) - 4 >> 3, O).Ul != r) {
                            q = [0, (r = (r << 3) - (O.Ul = r, 4), 0), J[1], J[2]];
                            try {
                                O.z$ = A_(Z8(r, O), q, Z8((r | 0) + 4, O))
                            } catch (A) {
                                throw A;
                            }
                        }
                        O.push(O.z$[S & 7] ^ h)
                    }, J = N(c, 485)) : E = function(h) {
                        O.push(h)
                    }, L && E(L & 255), c = 0, L = R.length; c < L; c++) E(R[c])
        },
        Y = x.requestIdleCallback ? function(E) {
            requestIdleCallback(function() {
                E()
            }, {
                timeout: 4
            })
        } : x.setImmediate ? function(E) {
            setImmediate(E)
        } : function(E) {
            setTimeout(E, 0)
        },
        WO = function(E, R, c, L) {
            for (c = (L = W(E), 0); 0 < R; R--) c = c << 8 | I(E);
            D(E, L, c)
        },
        V = function(E, R, c) {
            D(R, E, c), c[QE] = 2796
        },
        y, U, N = function(E, R) {
            if ((E = E.o[R], void 0) === E) throw [f, 30, R];
            if (E.value) return E.create();
            return (E.create(5 * R * R + 27 * R + -58), E).prototype
        },
        HO = function(E, R, c, L, O, J) {
            if (!R.h) {
                R.T++;
                try {
                    for (O = (J = (c = R.s, void 0), 0); --E;) try {
                        if ((L = void 0, R).W) J = KU(R.W, R);
                        else {
                            if (O = N(R, 260), O >= c) break;
                            J = N(R, (D(R, 63, O), L = W(R), L))
                        }
                        G((J && J[yE] & 2048 ? J(R, E) : b(R, 0, [f, 21, L]), E), R, false, false)
                    } catch (h) {
                        N(R, 207) ? b(R, 22, h) : D(R, 207, h)
                    }
                    if (!E) {
                        if (R.bG) {
                            HO((R.T--, 188885615751), R);
                            return
                        }
                        b(R, 0, [f, 33])
                    }
                } catch (h) {
                    try {
                        b(R, 22, h)
                    } catch (S) {
                        l(S, R)
                    }
                }
                R.T--
            }
        },
        N0 = function(E, R, c, L, O, J) {
            for (c = (O = E[gm] || {}, R = W(E), O.El = W(E), O.D = [], J = E.A == E ? (I(E) | 0) - 1 : 1, L = W(E), 0); c < J; c++) O.D.push(W(E));
            for (O.oe = N(E, L); J--;) O.D[J] = N(E, O.D[J]);
            return O.R = N(E, R), O
        },
        KU = function(E, R) {
            return (E = E.create().shift(), R).W.create().length || R.Z.create().length || (R.Z = void 0, R.W = void 0), E
        },
        u = {
            passive: true,
            capture: true
        },
        gm = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        BO = (m.prototype.bG = !(m.prototype.J = "toString", 1), []),
        f = (m.prototype.mf = (m.prototype.Vp = void 0, void 0), {}),
        M = [],
        m4 = [],
        F = [],
        yE = [],
        QE = [],
        P = [],
        C = [],
        Y1 = ((iN, Z, Sy, Xf, m.prototype).U = "create", U = m.prototype, U.nz = function(E, R, c, L, O, J) {
            for (O = (c = 0, []), J = 0; J < E.length; J++)
                for (c += R, L = L << R | E[J]; 7 < c;) c -= 8, O.push(L >> c & 255);
            return O
        }, U.DX = function(E, R, c, L, O) {
            for (L = O = 0; L < E.length; L++) O += E.charCodeAt(L), O += O << 10, O ^= O >> 6;
            return (O = (E = (O += O << 3, O ^= O >> 11, O + (O << 15) >>> 0), new Number(E & (1 << R) - 1)), O)[0] = (E >>> R) % c, O
        }, void 0),
        g = f.constructor;
    (((U.K = (window.performance || {}).now ? function() {
        return this.Kz + window.performance.now()
    } : function() {
        return +new Date
    }, U.th = (U.dC = function() {
        return Math.floor(this.Y + (this.K() - this.I))
    }, function() {
        return Math.floor(this.K())
    }), U).SG = function(E, R, c) {
        return E ^ (R ^= R << 13, R ^= R >> 17, (R = (R ^ R << 5) & c) || (R = 1), R)
    }, U).u = function(E, R, c, L, O) {
        if (c = "array" === t_(c) ? c : [c], this.h) E(this.h);
        else try {
            O = [], L = !this.j.length, K([F, O, c], this), K([P, E, O], this), R && !L || a(R, true, this)
        } catch (J) {
            l(J, this), E(this.h)
        }
    }, m.prototype).V = function(E, R) {
        return R = (Y1 = (E = {}, function() {
                return R == E ? -58 : -12
            }), {}),
            function(c, L, O, J, h, S, q, r, A, n, z, T, v, w, p) {
                R = (n = R, E);
                try {
                    if (S = c[0], S == M) {
                        z = c[1];
                        try {
                            for (h = (T = (p = [], atob(z)), v = 0); v < T.length; v++) A = T.charCodeAt(v), 255 < A && (p[h++] = A & 255, A >>= 8), p[h++] = A;
                            D(this, (this.s = (this.F = p, this.F.length) << 3, 174), [0, 0, 0])
                        } catch (H) {
                            b(this, 17, H);
                            return
                        }
                        HO(8001, this)
                    } else if (S == F) c[1].push(N(this, 139).length, N(this, 115).length, N(this, 408), N(this, 279).length), D(this, 446, c[2]), this.o[479] && o4(8001, N(this, 479), this);
                    else {
                        if (S == P) {
                            this.A = (J = (O = X(((p = c[2], N(this, 139).length) | 0) + 2, 2), this.A), this);
                            try {
                                r = N(this, 108), 0 < r.length && B(139, X(r.length, 2).concat(r), this, 10), B(139, X(this.C, 1), this, 109), B(139, X(this[P].length, 1), this), T = 0, T += N(this, 278) & 2047, T -= (N(this, 139).length | 0) + 5, w = N(this, 279), 4 < w.length && (T -= (w.length | 0) + 3), 0 < T && B(139, X(T, 2).concat(Z(T)), this, 15), 4 < w.length && B(139, X(w.length, 2).concat(w), this, 156)
                            } finally {
                                this.A = J
                            }
                            if (((h = Z(2).concat(N(this, 139)), h)[1] = h[0] ^ 6, h)[3] = h[1] ^ O[0], h[4] = h[1] ^ O[1], L = this.jG(h)) L = "!" + L;
                            else
                                for (L = "", T = 0; T < h.length; T++) q = h[T][this.J](16), 1 == q.length && (q = "0" + q), L += q;
                            return N((D(this, 408, (N(this, (N(this, (v = L, 139)).length = p.shift(), 115)).length = p.shift(), p.shift())), this), 279).length = p.shift(), v
                        }
                        if (S == m4) o4(c[2], c[1], this);
                        else if (S == C) return o4(8001, c[1], this)
                    }
                } finally {
                    R = n
                }
            }
    }();
    var ey, D8 = (m.prototype.rC = ((m.prototype.jG = function(E, R, c, L) {
            if (c = window.btoa) {
                for (L = 0, R = ""; L < E.length; L += 8192) R += String.fromCharCode.apply(null, E.slice(L, L + 8192));
                E = c(R).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else E = void 0;
            return E
        }, m.prototype).xt = 0, 0), m.prototype[BO] = [0, 0, 1, 1, 0, 1, 1], /./),
        x1 = M.pop.bind(m.prototype[F]),
        lN = function(E, R) {
            return (R = pU()) && 1 === E.eval(R.createScript("1")) ? function(c) {
                return R.createScript(c)
            } : function(c) {
                return "" + c
            }
        }(((ey = (D8[m.prototype.J] = x1, wm(m.prototype.U, {get: x1
        })), m).prototype.G$ = void 0, x));
    (40 < (y = x.botguard || (x.botguard = {}), y.m) || (y.m = 41, y.bg = J_, y.a = sI), y).ABO_ = function(E, R, c) {
        return [(c = new m(E, R), function(L) {
            return q0(c, L)
        })]
    };
}).call(this);
                                    

#5 JavaScript::Eval (size: 22, repeated: 1) - SHA256: d651a2902f113132877a12117727707b1031e8f12615f8a3a0ad138ea5eb79ea

                                        0,
function(J) {
    WO(J, 2)
}
                                    

#6 JavaScript::Eval (size: 12692, repeated: 1) - SHA256: 61c81cae7db6d305548c20ca381e43767d3d66bfc370bfd99caa76ea59da9439

                                        // API callback
jQuery18305131085546952264_1664422541392({
    "version": "1.0",
    "encoding": "UTF-8",
    "feed": {
        "xmlns": "http://www.w3.org/2005/Atom",
        "xmlns$openSearch": "http://a9.com/-/spec/opensearchrss/1.0/",
        "xmlns$blogger": "http://schemas.google.com/blogger/2008",
        "xmlns$georss": "http://www.georss.org/georss",
        "xmlns$gd": "http://schemas.google.com/g/2005",
        "xmlns$thr": "http://purl.org/syndication/thread/1.0",
        "id": {
            "$t": "tag:blogger.com,1999:blog-3754588090277075421"
        },
        "updated": {
            "$t": "2022-08-17T09:59:18.478+08:00"
        },
        "category": [{
            "term": "semasa"
        }, {
            "term": "national"
        }, {
            "term": "wtf"
        }, {
            "term": "Hiburan"
        }, {
            "term": "Wanita"
        }, {
            "term": "Pelik"
        }, {
            "term": "sexy"
        }, {
            "term": "Informasi"
        }, {
            "term": "serius"
        }, {
            "term": "cool"
        }, {
            "term": "luar negeri"
        }, {
            "term": "advertorial"
        }, {
            "term": "sukan"
        }, {
            "term": "Berita Sensasi"
        }, {
            "term": "Politik"
        }, {
            "term": "Bekir"
        }, {
            "term": "Blogger Area"
        }, {
            "term": "Gadjet"
        }, {
            "term": "Johan As'ari"
        }, {
            "term": "Lawak"
        }, {
            "term": "artis"
        }, {
            "term": "mahkamah"
        }, {
            "term": "tuan bloger areal"
        }, {
            "term": "1MWER"
        }, {
            "term": "Al Zehra"
        }, {
            "term": "Fasha Sandha"
        }, {
            "term": "Ferrari"
        }, {
            "term": "Global"
        }, {
            "term": "Gosip"
        }, {
            "term": "Infomasi"
        }, {
            "term": "Kaka Azraf"
        }, {
            "term": "Kontroversi"
        }, {
            "term": "Lana Nordin."
        }, {
            "term": "MH370"
        }, {
            "term": "Peluk Anjing"
        }, {
            "term": "Piala Dunia"
        }, {
            "term": "Ronaldo"
        }, {
            "term": "Zizan Razak"
        }, {
            "term": "artikel"
        }, {
            "term": "bisnes"
        }, {
            "term": "ekonomi"
        }, {
            "term": "ekspedisi"
        }, {
            "term": "info grafik"
        }, {
            "term": "omg"
        }, {
            "term": "sadis"
        }, {
            "term": "sejarah islam"
        }, {
            "term": "sukan dalam negeri"
        }],
        "title": {
            "type": "text",
            "$t": "MacamLawakKot"
        },
        "subtitle": {
            "type": "html",
            "$t": ""
        },
        "link": [{
            "rel": "http://schemas.google.com/g/2005#feed",
            "type": "application/atom+xml",
            "href": "http:\/\/macamlawak.blogspot.com\/feeds\/posts\/summary"
        }, {
            "rel": "self",
            "type": "application/atom+xml",
            "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/summary?alt=json-in-script\u0026max-results=5\u0026orderby=published"
        }, {
            "rel": "alternate",
            "type": "text/html",
            "href": "http:\/\/macamlawak.blogspot.com\/"
        }, {
            "rel": "hub",
            "href": "http://pubsubhubbub.appspot.com/"
        }, {
            "rel": "next",
            "type": "application/atom+xml",
            "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/summary?alt=json-in-script\u0026start-index=6\u0026max-results=5\u0026orderby=published"
        }],
        "author": [{
            "name": {
                "$t": "Anonymous"
            },
            "uri": {
                "$t": "http:\/\/www.blogger.com\/profile\/04354078215361542859"
            },
            "email": {
                "$t": "noreply@blogger.com"
            },
            "gd$image": {
                "rel": "http://schemas.google.com/g/2005#thumbnail",
                "width": "16",
                "height": "16",
                "src": "https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"
            }
        }],
        "generator": {
            "version": "7.00",
            "uri": "http://www.blogger.com",
            "$t": "Blogger"
        },
        "openSearch$totalResults": {
            "$t": "229"
        },
        "openSearch$startIndex": {
            "$t": "1"
        },
        "openSearch$itemsPerPage": {
            "$t": "5"
        },
        "entry": [{
            "id": {
                "$t": "tag:blogger.com,1999:blog-3754588090277075421.post-8162437718253028930"
            },
            "published": {
                "$t": "2018-01-31T23:09:00.000+08:00"
            },
            "updated": {
                "$t": "2018-01-31T23:09:52.383+08:00"
            },
            "category": [{
                "scheme": "http://www.blogger.com/atom/ns#",
                "term": "artis"
            }],
            "title": {
                "type": "text",
                "$t": "Penangan Ariana Rose"
            },
            "summary": {
                "type": "text",
                "$t": "\n\nNINA FARZUIN MD SHAROM, FOTO : SUHAIZUL IZHAR\n\n14 Februari 2014\n\n\n\n\n�WATAK sebagai seorang Muslim yang saya bawa menerusi drama ini hanyalah sekadar lakonan semata-mata,� kata aktor kacak, Keith Foo mengenai dakwaan lakonannya menerusi drama nombor satu, Ariana Rose, mempersendakan agama Islam.\n\nMenjelaskan lebih lanjut mengenai perkara itu, Keith akui bersyukur kerana diberi peluang untuk "
            },
            "link": [{
                "rel": "replies",
                "type": "application/atom+xml",
                "href": "http:\/\/macamlawak.blogspot.com\/feeds\/8162437718253028930\/comments\/default",
                "title": "Post Comments"
            }, {
                "rel": "replies",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2018\/01\/penangan-ariana-rose.html#comment-form",
                "title": "1 Comments"
            }, {
                "rel": "edit",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/8162437718253028930"
            }, {
                "rel": "self",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/8162437718253028930"
            }, {
                "rel": "alternate",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2018\/01\/penangan-ariana-rose.html",
                "title": "Penangan Ariana Rose"
            }],
            "author": [{
                "name": {
                    "$t": "Anonymous"
                },
                "uri": {
                    "$t": "http:\/\/www.blogger.com\/profile\/04354078215361542859"
                },
                "email": {
                    "$t": "noreply@blogger.com"
                },
                "gd$image": {
                    "rel": "http://schemas.google.com/g/2005#thumbnail",
                    "width": "16",
                    "height": "16",
                    "src": "https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"
                }
            }],
            "thr$total": {
                "$t": "1"
            }
        }, {
            "id": {
                "$t": "tag:blogger.com,1999:blog-3754588090277075421.post-7086842701088829733"
            },
            "published": {
                "$t": "2017-01-14T11:43:00.000+08:00"
            },
            "updated": {
                "$t": "2017-01-14T11:43:50.330+08:00"
            },
            "category": [{
                "scheme": "http://www.blogger.com/atom/ns#",
                "term": "Hiburan"
            }],
            "title": {
                "type": "text",
                "$t": "Aksi Panas Neelofa Skirt Pendek vs Bertudung"
            },
            "summary": {
                "type": "text",
                "$t": "\n\nPastinya tika ini ramai yang sudah mengenali Neelofa, iaitu seorang pelakon yang begitu meningkat naik namanya dipersada seni tanahair. Tahukah anda Nama Pelakon Neelofa telah menaikkan laman blog Isu Hangat secara mendadak. Sebanyak 35325 uniq visitor telah hit Blog Gossip Artis Malaysia semenjak posting tersebut dihasilkan. Nampaknya nama Neelofa telah menjadi keyword yang panas sehingga ke "
            },
            "link": [{
                "rel": "replies",
                "type": "application/atom+xml",
                "href": "http:\/\/macamlawak.blogspot.com\/feeds\/7086842701088829733\/comments\/default",
                "title": "Post Comments"
            }, {
                "rel": "replies",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2017\/01\/aksi-panas-neelofa-skirt-pendek-vs.html#comment-form",
                "title": "2 Comments"
            }, {
                "rel": "edit",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/7086842701088829733"
            }, {
                "rel": "self",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/7086842701088829733"
            }, {
                "rel": "alternate",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2017\/01\/aksi-panas-neelofa-skirt-pendek-vs.html",
                "title": "Aksi Panas Neelofa Skirt Pendek vs Bertudung"
            }],
            "author": [{
                "name": {
                    "$t": "Anonymous"
                },
                "uri": {
                    "$t": "http:\/\/www.blogger.com\/profile\/04354078215361542859"
                },
                "email": {
                    "$t": "noreply@blogger.com"
                },
                "gd$image": {
                    "rel": "http://schemas.google.com/g/2005#thumbnail",
                    "width": "16",
                    "height": "16",
                    "src": "https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"
                }
            }],
            "media$thumbnail": {
                "xmlns$media": "http://search.yahoo.com/mrss/",
                "url": "https:\/\/4.bp.blogspot.com\/-B6j6rvYGZNU\/T5j286c20BI\/AAAAAAAAGE0\/uPHp3J2cBLw\/s72-c\/neelofa-seksi.jpg",
                "height": "72",
                "width": "72"
            },
            "thr$total": {
                "$t": "2"
            }
        }, {
            "id": {
                "$t": "tag:blogger.com,1999:blog-3754588090277075421.post-2196652329475886855"
            },
            "published": {
                "$t": "2017-01-14T11:41:00.000+08:00"
            },
            "updated": {
                "$t": "2017-01-14T11:41:43.826+08:00"
            },
            "category": [{
                "scheme": "http://www.blogger.com/atom/ns#",
                "term": "Hiburan"
            }],
            "title": {
                "type": "text",
                "$t": "GAMBAR BOGEL SELENA GOMEZ DI FACEBOOK TERSEBAR |"
            },
            "summary": {
                "type": "text",
                "$t": "\n\nKebelangkangan ini pencarian gambar Selena Gomez telah mendapat hit yang tinggi, apabila gambar bogel artis tersebut telah tersebar di Internet. Gambar Remaja popular ini, Khabarnya telah diambil, dicuri, dirembat oleh FANnya sendiri dan disebarkan diatas tujuan yang tidak mendapat sebarang keuntungan.\n\nGambar tersebut menunjukkan aksi Selena Gomez berposing bahagian buah dadanya dan kawasan "
            },
            "link": [{
                "rel": "replies",
                "type": "application/atom+xml",
                "href": "http:\/\/macamlawak.blogspot.com\/feeds\/2196652329475886855\/comments\/default",
                "title": "Post Comments"
            }, {
                "rel": "replies",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2017\/01\/gambar-bogel-selena-gomez-di-facebook.html#comment-form",
                "title": "0 Comments"
            }, {
                "rel": "edit",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/2196652329475886855"
            }, {
                "rel": "self",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/2196652329475886855"
            }, {
                "rel": "alternate",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2017\/01\/gambar-bogel-selena-gomez-di-facebook.html",
                "title": "GAMBAR BOGEL SELENA GOMEZ DI FACEBOOK TERSEBAR |"
            }],
            "author": [{
                "name": {
                    "$t": "Anonymous"
                },
                "uri": {
                    "$t": "http:\/\/www.blogger.com\/profile\/04354078215361542859"
                },
                "email": {
                    "$t": "noreply@blogger.com"
                },
                "gd$image": {
                    "rel": "http://schemas.google.com/g/2005#thumbnail",
                    "width": "16",
                    "height": "16",
                    "src": "https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"
                }
            }],
            "media$thumbnail": {
                "xmlns$media": "http://search.yahoo.com/mrss/",
                "url": "https:\/\/2.bp.blogspot.com\/-8wYbY8ljhBY\/T6i-wkKnzRI\/AAAAAAAAGWU\/8NUBMzkxYVc\/s72-c\/salena-gomes-bogel.png",
                "height": "72",
                "width": "72"
            },
            "thr$total": {
                "$t": "0"
            }
        }, {
            "id": {
                "$t": "tag:blogger.com,1999:blog-3754588090277075421.post-5016517933094254064"
            },
            "published": {
                "$t": "2016-12-17T12:08:00.000+08:00"
            },
            "updated": {
                "$t": "2016-12-17T12:08:43.480+08:00"
            },
            "category": [{
                "scheme": "http://www.blogger.com/atom/ns#",
                "term": "semasa"
            }],
            "title": {
                "type": "text",
                "$t": "Kongsi Gelap Melayu"
            },
            "summary": {
                "type": "text",
                "$t": "\n\n\n\n\nRamai yang menganggap bahawa kongsi gelap atau pertubuhan rahsia dikalangan orang Melayu hanya bermula apabila orang-orang Melayu menyertai kongsi gelap Cina yang sedia ada selepas Merdeka. Namun begitu ada catatan sejarah yang menunjukkan bahawa orang-orang Melayu telah mempunyai pertubuhan rahsia sendiri sejak dari tahun 1850-an. Penglibatan orang-orang Melayu di dalam pertubuhan rahsia "
            },
            "link": [{
                "rel": "replies",
                "type": "application/atom+xml",
                "href": "http:\/\/macamlawak.blogspot.com\/feeds\/5016517933094254064\/comments\/default",
                "title": "Post Comments"
            }, {
                "rel": "replies",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2016\/11\/kongsi-gelap-melayu.html#comment-form",
                "title": "0 Comments"
            }, {
                "rel": "edit",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/5016517933094254064"
            }, {
                "rel": "self",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/5016517933094254064"
            }, {
                "rel": "alternate",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2016\/11\/kongsi-gelap-melayu.html",
                "title": "Kongsi Gelap Melayu"
            }],
            "author": [{
                "name": {
                    "$t": "Anonymous"
                },
                "uri": {
                    "$t": "http:\/\/www.blogger.com\/profile\/04354078215361542859"
                },
                "email": {
                    "$t": "noreply@blogger.com"
                },
                "gd$image": {
                    "rel": "http://schemas.google.com/g/2005#thumbnail",
                    "width": "16",
                    "height": "16",
                    "src": "https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"
                }
            }],
            "media$thumbnail": {
                "xmlns$media": "http://search.yahoo.com/mrss/",
                "url": "https:\/\/2.bp.blogspot.com\/-IHF7vNFG2WU\/U7zn8FiYn5I\/AAAAAAAAfZw\/6SuiRjR7aec\/s72-c\/images+(4).jpg",
                "height": "72",
                "width": "72"
            },
            "thr$total": {
                "$t": "0"
            }
        }, {
            "id": {
                "$t": "tag:blogger.com,1999:blog-3754588090277075421.post-9166060978246711730"
            },
            "published": {
                "$t": "2016-11-18T21:40:00.000+08:00"
            },
            "updated": {
                "$t": "2016-11-18T21:40:10.602+08:00"
            },
            "category": [{
                "scheme": "http://www.blogger.com/atom/ns#",
                "term": "national"
            }],
            "title": {
                "type": "text",
                "$t": "Misteri pokok petai menangis"
            },
            "summary": {
                "type": "text",
                "$t": "\n\n\nHAZELEN LIANA KAMARUDIN\n\n11 Februari 2014\n\n\n\n\n\n\n\n\nPASIR MAS - Sebatang pokok petai yang didakwa mengeluarkan bunyi seakan-akan tangisan kanak-kanak menggemparkan lebih 300 penduduk di Kampung Binjai, Bunut Susu di sini.\n\nPokok setinggi 10 meter itu yang terletak di laluan utama kampung berkenaan turut didakwa mengeluarkan air seolah-olah air mata.\n\nPenduduk Kampung, Abdul Razak Manaf, 57, "
            },
            "link": [{
                "rel": "replies",
                "type": "application/atom+xml",
                "href": "http:\/\/macamlawak.blogspot.com\/feeds\/9166060978246711730\/comments\/default",
                "title": "Post Comments"
            }, {
                "rel": "replies",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2016\/11\/misteri-pokok-petai-menangis.html#comment-form",
                "title": "0 Comments"
            }, {
                "rel": "edit",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/9166060978246711730"
            }, {
                "rel": "self",
                "type": "application/atom+xml",
                "href": "http:\/\/www.blogger.com\/feeds\/3754588090277075421\/posts\/default\/9166060978246711730"
            }, {
                "rel": "alternate",
                "type": "text/html",
                "href": "http:\/\/macamlawak.blogspot.com\/2016\/11\/misteri-pokok-petai-menangis.html",
                "title": "Misteri pokok petai menangis"
            }],
            "author": [{
                "name": {
                    "$t": "Anonymous"
                },
                "uri": {
                    "$t": "http:\/\/www.blogger.com\/profile\/04354078215361542859"
                },
                "email": {
                    "$t": "noreply@blogger.com"
                },
                "gd$image": {
                    "rel": "http://schemas.google.com/g/2005#thumbnail",
                    "width": "16",
                    "height": "16",
                    "src": "https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"
                }
            }],
            "thr$total": {
                "$t": "0"
            }
        }]
    }
});
                                    

Executed Writes (6)

#1 JavaScript::Write (size: 28, repeated: 1) - SHA256: a23d6073a514912248e913edf4dcf92514d264772a6cd09dd1b36640474b7128

                                        < div id = 'nuffnang_ss' > < /div>
                                    

#2 JavaScript::Write (size: 363, repeated: 1) - SHA256: 79a53be023582a8affa7e8fd2869ac5691271ec15d922738ef24163853aa071f

                                        < iframe src = "http://ylx-1.com/bnr_xload.php?section=General&pub=636673&format=300x250&ga=g&xt=166442254459926&xtt=2001135"
width = "300"
height = "250"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
sandbox = "allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts"
style = "width:300px !important;height:250px !important;" > < /iframe>
                                    

#3 JavaScript::Write (size: 541, repeated: 1) - SHA256: 960e8df1bd98a598937f23bc817f66594f6505077b30ebe8064f9d2fb9b21318

                                        < iframe id = "widgeo_trackwidget_iframe"
src = "//www.widgeo.net/geocompteur/trackwidget_html.php?id=1410487131622&nostats=0&view=http%3A%2F%2Fmacamlawak.blogspot.com%2F2014%2F01%2Fbayi-ditemui-mati-dalam-mangkuk-tanda.html&title=Bayi%20Ditemui%20Mati%20Dalam%20Mangkuk%20Tanda%20Hospital%20-%20MacamLawakKot&ref=&colorborder=%23dddddd&colorbg1=%23ffffff&colorbg2=%23f9f9f9&colortxt=%23666666&colorlink1=%23666666&colorlink2=%230066ff&widget_w=160&widget_h=634&param_Storage=yes"
width = "160"
height = "634"
frameborder = "0"
scrolling = "no" > < /iframe>
                                    

#4 JavaScript::Write (size: 118, repeated: 1) - SHA256: cc8ae732e940c299df46972106032f8a0e42fe7ac010dba9148acfcab7d423d3

                                        < iframe src = "https://www.widgeo.net/hitparade.php?pagexiti=trackwidget"
width = "0"
height = "0"
frameborder = "0" > < /iframe>
                                    

#5 JavaScript::Write (size: 4, repeated: 1) - SHA256: b1ab1e892617f210425f658cf1d361b5489028c8771b56d845fe1c62c1fbc8b0

                                        2022
                                    

#6 JavaScript::Write (size: 805, repeated: 1) - SHA256: 6baea6a4c1045e5bb691e5a4cabe33bc7cb1588dab76c56640ecc508c4005baf

                                        < iframe width = "300"
height = "250"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
sandbox = "allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts"
src = "//ebaaa.xyz/148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCjjrArdArdCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_85448&adApiR=loaded_string_7258435b0bce9d250429df012c0426f88d0bd_2633299_1664422544.5247_50913&capSettings=eWx4LTEuY29tfDUwMDAwMHwyNHw1MTg1Ng==&adApiR=loaded_string_7258435b0bce9d250429df012c0426f88d0bd_2633299_1664422544.5247_50913&refferer=3362106174_aHR0cDovL21hY2FtbGF3YWsuYmxvZ3Nwb3QuY29tLw==&width=300&height=250&yxDom=eWx4LTEuY29t_d2e782c6bee242762e705a45bd0be41c&randomA=1245864101763&realRef=WW04RXo1aStzQlhlZVdVc01RSDlETzNJd1VxRXlHV3N4cnVzUkc4VFZrND0=" > < /iframe>
                                    


HTTP Transactions (156)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 03:15:49 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z-ML6hIJXgUvaMrHeWSYMR6OBMBDLELx2fNsqXOm2JHO4m3j3iSUIw==
Age: 1194


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12709
Expires: Thu, 29 Sep 2022 07:07:32 GMT
Date: Thu, 29 Sep 2022 03:35:43 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yBI_zoHFoOg0GCrH4ybQELBvruXZ0iZVSpEbd0B-WdCbPllRxZBu2g==
age: 79637
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 29 Sep 2022 03:35:43 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 29 Sep 2022 03:29:33 GMT
Expires: Thu, 29 Sep 2022 03:36:29 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: F9Sj0VDhlyT9Q1gSctzZGfS6RyvZwvTZwYVu1itrRsQkyeujLmD3Mw==
Age: 370


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /css?family=Droid+Sans|BenchNine HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 29 Sep 2022 03:35:43 GMT
Date: Thu, 29 Sep 2022 03:35:43 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   387
Md5:    8b6f85a2197a9a728afdd69caeab445c
Sha1:   585da1b7925202ea9e8ffc97d27bbca85cfa394a
Sha256: 336a6969fd14ae199beeada1a339cb913324bd397bd5c86eb77244a9fbda1d5b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 981
Cache-Control: 'max-age=158059'
Date: Thu, 29 Sep 2022 03:35:43 GMT
Last-Modified: Thu, 29 Sep 2022 03:19:22 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /2014/01/bayi-ditemui-mati-dalam-mangkuk-tanda.html HTTP/1.1 
Host: macamlawak.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Thu, 29 Sep 2022 03:35:43 GMT
Date: Thu, 29 Sep 2022 03:35:43 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 17 Aug 2022 01:59:18 GMT
ETag: W/"67eb5520a28217f889f899c74c926423b522b94b1e77b2edba8f0c95a344eb35"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 35507
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15637)
Size:   35507
Md5:    75bf438c75a1cf17973063b6e059bc31
Sha1:   f329ef7c1806ccfc319fbb4a0fee13cb6617bb10
Sha256: ad00c46bd65e3ea31f2b89a5f8e8f208ef3e7b61e5ad87f6e6f2401989726a9b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.170
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 06:15:30 GMT
expires: Sun, 24 Sep 2023 06:15:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 422414
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33593
Md5:    a54a444f20643b131117dc2112cca05f
Sha1:   074964746b12ff1d30f7656310d6154ae1cc98b5
Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: macamlawak.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/2014/01/bayi-ditemui-mati-dalam-mangkuk-tanda.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Thu, 06 Oct 2022 03:35:44 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 28 Sep 2022 19:56:40 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
                                        
                                            GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 21:18:29 GMT
expires: Mon, 25 Sep 2023 21:18:29 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 25 Sep 2022 17:51:02 GMT
age: 281835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30596)
Size:   6620
Md5:    6f46e6f68353c7911fe34f31faa1518f
Sha1:   ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
Sha256: 0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/4150139458-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56826
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 15:56:30 GMT
expires: Mon, 25 Sep 2023 15:56:30 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 25 Sep 2022 08:50:22 GMT
age: 301154
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56826
Md5:    b318be2224a9b91139a7a4b41f2e4b6e
Sha1:   4bcae447ce5bb3cb36a74745bcca9b72ba419c9f
Sha256: bc5c92978c40e36f3da25045761d139de3a8a333c5290ccd233273af73bd7f4b
                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 05:11:14 GMT
expires: Sun, 02 Oct 2022 05:11:14 GMT
cache-control: public, max-age=604800
last-modified: Sat, 24 Sep 2022 17:50:40 GMT
age: 339870
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-MWk2N3DU0x4/Xiv6maZ54sI/AAAAAAAAZK8/W4m3WVFenJYOAz3T0EN4rxgrZmZnby1mQCLcBGAsYHQ/s72-c/FB_IMG_1579940468844.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="FB_IMG_1579940468844.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4524
x-xss-protection: 0
date: Thu, 29 Sep 2022 02:32:31 GMT
expires: Mon, 26 Sep 2022 03:00:01 GMT
cache-control: public, max-age=86400, no-transform
age: 3793
etag: "v64b0"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4524
Md5:    9b7344f5521aa04d976b2cfad6f7a8c2
Sha1:   9995760dc29120bcd34877448a305d0b4c39a1b3
Sha256: 917b7d172e92722ee272dd4344a6a958c5a5c5d283087f0b0da4e3232d7de22a
                                        
                                            GET /-mGNR6tLHFCE/YQ0-fzhjV_I/AAAAAAAAv6c/pSfEJwqD0SswKaPFK78Qb5dNME-n7H1mACLcBGAsYHQ/s72-w400-h400-c/p6.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="p6.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4283
x-xss-protection: 0
date: Thu, 29 Sep 2022 02:32:31 GMT
expires: Sat, 24 Sep 2022 06:11:37 GMT
cache-control: public, max-age=86400, no-transform
age: 3793
etag: "vbfa8"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4283
Md5:    4969f55f38298ce8b64e50c7256162d4
Sha1:   8cfd6f1939b1d189410c894d704fd2f554e12a62
Sha256: abf3a18c7179167981435df2a623974d4b8de806ba04a0148d95a4fdbc290873
                                        
                                            GET /-Kgvh0R8fVIs/YRqVtw2ZDyI/AAAAAAAAJCU/8Z8KWhYeT60OX5MV6EX71NxLUv-z0TbawCLcBGAsYHQ/s72-c/jatuh-kapalterbang.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/png
                                        
access-control-expose-headers: Content-Length
etag: "v2426"
expires: Fri, 30 Sep 2022 03:35:44 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="jatuh-kapalterbang.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 29 Sep 2022 03:35:44 GMT
server: fife
content-length: 4695
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Size:   4695
Md5:    914cb50b25dc47e3ed42f95d23441c63
Sha1:   ef24e0d012ecf092bac18441337a9e6c991c0c82
Sha256: 9e959670380178206298ea5a13c8c80d9393ba7cf3a65146b665e92380ba8777
                                        
                                            GET /banner.php?section=General&pub=636673&format=300x250&ga=g HTTP/1.1 
Host: ylx-1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         185.66.200.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 29 Sep 2022 03:35:44 GMT
Last-Modified: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet


--- Additional Info ---
Magic:  ASCII text, with very long lines (428), with no line terminators
Size:   428
Md5:    41adf7c5f19e0f5f32a36a633c69f0e2
Sha1:   659d458191212fe46c03e5e966b9f1b24645ac04
Sha256: dc7c7a4375526625d8970bb2749d0938834d894025774b65d70358f3f90317c2
                                        
                                            GET /layer.php?section=General&pub=636673&ga=g&show=1&fp HTTP/1.1 
Host: ylx-4.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         185.66.200.221
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive

                                        
                                            GET /-gwsFvgzCBDE/UC5jBenZUoI/AAAAAAAACLU/xlY3lJEl2IY/s1600/PhoXo2.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="PhoXo2.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1610
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Fri, 02 Sep 2022 14:21:17 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v8b5"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 100 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   1610
Md5:    fdb7528e7ccebcfe1daea52aa0195bd6
Sha1:   caa9b43d3056743538e12cb11a7320f9216712ea
Sha256: 08ee145d75eed8be290285f1a8b9fd40b9b8dc029ad10cc6283945b536270506
                                        
                                            GET /bloggertemplates/js/recentposts_thumbnail.js HTTP/1.1 
Host: myblogtalk.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         35.186.238.101
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: openresty
Date: Thu, 29 Sep 2022 03:35:44 GMT
Content-Length: 2551
Last-Modified: Fri, 16 Sep 2022 16:46:12 GMT
ETag: "6324a854-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_QCijHgXs7oQKil/eIE2NqkJa/O6dsqAiRyvgXgTP1czDdgf1yj0DwE5lfC39OLIsoM6xbAB7lqEufX3RKg6ufw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400; country=NO;Path=/;Max-Age=86400; city="";Path=/;Max-Age=86400; expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Size:   2551
Md5:    41f66bb0ac50f2d851236170e7c71341
Sha1:   59bcec216302151922219b51be8ad8ab6d0b8384
Sha256: ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=3754588090277075421&zx=c492145c-1f62-4e6f-8b8c-5cd38187147f HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 29 Sep 2022 03:35:44 GMT
last-modified: Thu, 29 Sep 2022 03:35:44 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    a62e4d501434033d5d177e67d3aafdd0
Sha1:   34f7300c9ed47334cf10826d57af785321e3138b
Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
                                        
                                            GET /img/logopm.png HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         104.26.11.22
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 17:24:21 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 36682
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nwcy8PiUQ28Rlqe5tl%2FCyLYyqiMUvwciokKgmsfUjFNieWJN0PRqsPwqMX7HvXkTO5F%2BVhmUtoSQN%2B%2F%2Bo6yvnErBPrqJBVBXvdQglPL3hnTxpJGoUyUiIfWTv0IqrsMq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7521aba57c3e0af6-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   714
Md5:    3832d6b8d8c47a5cefe6561297b514f6
Sha1:   f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
Sha256: c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZH7fORYvwth29iTyYwId2A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.161.6.128
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4Ce5g98BVUqUYhGk9zljYECq91U=

                                        
                                            GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en_GB.oR8V69blT9s.es5.O/am=6gAIBA/d=1/excm=_b,_r,_tp,commentformiframeview/ed=1/dg=0/wt=2/rs=AEy-KP2xoKh9X8MCpKz1ciqbmN7WCQHeWg/m=_b,_tp,_r HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 63244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 07:31:52 GMT
expires: Thu, 28 Sep 2023 07:31:52 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 27 Sep 2022 04:11:46 GMT
age: 72232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (563)
Size:   63244
Md5:    197475492008d0acdde9ca4b2dcbad84
Sha1:   128078e33ba75ae64ac5f5d107c0e8fd79f440e9
Sha256: f650ad1e5f803830dc777b038b74f1f4d8b66a02a9b59f7bd7bd5e887129898e
                                        
                                            GET /-aBuHTgFipnc/T75UHWFsCgI/AAAAAAAAGmA/0zMFJwkFUK8/s72-c/daniele.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 404 Not Found
content-type: image/png
                                        
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 29 Sep 2022 03:35:44 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size:   1742
Md5:    58a17151a9a7dc2d32cedfff483923a8
Sha1:   a16dc81e6f06a4b14410119c5d02360276fcdc75
Sha256: f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
                                        
                                            GET /-w3iL-fZ9YvQ/T8TnrhoEpWI/AAAAAAAAGuA/qlewx_B0Y2U/s72-c/penyokong+kelantan+cium+mulut.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 404 Not Found
Content-Type: image/png
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 03:35:44 GMT
Server: fife
Content-Length: 1742
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size:   1742
Md5:    58a17151a9a7dc2d32cedfff483923a8
Sha1:   a16dc81e6f06a4b14410119c5d02360276fcdc75
Sha256: f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
                                        
                                            GET /-eOC79fOrSWk/T8RtjdiDiNI/AAAAAAAAGto/t6EY2KlwEec/s72-c/KHALID_bersama_rozita.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 404 Not Found
content-type: image/png
                                        
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 29 Sep 2022 03:35:44 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size:   1742
Md5:    58a17151a9a7dc2d32cedfff483923a8
Sha1:   a16dc81e6f06a4b14410119c5d02360276fcdc75
Sha256: f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/benchnine/v16/ahcbv8612zF4jxrwMosbUMl0.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://macamlawak.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20196
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 23 Sep 2022 08:19:33 GMT
Expires: Sat, 23 Sep 2023 08:19:33 GMT
Cache-Control: public, max-age=31536000
Age: 501371
Last-Modified: Tue, 19 Apr 2022 19:06:50 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20196, version 1.0\012- data
Size:   20196
Md5:    d056bf3055437ed0bccae4176b65336e
Sha1:   9049f5482de61d9a66806a292701787d5524fb85
Sha256: f60c3e8ac9f319f101cf1d20290469aba1eb7cdc63c64d092a02764beae55d9f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Thu, 29 Sep 2022 03:35:44 GMT
expires: Thu, 29 Sep 2022 03:35:44 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1277)
Size:   20361
Md5:    b5a31516be83fe4f962609045d824f88
Sha1:   939a49a9858bf23561279f9ca2d1941d3256c66f
Sha256: edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57995
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 07:25:39 GMT
expires: Mon, 25 Sep 2023 07:25:39 GMT
cache-control: public, max-age=31536000
age: 331805
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (580)
Size:   57995
Md5:    d70fcc84d705c565b31a5835c0938d5b
Sha1:   d28e5dc9fcc6239d67986df3205468072023d2d7
Sha256: 1d558c94793446aa6a7832dde0c39ed7d9c77fd963ffb738c460e4f7369a7f4e
                                        
                                            GET /-B6j6rvYGZNU/T5j286c20BI/AAAAAAAAGE0/uPHp3J2cBLw/s72-c/neelofa-seksi.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 404 Not Found
content-type: image/png
                                        
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 29 Sep 2022 03:35:44 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size:   1742
Md5:    58a17151a9a7dc2d32cedfff483923a8
Sha1:   a16dc81e6f06a4b14410119c5d02360276fcdc75
Sha256: f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
                                        
                                            GET /images?q=tbn:ANd9GcTnsLHwUghPKm6VmAeanNUe6YTEuqTXAkg1WqL4QFG2wctkQk44Sw HTTP/1.1 
Host: encrypted-tbn3.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.78
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 12346
date: Thu, 29 Sep 2022 03:35:44 GMT
expires: Fri, 29 Sep 2023 03:35:44 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 02 Jul 2016 07:36:38 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 229x143, components 3\012- data
Size:   12346
Md5:    5a91ff00521c9c039138078d4258cf99
Sha1:   9d3937bc37fff0bfa98daac390ff5a9bab3ff07b
Sha256: b87f3792f68189504233cf81d5d06decf0f3011b79123bdcc3299c7cfc2541f3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.98
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 28 Sep 2022 10:41:44 GMT
Expires: Wed, 12 Oct 2022 10:41:44 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Age: 60840


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /geocompteur/trackwidget.php?idec=1009871715 HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         104.26.11.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Content-Length: 2373
Connection: keep-alive
set-cookie: ville_idec=diff; expires=Thu, 06-Oct-2022 03:35:43 GMT; Max-Age=604800; path=/; domain=widgeo.net country_idec=diff; expires=Thu, 06-Oct-2022 03:35:43 GMT; Max-Age=604800; path=/; domain=widgeo.net w_js_ads_code=ok; expires=Wed, 05-Oct-2022 03:35:43 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Thu, 06 Oct 2022 03:35:43 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eCAk8%2FchWi%2BIZpuee5Ks6H3P7Xe6uJJyVIv6mk7hVGvRstgGdeTW3t5V1xFM%2Bk%2BksTX%2B4qzuq1e8wgNz17TIQ%2FcgQfGt493kyFts4wEBhQ%2FdPzylwrYaaSRLhZk1MT2s"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7521aba459aeb509-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (2149)
Size:   2373
Md5:    cbafe83972442e457a19e0f65df92c8b
Sha1:   bed10a8306cb9202d1832adbe0ab4f2a0d9358b4
Sha256: 6f07bee420a11253512b4b4051bb0e045e84eb9f856e3a9b4f50dcba3f5db335
                                        
                                            GET /-bJ5C_nwEhsY/UqsWZYAmeoI/AAAAAAAACSU/Ya1BvYYw5Is/s1600/b2uang_bayi.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v926"
Expires: Fri, 30 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="b2uang_bayi.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 03:35:44 GMT
Server: fife
Content-Length: 30464
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 292x320, components 3\012- data
Size:   30464
Md5:    87a8cef77e27da02aa8abfdf5be9bc57
Sha1:   ee6aa267e0fa7b4f33862b89a12b42f1229e535b
Sha256: 726a188f18df5bae8d30795a2cca49164f9990d32a75885c0d0db3f07de02910
                                        
                                            GET /images/aff/pub_7nc2s6.jpg HTTP/1.1 
Host: yllix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.66.200.224
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 29 Sep 2022 03:35:44 GMT
content-length: 74258
last-modified: Sun, 17 Apr 2016 08:55:25 GMT
etag: "57134f7d-12212"
expires: Sat, 29 Oct 2022 03:35:44 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=250, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=300], baseline, precision 8, 300x250, components 3\012- data
Size:   74258
Md5:    7a19e68cca2f5d28d919bb6db6faa8f0
Sha1:   877535b8821515cf43269fc2dfdcde54b5ec339f
Sha256: d0af19a5198d12ead1c743bd66b969baef0a4682b8a7eb4fa05df216888da209
                                        
                                            GET /bnr_xload.php?section=General&pub=636673&format=300x250&ga=g&xt=166442254459926&xtt=2001135 HTTP/1.1 
Host: ylx-1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Upgrade-Insecure-Requests: 1

                                         
                                         185.66.200.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 29 Sep 2022 03:35:44 GMT
Last-Modified: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Set-Cookie: used_ad2633299=1; expires=Thu, 29-Sep-2022 04:00:00 GMT; Max-Age=1456; path=/; domain=ylx-1.com; secure; HttpOnly; SameSite=None total_impressions=1; expires=Thu, 29-Sep-2022 04:00:00 GMT; Max-Age=1456; path=/; domain=ylx-1.com; secure; HttpOnly; SameSite=None cpa_673873=300x250_881516516_0; expires=Sat, 29-Oct-2022 03:35:44 GMT; Max-Age=2592000; path=/; domain=ylx-1.com; secure; SameSite=None


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1335), with no line terminators
Size:   1335
Md5:    83dd7cb552cf0015e6784a15336a58ca
Sha1:   deea40efe396e8c5b2302f760e9d468be8e42b51
Sha256: c51820dcab22571ca9153bd63bf8c5a6170a6550eef491f65921b0b7325b1e26
                                        
                                            GET /-sj518Bj0E28/U95mRyuT6GI/AAAAAAAAEXY/Ftwfh8wwlZA/s72-c/10408547_10154511905900454_8487754128025911440_n.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v1177"
Expires: Fri, 30 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10408547_10154511905900454_8487754128025911440_n.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 03:35:44 GMT
Server: fife
Content-Length: 4755
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4755
Md5:    c89b3e4cc3d6462ae9580470a315791d
Sha1:   fd3be63550a4ef169863fca193012ece884df54f
Sha256: 2c694057ea793e99fb49186866251ab4e548d17a08e0230ecf3cfefb8d6c6bab
                                        
                                            GET /-OZdRvlZj1yU/U6YLPs-doII/AAAAAAAAQfw/fHoZmbGb3jE/s72-c/1.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2647
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Tue, 27 Sep 2022 03:50:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v41ff"
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2647
Md5:    9d2936e5ada19cf70ebcba407d9d9155
Sha1:   c59d9c8ef9d14b135fe15b31d9122cc9fcba58eb
Sha256: a0ecc02e048826f41bb9b5da70fa1791db5f25297f95fc15e67e2cde369a40a7
                                        
                                            GET /-eFGhGqI_nDw/U85jbQbvumI/AAAAAAAAVPg/f1IrBj85tro/s72-c/mains.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v54f9"
expires: Fri, 30 Sep 2022 03:35:44 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="mains.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 29 Sep 2022 03:35:44 GMT
server: fife
content-length: 2150
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2150
Md5:    f1a6797f91242287a33a4fbd390461c0
Sha1:   1faa0cba38f656d320b66ffd54167243c3a11b2a
Sha256: f7e3c056e77fe5a256f5fb37d6084d43b660632f34dc0a77cefa9224ffd15e64
                                        
                                            GET /-tLLm7DYhNdc/U_Lofyq_4ZI/AAAAAAAAgQI/6lfPHNN-8ow/s72-c/kanak-kanak-disembelih.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v8103"
Expires: Fri, 30 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="kanak-kanak-disembelih.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 03:35:44 GMT
Server: fife
Content-Length: 3770
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3770
Md5:    0df95f70ada2fd798ee29fd931a698f7
Sha1:   621494a4fd57382d9e3a8241c4bb456b09982ac6
Sha256: d3503b6ffe77f928919fa21e4863ccb764a0dd9fa4f8f85bd3b07daccc4f1bcc
                                        
                                            GET /-w9DFkPFl_Jc/UrhTZW9jZtI/AAAAAAAAi_E/oRPMyORB6v0/s72-c/hmkiasus_01.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v8bf2"
Expires: Fri, 30 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="hmkiasus_01.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 03:35:44 GMT
Server: fife
Content-Length: 4072
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4072
Md5:    6d57e4858ab729e9db89b4a12996c30f
Sha1:   33d340600545ca608cc05649f9de69947ecbada5
Sha256: 99998e4b1f2f6a36badeb95410638ff41f5903dae2d93330ef556d99235a115b
                                        
                                            GET /-18f7v8hpidQ/UrV2scB6TJI/AAAAAAAAAnc/I6vlD6BjErw/s72-c/Pertandingan+Membuka+8r4+Paling+Cepat+Di+Stesen+Tv+Indonesia+(edit).jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Pertandingan Membuka 8r4 Paling Cepat Di Stesen Tv Indonesia (edit).jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4047
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Tue, 27 Sep 2022 03:50:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v278"
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4047
Md5:    1a7922b370e02385ee179c6e36297225
Sha1:   c3190c9f94ad43eea3ca4ce261206b9fea758e9b
Sha256: 5fbb684a31c3623382278b03b38c773df6bfa2f1bc398f78e13bae2aaf50efac
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.110
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
date: Thu, 29 Sep 2022 03:35:44 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+816; expires=Sat, 28-Sep-2024 03:35:44 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 29 Sep 2022 03:35:44 GMT
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            GET /show.php?u40031664422544=true&ad=673873&f=300x250&a=395578&cri=0&s=NjFmYmM1ZmM1OGRlNTNhZGRlZGJkNTk3ZWQ2YjA5NjI=&u=636673&si=881516516&di=34108481&ci=16&h=6e348921c7b1b331deee3f68cea0b8f6&cc=NO&useAf=loaded_string_7258435b0bce9d250429df012c0426f88d0bd_2633299_1664422544.5247_50913&capSettings=eWx4LTEuY29tfDUwMDAwMHwyNHw1MTg1Ng==&ar=aHR0cDovL21hY2FtbGF3YWsuYmxvZ3Nwb3QuY29tLw== HTTP/1.1 
Host: ylx-1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ylx-1.com/bnr_xload.php?section=General&pub=636673&format=300x250&ga=g&xt=166442254459926&xtt=2001135
Upgrade-Insecure-Requests: 1

                                         
                                         185.66.200.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 29 Sep 2022 03:35:44 GMT
Last-Modified: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (594), with CRLF line terminators
Size:   1727
Md5:    34a50734a20828004c0ea8e7ef992297
Sha1:   0b67f0e141bd3cbf4df94415b6436e84143235dd
Sha256: 5d87bf64f1e8f133ec12509fdfbc213530e47ee442f69b1f6a76a1baf421195a
                                        
                                            GET /comment/frame/3754588090277075421?po=6161744065127095277&hl=en-GB&blogspotRpcToken=8906281 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 29 Sep 2022 03:35:44 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-P73vtVOZQaCGPjOAs-D-lg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
cross-origin-opener-policy: same-origin; report-to="BloggerCommentUi"
report-to: {"group":"BloggerCommentUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/BloggerCommentUi/external"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=Y_Lxc1b4K_Do_HOHA1Kanqehq1RFHSk0dNX85tj6ylik_j6kLUNyy9K-AImvJXBMq0zijphZVRfcSXuzLQS6cmw_Ss4pSLS8E8tLsUOzlR9JGACRPBV1P9gPlTjSZ2XuCZaN-UrkmaWb1Bgs0w9EzMWpSXaPEoSR48qMwB8i528; expires=Fri, 31-Mar-2023 03:35:44 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   41341
Md5:    ecac0de1677cff1c500dce915e7f9a01
Sha1:   8dd76c5e88a11e807c7ebbb2ff398ef4fa147df8
Sha256: 2167955150ded6b26bb35a4c9117d62b22e84576810896c47d32e0a005cef4e1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Thu, 29 Sep 2022 03:35:44 GMT
date: Thu, 29 Sep 2022 03:35:44 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 668
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1034), with no line terminators
Size:   668
Md5:    80585e7d4f1510898eeba1ae4175a6fc
Sha1:   a5a6a723aecc70bc2f23ff11d05b10838c3f557b
Sha256: c0d82c824a37384777d1493508b45b05f5286b3a8366377b43db8f0f84fc0eb8
                                        
                                            GET /geocompteur/trackwidget_html.php?id=1410487131622&nostats=0&view=http%3A%2F%2Fmacamlawak.blogspot.com%2F2014%2F01%2Fbayi-ditemui-mati-dalam-mangkuk-tanda.html&title=Bayi%20Ditemui%20Mati%20Dalam%20Mangkuk%20Tanda%20Hospital%20-%20MacamLawakKot&ref=&colorborder=%23dddddd&colorbg1=%23ffffff&colorbg2=%23f9f9f9&colortxt=%23666666&colorlink1=%23666666&colorlink2=%230066ff&widget_w=160&widget_h=634&param_Storage=yes HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Upgrade-Insecure-Requests: 1

                                         
                                         104.26.11.22
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="NOI ADM DEV COM NAV OUR STP"
set-cookie: monpays=NO; expires=Wed, 28-Dec-2022 03:35:43 GMT; Max-Age=7776000; path=/; domain=widgeo.net country_name=Norway; expires=Wed, 28-Dec-2022 03:35:43 GMT; Max-Age=7776000; path=/; domain=widgeo.net idcompteurcc_1410487131622=done; expires=Fri, 30-Sep-2022 03:35:43 GMT; Max-Age=86400; path=/ get_data_1410487131622=ok; expires=Thu, 29-Sep-2022 03:38:43 GMT; Max-Age=180; path=/; domain=widgeo.net bonus_1410487131622=577; expires=Fri, 30-Sep-2022 03:35:43 GMT; Max-Age=86400; path=/ bonus_j_1410487131622=1; expires=Thu, 29-Sep-2022 03:38:43 GMT; Max-Age=180; path=/
cache-control: public, max-age=180
expires: Thu, 29 Sep 2022 03:38:43 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e%2FYn%2B85tmQ8cKxWsJmmaD4OoDtyoT4B2K5W%2FKYVGwAJkdKdegKB7TlxWd%2BMQ1iGy291%2F1ukWWBzNFy1qEeSJjxkApT%2Ff7FlWTezZGsiVjuiX3CV1hynxc%2B%2ByinBTgKwV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7521aba80b39b509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3124)
Size:   3503
Md5:    7e96e0a7afa556449b122c22b228da14
Sha1:   3de64b0972f6a8b5d92de89e9e413c18cbf8e365
Sha256: 118171ad68283b0d0c234212556ae4425f0a7415f4899f7d025f3e42c4107460
                                        
                                            GET /bloggertemplates/js/recentposts_thumbnail.js HTTP/1.1 
Host: myblogtalk.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         35.186.238.101
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: openresty
Date: Thu, 29 Sep 2022 03:35:44 GMT
Content-Length: 2551
Last-Modified: Fri, 16 Sep 2022 16:46:37 GMT
ETag: "6324a86d-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_QCijHgXs7oQKil/eIE2NqkJa/O6dsqAiRyvgXgTP1czDdgf1yj0DwE5lfC39OLIsoM6xbAB7lqEufX3RKg6ufw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400; country=NO;Path=/;Max-Age=86400; city="";Path=/;Max-Age=86400; expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Size:   2551
Md5:    41f66bb0ac50f2d851236170e7c71341
Sha1:   59bcec216302151922219b51be8ad8ab6d0b8384
Sha256: ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
                                        
                                            GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/trackwidget_html.php?id=1410487131622&nostats=0&view=http%3A%2F%2Fmacamlawak.blogspot.com%2F2014%2F01%2Fbayi-ditemui-mati-dalam-mangkuk-tanda.html&title=Bayi%20Ditemui%20Mati%20Dalam%20Mangkuk%20Tanda%20Hospital%20-%20MacamLawakKot&ref=&colorborder=%23dddddd&colorbg1=%23ffffff&colorbg2=%23f9f9f9&colortxt=%23666666&colorlink1=%23666666&colorlink2=%230066ff&widget_w=160&widget_h=634&param_Storage=yes

                                         
                                         104.26.11.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 11:11:52 GMT
ETag: W/"633188f8-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BxSvC3lz8T5nLWd1kVolHu%2BQ%2F1vlhrXx1ezG4KAIj%2B%2FbA9UMEdC%2FUeC528yuZsGwHNCZiBymQD7Xht5D8OEIvReOQi7nYRiWe5AelB1084QP8z%2Fpg5LxylPbfrwvQ%2FAl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7521aba8ed750af6-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Sat, 01 Oct 2022 03:35:44 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (12331)
Size:   3886
Md5:    54c87b7a9007d256c837e382cab4170d
Sha1:   6c8f44204021f68596af9ae5a742c3ad1b76a6ec
Sha256: 3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1
                                        
                                            GET /geocompteur/css/tipTip.css HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/trackwidget_html.php?id=1410487131622&nostats=0&view=http%3A%2F%2Fmacamlawak.blogspot.com%2F2014%2F01%2Fbayi-ditemui-mati-dalam-mangkuk-tanda.html&title=Bayi%20Ditemui%20Mati%20Dalam%20Mangkuk%20Tanda%20Hospital%20-%20MacamLawakKot&ref=&colorborder=%23dddddd&colorbg1=%23ffffff&colorbg2=%23f9f9f9&colortxt=%23666666&colorlink1=%23666666&colorlink2=%230066ff&widget_w=160&widget_h=634&param_Storage=yes

                                         
                                         104.26.11.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=2441
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 04:12:25 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 84198
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i2EeTq2Y7vmFO2POmq2nVfhb4R%2FxnOUYlgFhJu6m%2B40fpqM7ta%2BxP9xUf4YNm3QT12p7qVEgNaemCGZyWtaCvuqq2xmCzGxXIcwiYm%2FZDTLLFbvKaj4VaExGV7YEOikL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7521aba8eb8db509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (2057), with no line terminators
Size:   593
Md5:    a747347fbc4841ea98b69cc6b9e82340
Sha1:   9ff90c2abcbd22df2a8f618400421dc0c87ee3f2
Sha256: 181311b58305877b33a71d8f6b968783df4a5be2fbc51e6e2439c6272050626d
                                        
                                            GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 22:25:55 GMT
expires: Mon, 25 Sep 2023 22:25:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
age: 277789
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (826)
Size:   158248
Md5:    db1b5789e9915e9c82f5df92e5982980
Sha1:   2e193e502995501c85f45fd89d9f83707a7f9573
Sha256: db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
                                        
                                            GET /-vskoNsBdihs/UYl9p6jAksI/AAAAAAAAI-4/AGjSDvooObE/s000/03.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="03.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 12197
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Tue, 08 Mar 2022 09:33:35 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23ef"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   12197
Md5:    b2eb20feb0cf76247b06b09fa0d9643e
Sha1:   39cfc489626188762fc83269d25fac275849b2b2
Sha256: 8258ce2affbce3c1555082bca3ff2514f2d13350b38bb3d2a67cf4147c9310e3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F53E378D2706F03AF59A3145B48096C852D7A74781AAF9EF5C1313EFBA2E3E12"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14877
Expires: Thu, 29 Sep 2022 07:43:41 GMT
Date: Thu, 29 Sep 2022 03:35:44 GMT
Connection: keep-alive

                                        
                                            GET /-Sn3E_SD_djY/UYl9qrrQiQI/AAAAAAAAI_A/_N2WJEaUfmg/s000/06.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="06.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 31605
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Mon, 06 Dec 2021 15:33:27 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23f1"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 47 x 36\012- data
Size:   31605
Md5:    de8786141e6d1977bf7e2e6de7f1576b
Sha1:   eca2cf38a29141c00223120e03ddb0266d0eae5c
Sha256: a66d397b2074119260adcf349ba9aa2d1de08ed098a6cb77c49f40e45795f9f6
                                        
                                            GET /-ULVPkGfieac/UYl9toWKMYI/AAAAAAAAI_Q/GT6gCuUl2qI/s000/02.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="02.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 7678
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23f5"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   7678
Md5:    e9cc44dc0d9d256729214bad1f2f203e
Sha1:   58090dfe6c40f94742026e6c995d1efa1528cea9
Sha256: f738a2d77df5130907ab4d6ace1233bee0766be9bfbdcffef3c4c1a789843ede
                                        
                                            GET /-EAVc16Jn4Go/UYl9ubVye3I/AAAAAAAAI_Y/xeydJxWl_o4/s000/03a.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="03a.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 10557
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Fri, 11 Mar 2022 11:40:49 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23f8"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   10557
Md5:    e0efb02c657f5cd002fe98568c94a93b
Sha1:   e79c6d48316d628653fa0f2234c85fa4fc77c261
Sha256: 25ad56a82cd57d11572d9e28d8b1ce5e02d1422d4a523d9d336adcad45e2cd0f
                                        
                                            GET /-0XzlL89lNOs/UYl9v1pHnNI/AAAAAAAAI_o/jEOrGxiOzgs/s000/05.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="05.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11864
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23fd"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   11864
Md5:    1d6914eb78b0e6ba05418a388ab0abc8
Sha1:   1af2bc2925d92c78ab617e05d95784881ef0f28f
Sha256: 0fe6fda5d85b2370a5e27820a0dc5dc2bb53fe256bbd1470d76a5f0061295ee9
                                        
                                            GET /logo_n_small.png?1480628810 HTTP/1.1 
Host: ylx-i.advertica-cdn2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ylx-1.com/

                                         
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2016 21:46:50 GMT
ETag: W/"58409a4a-631"
Expires: Sat, 29 Oct 2022 03:35:44 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  PNG image data, 16 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size:   1298
Md5:    961dcad940bcae720f8f0ead6409f9d2
Sha1:   7199f8b763df9aec9c55bad14795e2166e6b1501
Sha256: a50a9224daca3d84e35717d2c03bea4a7e9c811b2cc598078de2f9b787ed080a
                                        
                                            GET /-TGmeb01UJ_c/UYl9svtOviI/AAAAAAAAI_I/7WPXi6Jbs4I/s000/01.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="01.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 7139
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23f3"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   7139
Md5:    b24f42a157fe0fd0c0670b82cdf4ed80
Sha1:   23cd6f155ff3ccd1b972446cd9769b95d7760fb3
Sha256: 97d910d193ef3ba80d2ec9e3fcc8c3e7669420389bbfa263d484d3626ed2cfa5
                                        
                                            GET /-qZXP1UjLBrs/UYl9xXY0-uI/AAAAAAAAI_4/AW62-YHaVtQ/s000/8.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="8.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 12211
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Wed, 17 Nov 2021 07:42:37 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23ff"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   12211
Md5:    27c2fbd98af4e80cfd9a0ea066053744
Sha1:   839c502889b0a4d6e928ed211e9d201b596c26c4
Sha256: 020f931d362228610e97493a931d9b5771fe9d732c4171756ecceda2814427af
                                        
                                            GET /-62Hie_NrpyY/UYl9vIW3_jI/AAAAAAAAI_c/WHnIbytoL74/s000/04.gif HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="04.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1988
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Wed, 17 Nov 2021 18:18:55 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23f9"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 35\012- data
Size:   1988
Md5:    1b9200f411ac88d26abae6047bfb4839
Sha1:   0f583fbd1433ec2ce11d73a3a5d8d6fe6ec4afe7
Sha256: 93b826c061859ace5120ecf13154150954d1728e81964eb780fab9dbf7aedc0a
                                        
                                            GET /148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCjjrArdArdCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_85448&adApiR=loaded_string_7258435b0bce9d250429df012c0426f88d0bd_2633299_1664422544.5247_50913&capSettings=eWx4LTEuY29tfDUwMDAwMHwyNHw1MTg1Ng==&adApiR=loaded_string_7258435b0bce9d250429df012c0426f88d0bd_2633299_1664422544.5247_50913&refferer=3362106174_aHR0cDovL21hY2FtbGF3YWsuYmxvZ3Nwb3QuY29tLw==&width=300&height=250&yxDom=eWx4LTEuY29t_d2e782c6bee242762e705a45bd0be41c HTTP/1.1 
Host: ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ylx-1.com/

                                         
                                         185.66.201.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (626)
Size:   795
Md5:    e187e127e5c96bd6976fa3897c31a7d9
Sha1:   46a29b94dc796a97a1983ab206802c556ac8f072
Sha256: 5226b1da2dad260eb3bb885e8c22548ff7832d3a246f1c137df47723edb530e7
                                        
                                            GET /-eOh8-uoT-Us/UYl98QWLz1I/AAAAAAAAJBA/5liDPytF5Ec/s000/16.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="16.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11938
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2411"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   11938
Md5:    0c7de4432447b874c2b6337fe6f675fe
Sha1:   845af5f406010c1462e1da4ec9c50ac84bb5679b
Sha256: 4b401f70a2d0a9e48f2826eb0c81554a868fbe202adee608d193b68d5f5763cc
                                        
                                            GET /-gBz7DccFllo/UYl-FIxKubI/AAAAAAAAJBg/TaHmbNeQaSA/s000/21.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="21.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4771
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Wed, 17 Nov 2021 07:16:21 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2418"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   4771
Md5:    b16f3ef0d022879f521011b331f1f751
Sha1:   e3272da7a66d6ed1d275fcec3b154c8c0c34fdec
Sha256: 363e15dc2577e03ef8183224677d69d26ecaa07691d66b1c45fc0d4b7fe6b647
                                        
                                            GET /-aJrUgcokHYo/UYl9wn82PII/AAAAAAAAI_s/U3tvbU3WZHk/s000/7.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="7.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11789
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23fc"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   11789
Md5:    61493dfb3c256f6247991635d959aa36
Sha1:   a78ff4b39f9540181d37b97fab7e412948f9feb0
Sha256: f9c93ab91a81b6f010462e2d77c67e4eae52b80bab26d7046dd999914886c8df
                                        
                                            GET /aff/pub_s9c2nm.png?1480419364 HTTP/1.1 
Host: ylx-i.advertica-cdn2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ylx-1.com/

                                         
                                         185.66.200.127
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 29 Sep 2022 03:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2016 11:36:04 GMT
ETag: W/"583d6824-68a8"
Expires: Sat, 29 Oct 2022 03:35:44 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit colormap, non-interlaced\012- data
Size:   26311
Md5:    f46784dcc71c42f9406d242fede794f4
Sha1:   79269678d6fb002908aae6c5616ddd2f94f9691a
Sha256: 0df87463e7f01f1abbb4144ed58c36de50d1fdb3bc56046e0976ab642ed2f1bc
                                        
                                            GET /--KSLxLC05kc/UYl9xz1LoDI/AAAAAAAAJAA/HUm36rjGAgA/s000/09.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="09.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 12733
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Sun, 17 Jul 2022 04:39:41 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2401"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   12733
Md5:    aafd50d72e0f92a19f2e043a59d58f3c
Sha1:   8b565b7610a01b1bf5c1bd58fb94070c4fd1a085
Sha256: d3b1a956d913c0017a5fa30b739d63dc7966fdc00c177626537a2a0b160f5fb7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "81B247E69EAB61049C8F66C7BA70DE6C7FA0137D6F35816B31F0166D4F818654"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3127
Expires: Thu, 29 Sep 2022 04:27:51 GMT
Date: Thu, 29 Sep 2022 03:35:44 GMT
Connection: keep-alive

                                        
                                            GET /-g8uarPGC1OM/UYl99qymAPI/AAAAAAAAJBQ/fi62Dv1LWWY/s000/18.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="18.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2259
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:44 GMT
Expires: Mon, 26 Sep 2022 20:27:35 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2415"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   2259
Md5:    10bb241722f4180ff2149995133249c7
Sha1:   ecdba88ef548a01c63e04f1d6385f933904fcffe
Sha256: 1d7297ae79305a59aa464c72240610364da0e4424c57e5e4539644948e48e978
                                        
                                            GET /-hA0HV7ElBkQ/UYl-PEKf8bI/AAAAAAAAJB0/jYLk8xsqIco/s000/25.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="25.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2127
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2436"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   2127
Md5:    bfb5c4ad3077b6067c24d727e85e4d55
Sha1:   683a3c57084227c6f3a94d1feda97a63eb8c902d
Sha256: be82914e30dc50b25809b031abc0ebcb7c69fecf69b2c0848f81d8aedae88812
                                        
                                            GET /-zI0pi-UlZAI/UYl94UjJ96I/AAAAAAAAJAY/dpqr_RlUI4A/s000/11.gif HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="11.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11140
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Sun, 08 May 2022 18:57:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2407"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   11140
Md5:    2754d2f6cd3621d09343cff0f3b3a6ef
Sha1:   0466a0996870b85bcb4de07a6028efdded023092
Sha256: 8bbd1eff8b018e50fa1189dc220a56bb0e7906ccc861bd59b0a57a6fecf8d0a1
                                        
                                            GET /-XCXdaCYaOGE/T2WEcmd15EI/AAAAAAAACbQ/Z5UyZCuX4Xo/s36/20.gif HTTP/1.1 
Host: lh5.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="20.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 11225
x-xss-protection: 0
date: Thu, 29 Sep 2022 02:06:50 GMT
expires: Sat, 04 Jun 2022 09:13:20 GMT
cache-control: public, max-age=86400, no-transform
age: 5335
etag: "v10b8"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   11225
Md5:    ab3f2cda071a82b6dbc067404699fb84
Sha1:   f1aa69bdc7f29e7737413a82be8b97d93b15a6eb
Sha256: 4d3958cb51bc42b95a3257d96b16acca6e53dbcf32847704b1b441f9a7651c93
                                        
                                            GET /-7UID-hPDOdg/UYl946HKGAI/AAAAAAAAJAg/CkIHp704FOk/s000/12.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="12.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 8611
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Sun, 11 Sep 2022 06:09:13 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2409"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   8611
Md5:    4b4f6e15739d67050873ca3f1a65786e
Sha1:   f42e1c5e677d6da97dbfbd32161fbe87202a27fd
Sha256: ba67fba16537316a624f0f8344d77524e19c2df5f85b28aa86b702c5cf1285e1
                                        
                                            GET /-nkyzLkHUPg8/T2WEYdFqFxI/AAAAAAAACaQ/Mu1yPq91yuc/s36/10.gif HTTP/1.1 
Host: lh5.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="10.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6893
x-xss-protection: 0
date: Thu, 29 Sep 2022 02:06:50 GMT
expires: Sun, 08 May 2022 07:10:40 GMT
cache-control: public, max-age=86400, no-transform
age: 5335
etag: "v10fa"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   6893
Md5:    c3f6f37a1facf33abac47f1c5d5cedb2
Sha1:   34c323bc28abe8bb44598b94f56325827bbda75e
Sha256: 0ddd89667f12408f11369f673d035c1e9c329dbea848bffe05cca4d8a3b7bb5d
                                        
                                            GET /-H8izCFTaHFE/T2b39mmu2NI/AAAAAAAACkM/k4bDdFe301U/s36/24.gif HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="24.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 9958
x-xss-protection: 0
date: Thu, 29 Sep 2022 01:56:49 GMT
expires: Mon, 18 Apr 2022 10:29:06 GMT
cache-control: public, max-age=86400, no-transform
age: 5936
etag: "v10aa"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   9958
Md5:    2f6fd5905d46763e4250381d18a413eb
Sha1:   f35c7f8ddc23a44a543beacd1a42c9dd961f0529
Sha256: fa5a337841922b3a6e6f9f25decd416ef368f002e34ac6b01ea7ee3e839b0df6
                                        
                                            GET /tcm_t_u.js HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.11.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 29 Sep 2022 03:35:44 GMT
cache-control: public, max-age=604800
expires: Thu, 06 Oct 2022 03:35:44 GMT
last-modified: Mon, 25 Jul 2022 16:50:39 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X1qEuHMs6cFBycL6V7I5vhVSQxMQsUKnbs4Lr1MAip9Q0zF2HNnwgN%2B4YcHf7CYD%2BbdxJje5SbgU1Jweaone69A58DfKFcoa%2B%2BDagDZgxuiSHV6qJ0uEqkZfJ9IB%2Flgt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7521aba85e99b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (2082), with CRLF line terminators
Size:   26685
Md5:    cb306d435265265656d610597fb26325
Sha1:   495bdc9882a3e970eb126217f32f520461667a09
Sha256: 6553fab3d2337b6c71181b3b3d0f476ba39b08fa759fbf5ec350377fb7a20705
                                        
                                            GET /-r72Ve93v7fk/UYl-HZTfYoI/AAAAAAAAJBk/5X6dcDUHglQ/s000/22.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="22.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11966
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v241a"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 35\012- data
Size:   11966
Md5:    83e1107d6c3aab9177481cfae5a85766
Sha1:   62052a6816003bcb433f9d9156124873f304abc2
Sha256: 2f3a10a4dac6b35eb5e7c71c8e08b15af49d486a6bc94d09e2679f0f5e61cca8
                                        
                                            GET /-AUg0GgtAPjc/UYl95tdaRUI/AAAAAAAAJAo/rNPxsDIROkQ/s000/13.gif HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="13.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9176
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Fri, 23 Sep 2022 01:29:00 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v240b"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   9176
Md5:    7f8668e6d3ad490f26348cc7282a4f90
Sha1:   2e166126a1217dcc5ce4cdf31716da22e6bd59d1
Sha256: fa148f161258d3dc721eee88a5cc174559c6f1430176d647d2e9e2dc8b0a7209
                                        
                                            GET /css?family=Open+Sans:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Sep 2022 03:35:44 GMT
date: Thu, 29 Sep 2022 03:35:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   10169
Md5:    49402cdcba3b06bcbc0ab8692534001c
Sha1:   70d4d0c5324bdfb49a75e9d69b3558b4b0fcc3f8
Sha256: 168ca718626e29994256bdcca3e412e9ac0cba6b48904a9721e163042d1fa72f
                                        
                                            GET /-exG8PIDVr4c/UYl97cOwu1I/AAAAAAAAJA0/IgPtwcaq8Lw/s000/15.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="15.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3705
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Mon, 06 Dec 2021 15:33:27 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v240f"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   3705
Md5:    abf8a5999f654d65c90a962779ebe9ff
Sha1:   e81b0d3b64b7bd830ec204d8c54c52e983d5fe15
Sha256: 5d72dd878b3b6e37f8c0d66ac059d78850f04613fa9b3bf3a7ee21b6042ba028
                                        
                                            GET /trk/?6e348921c7b1b331deee3f68cea0b8f6 HTTP/1.1 
Host: ylx-1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ylx-1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.66.200.221
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Thu, 29 Sep 2022 03:35:45 GMT
content-length: 43
last-modified: Thu, 29 Sep 2022 03:35:45 GMT
x-robots-tag: noindex, nofollow, noarchive, nosnippet
pragma-directive: no-cache
cache-directive: no-cache
cache-control: public, no-cache
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /-4p9OCcW73YI/UYl99FWvoGI/AAAAAAAAJBI/J8WhdMMtmpo/s000/17.gif HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="17.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 7860
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Wed, 11 May 2022 19:21:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2413"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   7860
Md5:    6229e0dc57d33c3b51d1b067ca69c625
Sha1:   2e445e3ab75ca465569838aa2d17c7609c8c45b9
Sha256: 0ac371efd8c7403e232169bd9b08de8676116b3768996abdc899bd91340beb8d
                                        
                                            GET /-XlM_ZZcy2mw/UYl9-o17ChI/AAAAAAAAJBY/Z5w0AJG03G4/s000/19.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="19.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 30419
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Wed, 30 Mar 2022 13:29:00 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2417"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   30419
Md5:    2922070489895cdda39211911bb2e19b
Sha1:   9086810a13c3a1975637ce6432f833e536ba75ca
Sha256: d35863d1bd2faa137b042ae5e673490891cd5170350085844981671895392e28
                                        
                                            GET /-PfP0K_VdDW0/UYl9oBf2atI/AAAAAAAAI-k/NL74VAi-oRw/s000/progress_ani.gif HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="progress_ani.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2545
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Sat, 24 Sep 2022 12:31:26 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v23eb"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 24 x 24\012- data
Size:   2545
Md5:    faa74e8c61fc64d5edb11613c7eead2c
Sha1:   e043879d3ee94a3edf10260f21f44bfa4a6fc66e
Sha256: 483c4a0396691993a641ec409c44b8b7e1daab0ae7e2b2944c4bc59520bb7655
                                        
                                            GET /geocompteur/shadow/flag_norway.png HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.11.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 29 Sep 2022 03:35:45 GMT
content-length: 880
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1041
content-disposition: inline; filename="flag_norway.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Wed, 05 Oct 2022 05:36:42 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2066342
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ud3K4q%2B2ReRhuk7328tCq02FYS4MgAuImgXL37N2AegjPEJmZ8UITAw5afgqtvFSDjGtX6PxZMh4Y0WVrLduySj%2F12ucnYE4%2Ftn9C%2FY%2BJjf6Uq2Iy6tk22paicfmwcwP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7521abaadf7eb51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   880
Md5:    e186cd78997ba86002ffe37b1bf7ea64
Sha1:   ec8365cf9b6db82cac866c92865cd8d6d4146ae5
Sha256: de0cb6c3eada763844403b680fa08dcc451a48df4a234a7f607558987ee3371c
                                        
                                            GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/hitparade.php?pagexiti=trackwidget
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.11.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 29 Sep 2022 03:35:45 GMT
last-modified: Mon, 26 Sep 2022 11:11:52 GMT
etag: W/"633188f8-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xJuB%2FT1C%2F6MTHbQx%2Fd9Glo3GVzr%2BWiObuL0P4VoVpD28B1w51iIlLAbWOnASEadbTi%2Fcu6betqnps1f4Qt%2FFs03YqxeW2c8g1HdIgblTvdkKGM%2BW%2F0L%2BJX2yFTeI%2Fh9x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7521abaabf79b51e-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 01 Oct 2022 03:35:45 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4894
Md5:    50079172ac489fe7c5ae83d4b6362575
Sha1:   250ac9873dbcf5bb57ab946d20e5c78a1f7de1e6
Sha256: b3671a181fc815d78f2c85f780386e52bd1e44a65d159440c0a50415af12be16
                                        
                                            GET /geocompteur/shadow/flag_finland.png HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.11.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 29 Sep 2022 03:35:45 GMT
content-length: 724
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=899
content-disposition: inline; filename="flag_finland.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sun, 09 Oct 2022 16:35:01 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1681244
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cftaGWm3N0cjE3I0UOIpPUkuHemsIlhL3BZY2wQtINVAn8%2Ft4zkZmwTMjkfBkFeG0LcqtwNrj%2BrKuBZU9A7giJlzcap2%2BHErU1XQ6qf65ElZ7QTsE8ebeuh4jqmbTntQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7521abaadf7fb51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   724
Md5:    4bb42c0a72d24163a22f5b03c19014ca
Sha1:   333c2b0e19045c6162ea18f96cde896e9568c965
Sha256: 57f34fcc77132fcdfc669956854f38ebc6089241f1d5f52d7218d06365c9e750
                                        
                                            GET /geocompteur/shadow/flag_germany.png HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.11.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 29 Sep 2022 03:35:45 GMT
content-length: 686
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=873
content-disposition: inline; filename="flag_germany.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sun, 23 Oct 2022 20:53:33 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 456131
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A%2BgNm%2BZhd8mDI8k%2BUYscgU1CYDyXWHWWjYMqVAUdhWrMQuFxLNS0bpkHOdGXVe5RBbU2QgAedlruk5Q7Nspm%2BJhtMD77GlZ2HSz1Km4ye%2BJHH%2BHvdJzkHtEUeDnnOhj9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7521abaadf85b51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   686
Md5:    1c667705cee250254b246ed54d521b22
Sha1:   ebb8e80e0820a7e73926c5d2ff02c5f74c9925b1
Sha256: 1b4f1b8a79090e222e116c0bb9a7333a8b88f41dd2172122f67e8c0f1a6c2e21
                                        
                                            GET /geocompteur/shadow/flag_canada.png HTTP/1.1 
Host: www.widgeo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.11.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 29 Sep 2022 03:35:45 GMT
content-length: 886
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1148
content-disposition: inline; filename="flag_canada.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 28 Oct 2022 17:24:24 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 36681
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iLrxt4agbcGyyPCpMPA2cgHsqEvTjQEnxWoKut5CTru6ar9YtcoNwU79r4Eyo%2BQC%2FakD1fOzcB%2BtQxzt%2FcA6nE9ouKNWu9noH6ylxcNTMLaHUPMyG3M8L%2F9ridyJsOFa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7521abaadf86b51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   886
Md5:    9dfda6415875b226812181f7ea64fcc8
Sha1:   6cdf4ed8b0a4d6a748510ab74d772183a55bdf38
Sha256: b5e378613935ec7dabd4e11e095b4141b16462909085a185e3a093c8900e6a55
                                        
                                            GET /-K7pkFrjRAmg/UYl-IWl_fJI/AAAAAAAAJBs/J1vN-M1DjdQ/s000/23.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="23.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 12154
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v241b"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   12154
Md5:    ee6d6b52c53c776577813dd3b5e67346
Sha1:   a938b694e2aed81a1177a76a32b66b518e9fea78
Sha256: 585ea39592df809c30b51e7d367aeafa0413b2476beac6e9912484aacb0e326f
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.widgeo.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:01:25 GMT
expires: Sun, 24 Sep 2023 18:01:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
age: 380060
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /-P9IkONN3z6k/UYl-RFrowNI/AAAAAAAAJB8/fObV-YnsS5c/s000/26.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="26.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11518
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Tue, 22 Mar 2022 19:57:38 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2420"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   11518
Md5:    758a0518d4e16817962190748c2ed65b
Sha1:   7834a60870315b25a26610eadbf1cb76cb57425a
Sha256: 9f334e753336e3ddef1c187a36cefbd28723e13c9fe982d587be75c4bf25a399
                                        
                                            GET /-d-ZlL4bONl4/UYl-SGf6FkI/AAAAAAAAJCE/WodYuWhK7k8/s000/27.gif HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="27.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 14382
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Wed, 20 Jul 2022 09:05:34 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2425"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   14382
Md5:    178ae7bc8ba7f2c93fce38923aa0a0e0
Sha1:   1a53ce687d64a38c5ec245dc32f25535d39df767
Sha256: b78339e9b4454feb9a8a903a72b1526a0da4626d1d237e36287c27c8a8b9c3f6
                                        
                                            GET /-zyFSdisLns4/UYl-TlBqMTI/AAAAAAAAJCM/d6rty53PcKs/s000/28.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="28.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9651
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Tue, 29 Mar 2022 00:14:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2424"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   9651
Md5:    e9451c0f97aade01a0ee5fe500f91819
Sha1:   bccaad828c715be199eac75210ee248a9fed69cb
Sha256: cc49b2fd8a07e1765061ae5893ec7700de8cc2dd53b9506b55c079f98fb5ccb9
                                        
                                            GET /-97ekotXWOkc/UYl-Ua4McKI/AAAAAAAAJCY/4G-GlZnXRnc/s000/29.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="29.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5978
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Thu, 22 Sep 2022 15:33:25 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2427"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   5978
Md5:    6f597a032fa3941248175f066ea7d85c
Sha1:   8d11b4fafa5dd5fa501507fec2541d6c41eb0980
Sha256: 8904c280153182d0ca0258b0163364994c8d644c06ccd3527819adc860d71fb4
                                        
                                            GET /-_fAEeZUGfkQ/UYl-VelfqAI/AAAAAAAAJCg/R9hGE34mtDI/s000/30.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="30.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 6200
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Mon, 20 Jun 2022 06:51:03 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2429"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   6200
Md5:    d32de0777c3455570b8316da2e55c151
Sha1:   3d8f8c8ea71003845021291517263f2cf597e75d
Sha256: 60be4a95d4774dcb77aba69aa1bca4e98d5596aed56d584d49cf0f5c405f07e9
                                        
                                            GET /-mQl5GvTz7QY/UYl-VywKl8I/AAAAAAAAJCo/aRQxd9uI4xI/s000/31.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="31.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 6957
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 03:35:45 GMT
Expires: Thu, 01 Sep 2022 06:02:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v242b"
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   6957
Md5:    86a790169f7ee3eab648f73a3577d1db
Sha1:   484f5ef646ca88f04e42eec22b14dd4c4182f5ba
Sha256: 610f74fc26a960624833800cd25fe47635e75b9287dd89c78f3b137d683ef33d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-9TYEg93ImUM/T2WEjvuhxTI/AAAAAAAACc0/KQRBXuuV_Yg/s36/32.gif HTTP/1.1 
Host: lh5.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="32.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 7480
x-xss-protection: 0
date: Thu, 29 Sep 2022 02:06:50 GMT
expires: Sat, 04 Jun 2022 09:13:20 GMT
cache-control: public, max-age=86400, no-transform
age: 5335
etag: "v10da"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 36 x 36\012- data
Size:   7480
Md5:    19c1058bce48182f99d8defd40d7cc37
Sha1:   d3a356987b4b26ce3f7b1e6ffe948b83280470e7
Sha256: d47ce018c59039146898b2bec0ca49d2b6e6c5aac3d9b54549490b7b0a7702f2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /feeds/posts/summary?max-results=5&orderby=published&alt=json-in-script&callback=jQuery18305131085546952264_1664422541392&_=1664422542223 HTTP/1.1 
Host: macamlawak.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://macamlawak.blogspot.com/2014/01/bayi-ditemui-mati-dalam-mangkuk-tanda.html
Cookie: ck_TCM_pop=1

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"6d673b063b37a2bc98afa86a0149241ec9394460ebd0ccb6af139566f9e3b5f1"
Date: Thu, 29 Sep 2022 03:35:45 GMT
Server: blogger-renderd
Expires: Thu, 29 Sep 2022 03:35:46 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Wed, 17 Aug 2022 01:59:18 GMT
Content-Encoding: gzip
Content-Length: 3143
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12672)
Size:   3143
Md5:    02223e3531d20783b7e518bec6be4538
Sha1:   82ff7c7665ab91dcb0778318218001e9aca0d97e
Sha256: c4c96964e5217e481d6fcf00f110c2e43ba9d0375ce2f1887b5be63f2466cf32
                                        
                                            GET /gtag/js?id=G-RP7FMTL79Y HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 29 Sep 2022 03:35:45 GMT
expires: Thu, 29 Sep 2022 03:35:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74792
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17807)
Size:   74792
Md5:    0adda413871963d716f364300e9e464e
Sha1:   8490509f126f48fb8b2e63ac27143ce3890911a5
Sha256: 9e89ee934612a91bde618148395b6b9117c3642b2d1c63939a0c2eb733d83156
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 03:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /hit.xiti?s=281802&p=trackwidget&hl=3x35x42&r=1280x1024x24x24&ref=http://macamlawak.blogspot.com/ HTTP/1.1 
Host: logv33.xiti.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.46.236
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
content-length: 147
date: Thu, 29 Sep 2022 03:35:45 GMT
cache-control: no-store
location: /hit.xiti?s=281802&p=trackwidget&hl=3x35x42&r=1280x1024x24x24&ref=http://macamlawak.blogspot.com/&Rdt=On
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: idrxvr=1F121868-FFF7-442B-AE38-DEC84111ABE3; Path=/; Domain=xiti.com; Expires=Sun, 29 Oct 2023 03:35:45 GMT; HttpOnly atidx=1F121868-FFF7-442B-AE38-DEC84111ABE3; Path=/; Domain=xiti.com; Expires=Sun, 29 Oct 2023 03:35:45 GMT; HttpOnly; Secure atid=1F121868-FFF7-442B-AE38-DEC84111ABE3; Path=/; Domain=xiti.com; Expires=Sun, 29 Oct 2023 03:35:45 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DsHu98h37Md_3lDYo3Qic5P8RqtXe-0-tjUsgixaMdND07_y2tMmPQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   147
Md5:    9636872668ade5c28c2b194114715bca
Sha1:   e77e3e4ff78d719be776c11a523024b7c53eb120
Sha256: bd54fc62058afbee01663cfa61c1842266d4cb65527f9ce9d2217eaafdfbea92
                                        
                                            GET /148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCjjrArdArdCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_85448&adApiR=loaded_string_7258435b0bce9d250429df012c0426f88d0bd_2633299_1664422544.5247_50913&capSettings=eWx4LTEuY29tfDUwMDAwMHwyNHw1MTg1Ng==&adApiR=loaded_string_7258435b0bce9d250429df012c0426f88d0bd_2633299_1664422544.5247_50913&refferer=3362106174_aHR0cDovL21hY2FtbGF3YWsuYmxvZ3Nwb3QuY29tLw==&width=300&height=250&yxDom=eWx4LTEuY29t_d2e782c6bee242762e705a45bd0be41c&randomA=1245864101763&realRef=WW04RXo1aStzQlhlZVdVc01RSDlETzNJd1VxRXlHV3N4cnVzUkc4VFZrND0= HTTP/1.1 
Host: ebaaa.xyz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ylx-1.com/
Upgrade-Insecure-Requests: 1

                                         
                                         185.66.201.8
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 29 Sep 2022 03:35:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: total_impressions=1; expires=Thu, 29-Sep-2022 03:59:59 GMT; Max-Age=1454; secure; SameSite=None used_ad2633299=1; expires=Thu, 29-Sep-2022 03:59:59 GMT; Max-Age=1454; path=/; secure; SameSite=None used_c_51856=1; expires=Fri, 30-Sep-2022 03:35:45 GMT; Max-Age=86400; path=/; secure; SameSite=None
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Size:   75252
Md5:    35e552927e42f69128031ee60437c887
Sha1:   303e7ee14ac96da0663137a8def87f1fa30c5c1f
Sha256: fa242becc80942fdb3518a2f950e44fce257f75f50ffd7ac32be3c63ad651112
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19099
Expires: Thu, 29 Sep 2022 08:54:04 GMT
Date: Thu, 29 Sep 2022 03:35:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19099
Expires: Thu, 29 Sep 2022 08:54:04 GMT
Date: Thu, 29 Sep 2022 03:35:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19099
Expires: Thu, 29 Sep 2022 08:54:04 GMT
Date: Thu, 29 Sep 2022 03:35:45 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0734a230-932d-4bc0-bc12-9177b543b103.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5222
x-amzn-requestid: cb2849d8-9579-42c1-84c9-e59700104aba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKaUGnAoAMFrTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334bddb-3649a45539964e985ee41911;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:34:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: v1EEfyICGujupCV26P4JAgnY-NHtvFVVWwxA0PNLs-Ky-FuR0TTDOA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:50:26 GMT
age: 20719
etag: "4a35c50b5b16779582a75078b6df090892358d3b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5222
Md5:    eece069cebb7039dbba50ec1cd73daab
Sha1:   4a35c50b5b16779582a75078b6df090892358d3b
Sha256: 41ad701a8ea3dcbfc38cb0701f3b24a6b833f6b1197014e10530c40496b6a13c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48e2707b-f3b2-4e52-99ae-03c359b698de.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8754
x-amzn-requestid: 175fc592-ed89-44fb-8cf7-8a4404f59d4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZC5OcHKkIAMFafA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633108c2-2c0c36007bc8bcb56a54e8a1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 02:04:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -AhTOJwgY3-DnA_pYXdBL18wPP_fNeyDmZjkdkQ2J-xrBZSyRcdK3Q==
via: 1.1 71e7943ea0729c284a06faa05a567236.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 19:10:22 GMT
age: 30323
etag: "ba797da9b2d6942161fa02a0e431de4868b84327"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8754
Md5:    556ea631652cbb77ff38dbe3bbc8c4d1
Sha1:   ba797da9b2d6942161fa02a0e431de4868b84327
Sha256: 130dab67cb6d80c741a7f2dadfd536bd6900204880dc3b68b2afbfa53dd3d781
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22873375-e381-41ee-a4b6-18ad56172e59.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8508
x-amzn-requestid: 5568f81c-2f99-44bf-9bd8-f015c604c513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMJlzFywoAMFamw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334bc8b-1d335c5c536e895a19b5965f;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:28:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2RLqacSoBXtv1i-6fRV9nejJ5tulXVJ-VsKVDvsMqAgPqXKWe_2cJw==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 22:42:49 GMT
etag: "a98da6b6ce993bd8f3b58ba42915cd9c4b45946c"
age: 17576
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8508
Md5:    515e23ff5ef0fc336ac5ec7fd31dfacd
Sha1:   a98da6b6ce993bd8f3b58ba42915cd9c4b45946c
Sha256: 77c186eb00def4a978d1bfd9eac755f70bf465f622991aaf6681227aec3e118a