firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 19:06:50 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tfLWvEURhTh2RUgSUItbu8c4Yv49Xn8fNmdrkexboF30AgK38PVxPw==
Age: 1645
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16717
Expires: Sun, 11 Sep 2022 00:12:52 GMT
Date: Sat, 10 Sep 2022 19:34:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pxik1_AS7TuZWv7JbIIwmDibAaSkOi6iXMBVee_y9LSVYprao5UqXw==
age: 44223
X-Firefox-Spdy: h2
www.djidji07.com/2022/09/pes-2017-efootball-2023.html
142.250.74.179301 Moved Permanently 201 B URL HTTP/1.1 www.djidji07.com/2022/09/pes-2017-efootball-2023.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e38806a9f80d4e0ccf3427cd94cb11ff
79e4df21eee82c6187859c359b46237215d40cd6
4effc7246ef092ab7511fd4f0af39dd7000622b32b6af2acda759572c7e53bec
Analyzer Verdict Alert fortinet Phishing
GET /2022/09/pes-2017-efootball-2023.html HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.djidji07.com/2022/09/pes-2017-efootball-2023.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 10 Sep 2022 19:34:15 GMT
Expires: Sat, 10 Sep 2022 19:34:15 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 201
Server: GSE
ocsp.pki.goog/s/gts1d4/3iFXytd28ks
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/3iFXytd28ks
IP 142.250.74.3:0
Hash 98bd96c848308231abef4e2cb7d5e992
79842a6df0f0acc0c2b6bb8b7c664b72b722c572
a3d9fe1302f2773ca13162d4ac68fa12e3479e8dc77a1a351011cc49aedfaed4
POST /s/gts1d4/3iFXytd28ks HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 10 Sep 2022 18:56:07 GMT
Cache-Control: max-age=3600
Expires: Sat, 10 Sep 2022 19:10:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zJMqMTFioSg43hg1WThHX1fK34nvSIUWlzDrY_DNO3Z2y5IPYvSvmA==
Age: 2288
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2865
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:15 GMT
Last-Modified: Sat, 10 Sep 2022 18:46:30 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.17.90101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.17.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YZVasIvWgH/jzutIFxJnow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7bgoDEnX19H8mbbss4X7HmmgQlY=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/earlyaccess/droidarabicnaskh.css
142.250.74.10200 OK 762 B URL HTTP/2 fonts.googleapis.com/earlyaccess/droidarabicnaskh.css
IP 142.250.74.10:0
Hash 0f321861141ae6a9135a8eaeed48b783
f9a914084f81cb029b3e8bde617f20d6de9c8c57
4aa4d76e480306165b4cd9ff7e0e8c7da5f42e1f6421d25458c14e773c236ba6
GET /earlyaccess/droidarabicnaskh.css HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
expires: Sat, 10 Sep 2022 19:34:16 GMT
date: Sat, 10 Sep 2022 19:34:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.10.2.min.js
69.16.175.42200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-1.10.2.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32072)
Hash 68cc08e82915da8b82fc6be74ab86365
4089530b0c00f6cbd1452d7f873be85454196fd1
6c63276db5e51f227be1c9bdaf73d76fa01040499944a8c8607db0c234f0575c
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 19:34:16 GMT
content-encoding: gzip
content-length: 32788
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-16bb3"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662838456.dop026.sk1.t,1662838456.cds212.sk1.hn,1662838456.cds243.sk1.c
X-Firefox-Spdy: h2
www.djidji07.com/2022/09/pes-2017-efootball-2023.html
142.250.74.179200 OK 151 kB URL HTTP/2 www.djidji07.com/2022/09/pes-2017-efootball-2023.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58812)
Size 151 kB (150996 bytes)
Hash c166c15e2b4c6a7d3818cf6e22a43e3a
5690b0bd1f0108f9b0455b354ebc9d9f1516c41a
50f30b0a5c2a3a9e72699edc410f01786f65ffa643f8dfce1b7d6aba99618698
Analyzer Verdict Alert fortinet Phishing
GET /2022/09/pes-2017-efootball-2023.html HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:15 GMT
date: Sat, 10 Sep 2022 19:34:15 GMT
cache-control: private, max-age=0
last-modified: Sat, 10 Sep 2022 14:20:13 GMT
etag: W/"ba046b0bcc5790cf86732c3e037ecb8f5fcd118b49dc26f53b8a90848206b23e"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 150996
server: GSE
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a242ef91757f13fd86f5377478b8fa05
875ed1fef0fcaa727cbaad6ea96e33b95627578b
f9da45d6e2f4828dd272671f79648ce7c8eee1c37c09681f3838146913b7b497
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.djidji07.com/js/cookienotice.js
142.250.74.179200 OK 2.0 kB URL HTTP/2 www.djidji07.com/js/cookienotice.js
IP 142.250.74.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/2022/09/pes-2017-efootball-2023.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sat, 10 Sep 2022 19:34:16 GMT
expires: Sat, 17 Sep 2022 19:34:16 GMT
cache-control: public, max-age=604800
last-modified: Sat, 10 Sep 2022 17:49:14 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d5f1a4a3cbcff2a380ae3b2ed83909c4
51db46957c05e034a896a4ede346f2ed90901012
fee75b595277c400b25afefb4206d7a0b6275cc29f7c4caab2457190550ef77c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5902
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Last-Modified: Sat, 10 Sep 2022 17:55:54 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
216.58.207.201200 OK 6.5 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (1264)
Hash 30af015884191ce4fe52ce1e707baed9
faa1418efa036704d31eb90f4fbd82de456b81b7
0456cf81299c957c8e54dabb00b4d6d96b76be729b1e112d478b34ba56d8059d
GET /static/v1/jsbin/3262169375-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 14:54:37 GMT
expires: Sat, 09 Sep 2023 14:54:37 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Sep 2022 15:01:24 GMT
content-type: text/javascript
age: 103179
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3753684042-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3753684042-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 9310029f33929201831992bd74c13953
092fc9b60b0fcc7e24b80eb89f40178e91effb98
ed0ad17efb3c922e7bc8feffa0a5718d2ad226c44f2bb183b6ad163684f3b982
GET /static/v1/widgets/3753684042-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57039
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 01:53:39 GMT
expires: Fri, 08 Sep 2023 01:53:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Sep 2022 22:51:39 GMT
content-type: text/javascript
age: 236437
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c836b8f306f75d7cf257553a3473323b
c3982d580c9551fc7e188d091c1164d55d546d94
cdecebdf8b9ba69a4b6def57fa1ae6b75441aa6f84daa866963ddf07a391920f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c836b8f306f75d7cf257553a3473323b
c3982d580c9551fc7e188d091c1164d55d546d94
cdecebdf8b9ba69a4b6def57fa1ae6b75441aa6f84daa866963ddf07a391920f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/--K6fSoArRpQ/YUabQtvGi6I/AAAAAAAAHYw/MMyqcg9j1PsSxT_n4UCJ9dfEYjnmdqPbQCLcBGAsYHQ/s72-w640-c-h360/UTUT.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/2 1.bp.blogspot.com/--K6fSoArRpQ/YUabQtvGi6I/AAAAAAAAHYw/MMyqcg9j1PsSxT_n4UCJ9dfEYjnmdqPbQCLcBGAsYHQ/s72-w640-c-h360/UTUT.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 45275d75be34e74a8428a4d766d8ebf4
f84e15887aeee4f4360adc78d8f253e9f6f61eaf
572ade654e71f1cbc014fbea8be6856f8c8235ae0092ecde3281e997429f4824
GET /--K6fSoArRpQ/YUabQtvGi6I/AAAAAAAAHYw/MMyqcg9j1PsSxT_n4UCJ9dfEYjnmdqPbQCLcBGAsYHQ/s72-w640-c-h360/UTUT.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1d8e"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="UTUT.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 4931
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c836b8f306f75d7cf257553a3473323b
c3982d580c9551fc7e188d091c1164d55d546d94
cdecebdf8b9ba69a4b6def57fa1ae6b75441aa6f84daa866963ddf07a391920f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d0ea6bf4cc7ee5b4483912776c47dacc
bd1333224cc1beead423969ce903b4a67c13bbf8
46521d14873cd9553052ab9bd601d74ca8278f44d97e3964ff7681b938d953eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-2mpBDcdDDeg/WgbZuzwIGJI/AAAAAAAAK5E/qC8VOxa2GsIj-sLNyqnmGVlzGKKTQ77oQCK4BGAYYCw/s1600/436633.png
142.250.74.161200 OK 115 kB URL HTTP/2 4.bp.blogspot.com/-2mpBDcdDDeg/WgbZuzwIGJI/AAAAAAAAK5E/qC8VOxa2GsIj-sLNyqnmGVlzGKKTQ77oQCK4BGAYYCw/s1600/436633.png
IP 142.250.74.161:0
File type PNG image data, 350 x 222, 8-bit/color RGB, non-interlaced\012- data
Size 115 kB (115365 bytes)
Hash 7ce7601caf92d9ca7296e921673fb832
f80f27cc051cfdc0bf05d12fe3f94367e6db3de9
cebb7f949abcbf3b37373c2f52179fd9efbce1f16749354aa9b7b977ab06af72
GET /-2mpBDcdDDeg/WgbZuzwIGJI/AAAAAAAAK5E/qC8VOxa2GsIj-sLNyqnmGVlzGKKTQ77oQCK4BGAYYCw/s1600/436633.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2b92"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="436633.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 115365
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-34AP0Wl7CBY/WgbZV8A8_gI/AAAAAAAAK48/aD_ZkaD2wgINkRzfLZcEZmOHN2K5j8KvACK4BGAYYCw/s1600/436633.png
142.250.74.161200 OK 84 kB URL HTTP/2 4.bp.blogspot.com/-34AP0Wl7CBY/WgbZV8A8_gI/AAAAAAAAK48/aD_ZkaD2wgINkRzfLZcEZmOHN2K5j8KvACK4BGAYYCw/s1600/436633.png
IP 142.250.74.161:0
File type PNG image data, 350 x 222, 8-bit/color RGB, non-interlaced\012- data
Hash a6075a42187556373868d7fb209a63b5
4ae24da7e13c53d1e453e0766a98ee85ead1aa55
4d9a64aeec3f7df445a87abe7031645029756d830d6c22328e7122b99f7d3c92
GET /-34AP0Wl7CBY/WgbZV8A8_gI/AAAAAAAAK48/aD_ZkaD2wgINkRzfLZcEZmOHN2K5j8KvACK4BGAYYCw/s1600/436633.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2b92"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="436633.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 83567
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d0ea6bf4cc7ee5b4483912776c47dacc
bd1333224cc1beead423969ce903b4a67c13bbf8
46521d14873cd9553052ab9bd601d74ca8278f44d97e3964ff7681b938d953eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-_kwt8E7GcJI/X8wM5t3Rx3I/AAAAAAAAGbI/Gh7bW9PY_XssEaToQgOl-cWEQf25n2qcACLcBGAsYHQ/w640-h360/PES%2B2017%2BHANO%2BMINI%2BPATCH%2BV3.png
142.250.74.161200 OK 320 kB URL HTTP/2 1.bp.blogspot.com/-_kwt8E7GcJI/X8wM5t3Rx3I/AAAAAAAAGbI/Gh7bW9PY_XssEaToQgOl-cWEQf25n2qcACLcBGAsYHQ/w640-h360/PES%2B2017%2BHANO%2BMINI%2BPATCH%2BV3.png
IP 142.250.74.161:0
File type PNG image data, 640 x 360, 8-bit/color RGB, non-interlaced\012- data
Size 320 kB (320113 bytes)
Hash c4b6237f2d083676ec32b676deb75b42
e9de548b1cc0be5b7b4ce4175a9b36734a8d82cf
b218bbed3277fd4ec0e1025d6d40beea1b314490d3ebe66b5de1e2d895b02593
GET /-_kwt8E7GcJI/X8wM5t3Rx3I/AAAAAAAAGbI/Gh7bW9PY_XssEaToQgOl-cWEQf25n2qcACLcBGAsYHQ/w640-h360/PES%2B2017%2BHANO%2BMINI%2BPATCH%2BV3.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v19b3"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PES 2017 HANO MINI PATCH V3.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 320113
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-zwlCRY9lHjE/YUe8YMfDXHI/AAAAAAAAHZQ/fOxbCxDxUSAHkkzPWWUEl2JXFqOLi_5fgCLcBGAsYHQ/s72-c/241548310_4258308207571813_6827554813480271260_n.jpg
142.250.74.161200 OK 3.8 kB URL HTTP/2 1.bp.blogspot.com/-zwlCRY9lHjE/YUe8YMfDXHI/AAAAAAAAHZQ/fOxbCxDxUSAHkkzPWWUEl2JXFqOLi_5fgCLcBGAsYHQ/s72-c/241548310_4258308207571813_6827554813480271260_n.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5a61a1b7248fc6d99b316d68bdd38dee
f8b148056a8ea0d4f160fb1cfc340d73c3eb1cde
8b281399fe6bbb37c9875fb443579ee1b094db1e6700d1b8147553b3f0bf4092
GET /-zwlCRY9lHjE/YUe8YMfDXHI/AAAAAAAAHZQ/fOxbCxDxUSAHkkzPWWUEl2JXFqOLi_5fgCLcBGAsYHQ/s72-c/241548310_4258308207571813_6827554813480271260_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1d98"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="241548310_4258308207571813_6827554813480271260_n.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 3845
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b1d328d025ba2a2db322f5620b94e5e0
83f706e97d4e688224c525d9bc9cb9feb8816818
c3cf2c5882e40b3679a69a1863cac1bcbeae81cf2f49f3d76691984b9502145b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-GzzOrZwWEJ4/YSRo4ab88AI/AAAAAAAAHR0/UNMjRsjXNTMkbfeq928hJcz91dti4BTYQCLcBGAsYHQ/s72-w640-c-h360/20210814_220518_compress55-scaled.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/2 1.bp.blogspot.com/-GzzOrZwWEJ4/YSRo4ab88AI/AAAAAAAAHR0/UNMjRsjXNTMkbfeq928hJcz91dti4BTYQCLcBGAsYHQ/s72-w640-c-h360/20210814_220518_compress55-scaled.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 521bac49a83cd109e426f566d860be3f
a9e9a919dde1bc999bf644ec48a9228622ea0932
f52a4fd0f736ab855e74d1bae58b4901312b58c4df6c8b7a295d0008eca5547f
GET /-GzzOrZwWEJ4/YSRo4ab88AI/AAAAAAAAHR0/UNMjRsjXNTMkbfeq928hJcz91dti4BTYQCLcBGAsYHQ/s72-w640-c-h360/20210814_220518_compress55-scaled.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1d1e"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="20210814_220518_compress55-scaled.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 4917
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2fea93ba89de81c2b01aaca1a87835
0a7f50001f709285bc10f6ef044ef39a60535bff
6cae8a5f9949975a3adedc41088196b8c9dd984e4023e54bbe655800a9478349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-QeAXFmQNOKQ/XW2alfnzERI/AAAAAAAAD_I/tY3guUdkbQ03t8-FopAc0FMaMkX1GdS7wCK4BGAYYCw/s1600/get-paid.jpg
142.250.74.161200 OK 14 kB URL HTTP/2 4.bp.blogspot.com/-QeAXFmQNOKQ/XW2alfnzERI/AAAAAAAAD_I/tY3guUdkbQ03t8-FopAc0FMaMkX1GdS7wCK4BGAYYCw/s1600/get-paid.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 240x240, components 3\012- data
Hash 2ce78d68810b0aafe23f57d6234fd401
d167f6ad6bc4751734fedbbdfe315f6ba9a5c98d
f846914c7671bc3af48ba97fd1533883b563afc6370d4b14a4d98b152586eb36
GET /-QeAXFmQNOKQ/XW2alfnzERI/AAAAAAAAD_I/tY3guUdkbQ03t8-FopAc0FMaMkX1GdS7wCK4BGAYYCw/s1600/get-paid.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vff3"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="get-paid.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 13540
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a242ef91757f13fd86f5377478b8fa05
875ed1fef0fcaa727cbaad6ea96e33b95627578b
f9da45d6e2f4828dd272671f79648ce7c8eee1c37c09681f3838146913b7b497
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-7F4DbuKTwTI/YUU2bAhqNRI/AAAAAAAAHYc/oSi8IVeZLMkbfrK4VYiHNwj6NJQLU24MACLcBGAsYHQ/s72-w640-c-h360/SP1717.jpg
142.250.74.161200 OK 5.5 kB URL HTTP/2 1.bp.blogspot.com/-7F4DbuKTwTI/YUU2bAhqNRI/AAAAAAAAHYc/oSi8IVeZLMkbfrK4VYiHNwj6NJQLU24MACLcBGAsYHQ/s72-w640-c-h360/SP1717.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 32f85cf77bb2065f56c14eabd6695c36
388ec033800384f4188600baa5c127e914b8af86
349510d5afe5b2a2aee81c3ee01c857375da9c0898527adece7ae831a35bc31b
GET /-7F4DbuKTwTI/YUU2bAhqNRI/AAAAAAAAHYc/oSi8IVeZLMkbfrK4VYiHNwj6NJQLU24MACLcBGAsYHQ/s72-w640-c-h360/SP1717.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1d89"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="SP1717.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 5462
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-LdPgK9ZN2eY/WgbaN6sgSaI/AAAAAAAAK5Q/tfjGiQ5wR8cF28BddZiy-LLmUTZ_yWIIgCK4BGAYYCw/s1600/436633.png
142.250.74.161200 OK 112 kB URL HTTP/2 4.bp.blogspot.com/-LdPgK9ZN2eY/WgbaN6sgSaI/AAAAAAAAK5Q/tfjGiQ5wR8cF28BddZiy-LLmUTZ_yWIIgCK4BGAYYCw/s1600/436633.png
IP 142.250.74.161:0
File type PNG image data, 350 x 222, 8-bit/color RGB, non-interlaced\012- data
Size 112 kB (111717 bytes)
Hash e4271bc83472da05a449c9c902e0d0de
a6dd5897a55f1e26545a72244bf625871403e16e
0702da42ed3c66c50b93ea2319d2fedf9d86a24765a6df4510e172701a7bbf45
GET /-LdPgK9ZN2eY/WgbaN6sgSaI/AAAAAAAAK5Q/tfjGiQ5wR8cF28BddZiy-LLmUTZ_yWIIgCK4BGAYYCw/s1600/436633.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2b95"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="436633.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 111717
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.paypal.com/en_DZ/i/scr/pixel.gif
151.101.1.21301 Moved Permanently 0 B URL HTTP/2 www.paypal.com/en_DZ/i/scr/pixel.gif
IP 151.101.1.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_DZ/i/scr/pixel.gif HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
cache-control: max-age=0, no-cache, no-store, must-revalidate
location: https://www.paypalobjects.com/en_DZ/i/scr/pixel.gif
paypal-debug-id: f928969d0c5e8
set-cookie: ts=vreXpYrS%3D1757532856%26vteXpYrS%3D1662840256%26vr%3D28e5414a1830a78053d2c49bfd348ebc%26vt%3D28e5414a1830a78053d2c49bfd348ebb%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Tue, 09 Sep 2025 19:34:16 GMT; HttpOnly; Secure
ts_c=vr%3D28e5414a1830a78053d2c49bfd348ebc%26vt%3D28e5414a1830a78053d2c49bfd348ebb; Path=/; Domain=paypal.com; Expires=Tue, 09 Sep 2025 19:34:16 GMT; Secure
traceparent: 00-0000000000000000000f928969d0c5e8-5692c6c793d6d82b-01
dc: ccg11-origin-www-1.paypal.com
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Sat, 10 Sep 2022 19:34:16 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn11525-HHN, cache-bma1671-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662838457.565567,VS0,VE161
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 90af7f9fc306540e02535db3d00dca64
9e05b003b35ed57277b6b295adde93add7c41b0b
64abd990305ef3f25ffb3fb2ccae04b76e178375752ecb2020411df8f7974fcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-iZh34sKQ4DI/WgbbkQ9uyFI/AAAAAAAAK5o/Pl_oOgo_FhEIB9ueukr-gzkHOgKQLuzywCK4BGAYYCw/s1600/436633.png
142.250.74.161200 OK 132 kB URL HTTP/2 4.bp.blogspot.com/-iZh34sKQ4DI/WgbbkQ9uyFI/AAAAAAAAK5o/Pl_oOgo_FhEIB9ueukr-gzkHOgKQLuzywCK4BGAYYCw/s1600/436633.png
IP 142.250.74.161:0
File type PNG image data, 350 x 222, 8-bit/color RGB, non-interlaced\012- data
Size 132 kB (131763 bytes)
Hash 2d11addb80acd6b2c5b362c96e11912e
b26ac5a813475f424960380f688ba1c294a995d5
617102e3ec788b97820bd3619bafd513f26fa9dc3f37906eebc0f5d4fe49ddb1
GET /-iZh34sKQ4DI/WgbbkQ9uyFI/AAAAAAAAK5o/Pl_oOgo_FhEIB9ueukr-gzkHOgKQLuzywCK4BGAYYCw/s1600/436633.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2b9d"
expires: Sun, 11 Sep 2022 19:34:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="436633.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:16 GMT
server: fife
content-length: 131763
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Sat, 10 Sep 2022 19:34:16 GMT
expires: Sat, 10 Sep 2022 19:34:16 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "45721ba9c974fc6e"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c836b8f306f75d7cf257553a3473323b
c3982d580c9551fc7e188d091c1164d55d546d94
cdecebdf8b9ba69a4b6def57fa1ae6b75441aa6f84daa866963ddf07a391920f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c836b8f306f75d7cf257553a3473323b
c3982d580c9551fc7e188d091c1164d55d546d94
cdecebdf8b9ba69a4b6def57fa1ae6b75441aa6f84daa866963ddf07a391920f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7488f438eb54d01b9aff2316b2e8f059
41712c35bec1ce79b85c02b9d63d60de70ad7412
1242e247b1796933a9e9e6ec24171f2493b98efa5ff2a3fa0a05f2ec68546cc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1242E247B1796933A9E9E6EC24171F2493B98EFA5FF2A3FA0A05F2EC68546CC8"
Last-Modified: Fri, 09 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10560
Expires: Sat, 10 Sep 2022 22:30:16 GMT
Date: Sat, 10 Sep 2022 19:34:16 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 90af7f9fc306540e02535db3d00dca64
9e05b003b35ed57277b6b295adde93add7c41b0b
64abd990305ef3f25ffb3fb2ccae04b76e178375752ecb2020411df8f7974fcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 90af7f9fc306540e02535db3d00dca64
9e05b003b35ed57277b6b295adde93add7c41b0b
64abd990305ef3f25ffb3fb2ccae04b76e178375752ecb2020411df8f7974fcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ed51ae852a5c43fccea3e571274ac524
965ef10e2c5f31472200569081ccc9fe13111154
1ab772e722f6120eeaa3c16a8bafb462a14df0ccb5110cc42961c401e981e13c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AB772E722F6120EEAA3C16A8BAFB462A14DF0CCB5110CC42961C401E981E13C"
Last-Modified: Fri, 09 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2140
Expires: Sat, 10 Sep 2022 20:09:56 GMT
Date: Sat, 10 Sep 2022 19:34:16 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ed51ae852a5c43fccea3e571274ac524
965ef10e2c5f31472200569081ccc9fe13111154
1ab772e722f6120eeaa3c16a8bafb462a14df0ccb5110cc42961c401e981e13c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AB772E722F6120EEAA3C16A8BAFB462A14DF0CCB5110CC42961C401E981E13C"
Last-Modified: Fri, 09 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2443
Expires: Sat, 10 Sep 2022 20:14:59 GMT
Date: Sat, 10 Sep 2022 19:34:16 GMT
Connection: keep-alive
www.djidji07.com/feeds/posts/default/-/%D8%A5%D8%B6%D8%A7%D9%81%D8%A7%D8%AA%20%D8%A8%D9%8A%D8%B3?alt=json-in-script&callback=related_results_labels_thumbs&max-results=5
142.250.74.179200 OK 3.7 kB URL HTTP/2 www.djidji07.com/feeds/posts/default/-/%D8%A5%D8%B6%D8%A7%D9%81%D8%A7%D8%AA%20%D8%A8%D9%8A%D8%B3?alt=json-in-script&callback=related_results_labels_thumbs&max-results=5
IP 142.250.74.179:0
File type Unicode text, UTF-8 text, with very long lines (21289)
Hash 5f5b75aaf5fd3999fe71069221788305
3866ae2adac57f7d0a05bab5fb48fff7b63b774b
91c22246b5e4929724541eefb53df949c5158de338896e650dc929e9906d4e78
GET /feeds/posts/default/-/%D8%A5%D8%B6%D8%A7%D9%81%D8%A7%D8%AA%20%D8%A8%D9%8A%D8%B3?alt=json-in-script&callback=related_results_labels_thumbs&max-results=5 HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/2022/09/pes-2017-efootball-2023.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"9065d53846c4b6ab06a149952c6312ece546bda991f268ee4e3faa9a1ff211b6"
date: Sat, 10 Sep 2022 19:34:16 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sat, 10 Sep 2022 19:34:17 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 10 Sep 2022 14:20:13 GMT
content-encoding: gzip
content-length: 3661
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11521
Expires: Sat, 10 Sep 2022 22:46:17 GMT
Date: Sat, 10 Sep 2022 19:34:16 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11521
Expires: Sat, 10 Sep 2022 22:46:17 GMT
Date: Sat, 10 Sep 2022 19:34:16 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11521
Expires: Sat, 10 Sep 2022 22:46:17 GMT
Date: Sat, 10 Sep 2022 19:34:16 GMT
Connection: keep-alive
pjjpp.com/pun.php?section=General&pt=6&pub=535951&ga=g
185.66.200.220200 OK 12 kB URL HTTP/2 pjjpp.com/pun.php?section=General&pt=6&pub=535951&ga=g
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
Hash 7ea24b16a1c75728d37a58406f16eb35
e64218aa1e125f8f15150dad84cc164a365bbef0
146970d431af4af066148ace34f2c7d77323bd8158a5786b7f4d504667dc2732
GET /pun.php?section=General&pt=6&pub=535951&ga=g HTTP/1.1
Host: pjjpp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:16 GMT
content-type: application/javascript
expires: Sat, 10 Sep 2022 19:34:16 GMT
last-modified: Sat, 10 Sep 2022 19:34:16 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex, nofollow, noarchive, nosnippet
X-Firefox-Spdy: h2
goo.gl/WqrCHs
142.250.74.110403 Forbidden 9.1 kB IP 142.250.74.110:0
Hash f9aabac566ce8d797b13bad8c716bf03
f59ed86e8e1f35831e40a8a44b4f60979a7b089f
61817545365b2f7e4a4dd01926eaa18d5f9b574132626cbf4443912d3c40040f
GET /WqrCHs HTTP/1.1
Host: goo.gl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 10 Sep 2022 19:34:16 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000
content-security-policy: script-src 'nonce-KP2QcuQ17evUNe54onDGhA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/DurableDeepLinkUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b83fa95ed30533299bc754adaced672
27eda8377e1c00c53fb66b4e2fa4f0dd6c7020af
bc59e5ba6abafd8e7b10d6f8ae2269cbf739a4b28f9cbbf3adfc29a9195e6985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8626
x-amzn-requestid: af5e61ab-4f7b-4b03-8413-5d750b17e0df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLj9TH7vIAMFVMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ae6bb-309144fb6e02564c4fcdb966;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 07:09:47 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3gzR4efCGz9QsLoxAMuTUgBAwEc5WdyHBhw_wRPGmfnS9SWm-0vE7w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 07:27:32 GMT
age: 43604
etag: "27eda8377e1c00c53fb66b4e2fa4f0dd6c7020af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1abac18a85802f38f08561ac64020b55
afbc7666fa0b2093ef0c5d9a955d54d139c09b30
eae7f28dd178293939ecd81082ab68ae6098bb3cb1f1fe9411c38314ddb0f944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9610
x-amzn-requestid: 34102145-abda-4987-a68d-9069496366ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNj0oF7loAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb350-52aee64214c814812c03262e;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91AsC8-zVFCOPHFb2qnlTev2aXzdCEDYtc68JtYYsQSKS7OFF4QzgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:59:50 GMT
age: 77666
etag: "afbc7666fa0b2093ef0c5d9a955d54d139c09b30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ade70e6dbcfb3ca1765f95112671e69
3768753be084c0e0fc268be5b192d02d769114b6
9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HwwG0Hjf8uZn1AtbLU_wKs3w9lict3tRP31XQY6tIxDz9KDNaBMAqw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 04:00:05 GMT
age: 56051
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8f11aeba65478b039cfb4100aa23435
88db17a82ea0207ccb4826c2961875c5106b427a
6f6ec5922ec54d824e7f933de87608c5a763da119ae9461d99c6525649b1a9af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8676
x-amzn-requestid: 64a58aa8-8321-4c91-98fe-dbf97996c513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNiuZEjnIAMFRFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb18f-77b635593b202d7d3cd0ac84;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: VWwNSpFvcDq3nrn91QvYjrJX5hLjp96vrKgZzR-pOdrdHx7MlcagGQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:43 GMT
age: 76833
etag: "88db17a82ea0207ccb4826c2961875c5106b427a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/btn/btn_donateCC_LG.gif
192.229.221.25200 OK 3.1 kB URL HTTP/2 www.paypalobjects.com/en_US/i/btn/btn_donateCC_LG.gif
IP 192.229.221.25:0
File type GIF image data, version 89a, 147 x 47\012- data
Hash 3ed0eaf21fb245cd89456c2756889741
7f7727028800623e8d82f346ca1752b56b7edcbb
33a91bd6d378215fcd413c279aa88d48bda6c8b2ef7695892777c87de37de256
GET /en_US/i/btn/btn_donateCC_LG.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 10 Sep 2022 19:34:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60afaa97-c1b"
expires: Sat, 10 Sep 2022 20:34:16 GMT
last-modified: Thu, 27 May 2021 14:20:07 GMT
paypal-debug-id: 2b4c172ba8a6d
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 3099
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 108642b74eef0ae2bb43144c315597dd
d201f5d9cd6d97993f0ee29fe2ca19a09c84281d
cf2afa9a717a4f6d4fd5edab04bb8b274e7b008335a6a3388fa3dee3d71dd4db
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CF2AFA9A717A4F6D4FD5EDAB04BB8B274E7B008335A6A3388FA3DEE3D71DD4DB"
Last-Modified: Sat, 10 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19372
Expires: Sun, 11 Sep 2022 00:57:09 GMT
Date: Sat, 10 Sep 2022 19:34:17 GMT
Connection: keep-alive
pppbr.com/show.php?u32011662838457=true&ad=673873&f=728x90&a=625611&cri=0&s=NGNmYThhOGFjMDcwYjkyZTM3Y2E2ZmM2NmE4ZmRkMjY=&u=535951&si=165886968&di=40785344&ci=16&h=d3fbb76ba06c2b37a06f93d4e0b04a65&cc=NO&https=1&useAf=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&ar=aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==
185.66.200.220200 OK 15 kB URL HTTP/2 pppbr.com/show.php?u32011662838457=true&ad=673873&f=728x90&a=625611&cri=0&s=NGNmYThhOGFjMDcwYjkyZTM3Y2E2ZmM2NmE4ZmRkMjY=&u=535951&si=165886968&di=40785344&ci=16&h=d3fbb76ba06c2b37a06f93d4e0b04a65&cc=NO&https=1&useAf=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&ar=aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
Hash 5cc191867aa01994a2a1b9b1928273e8
51ed1d6ccdefa087cb3372be9c52c8605a75d1a0
87b1205a28c4ff86fd0d7101d52157dbd5da781d99e2714931b8efe827d046c3
GET /show.php?u32011662838457=true&ad=673873&f=728x90&a=625611&cri=0&s=NGNmYThhOGFjMDcwYjkyZTM3Y2E2ZmM2NmE4ZmRkMjY=&u=535951&si=165886968&di=40785344&ci=16&h=d3fbb76ba06c2b37a06f93d4e0b04a65&cc=NO&https=1&useAf=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&ar=aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw== HTTP/1.1
Host: pppbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/bnr_xload.php?section=General&pub=535951&format=728x90&ga=g&xt=166283845650690&xtt=7982081
Cookie: used_ad2784267=1; total_impressions=1; cpa_673873=300x250_165886968_0; used_ad2633134=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:17 GMT
last-modified: Sat, 10 Sep 2022 19:34:17 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex, nofollow, noarchive, nosnippet
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3ffaff9ef1c9c1c3d3913a514f047cc3
5760845d78902a1193a453478552c3540688c4d5
6d9fdae72bab1880e2f5a6d00e2509b79200464dd769d6574759e7ef23586504
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pppbr.com/trk/?d3fbb76ba06c2b37a06f93d4e0b04a65
185.66.200.220200 OK 43 B URL HTTP/2 pppbr.com/trk/?d3fbb76ba06c2b37a06f93d4e0b04a65
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /trk/?d3fbb76ba06c2b37a06f93d4e0b04a65 HTTP/1.1
Host: pppbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/show.php?u32011662838457=true&ad=673873&f=728x90&a=625611&cri=0&s=NGNmYThhOGFjMDcwYjkyZTM3Y2E2ZmM2NmE4ZmRkMjY=&u=535951&si=165886968&di=40785344&ci=16&h=d3fbb76ba06c2b37a06f93d4e0b04a65&cc=NO&https=1&useAf=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&ar=aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==
Cookie: used_ad2784267=1; total_impressions=1; cpa_673873=300x250_165886968_0; used_ad2633134=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: image/gif
content-length: 43
last-modified: Sat, 10 Sep 2022 19:34:17 GMT
x-robots-tag: noindex, nofollow, noarchive, nosnippet
pragma-directive: no-cache
cache-directive: no-cache
cache-control: public, no-cache
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
pppbr.com/trk/?cf16a86680c3a99b8449d67e67eee58b
185.66.200.220200 OK 3.0 kB URL HTTP/2 pppbr.com/trk/?cf16a86680c3a99b8449d67e67eee58b
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
Hash bf88479bfcd6bb543779f6a037d78f8b
3fa03f3a2274d833ec659f67d1abb67b47592507
dba0d44d7396651f2bc56d596f46c34cc8b86017dc8e2f4c1d2ec30b537e2376
GET /trk/?cf16a86680c3a99b8449d67e67eee58b HTTP/1.1
Host: pppbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/show.php?u19631662838457=true&ad=673873&f=300x250&a=395578&cri=0&s=ZjJjNGJlNzJlZWUyM2M2MjFiNzdiNWUxM2ExODZlZDA=&u=535951&si=165886968&di=40785344&ci=16&h=cf16a86680c3a99b8449d67e67eee58b&cc=NO&https=1&useAf=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&ar=aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==
Cookie: used_ad2784267=1; total_impressions=1; cpa_673873=300x250_165886968_0; used_ad2633134=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: image/gif
content-length: 43
last-modified: Sat, 10 Sep 2022 19:34:17 GMT
x-robots-tag: noindex, nofollow, noarchive, nosnippet
pragma-directive: no-cache
cache-directive: no-cache
cache-control: public, no-cache
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
yt3.ggpht.com/faT1H6ABNEvk2s1UPBqakn9rYUbm5q9meUNeUPpViURNgnhgjFx5Q_ccezXc8OWTFaElC8yY=s48-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.2 kB URL HTTP/2 yt3.ggpht.com/faT1H6ABNEvk2s1UPBqakn9rYUbm5q9meUNeUPpViURNgnhgjFx5Q_ccezXc8OWTFaElC8yY=s48-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 7534cd7e7c7b04bbb9554db3e53a2d38
49212364da196ec6f8df1edec9cb2898751d634a
d27b924531dd2c2ebb7656f30a3277d108337cee1ded01de8935873549eda931
GET /faT1H6ABNEvk2s1UPBqakn9rYUbm5q9meUNeUPpViURNgnhgjFx5Q_ccezXc8OWTFaElC8yY=s48-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2240
x-xss-protection: 0
date: Sat, 10 Sep 2022 19:34:17 GMT
expires: Thu, 08 Sep 2022 22:31:39 GMT
cache-control: public, max-age=86400, no-transform
etag: "v2"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e66743a6c60c1181d7f47c7f748ddfa3
97e333fac41fce213aeda4a42c79b0c5077e26c0
498cbdcbc5fed75df7e4974b21f3be66580dd169b8c82e76c69a823567e27ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pppbr.com/bnr.php?section=General&pub=535951&format=300x250&ga=g
185.66.200.220200 OK 3.8 kB URL HTTP/2 pppbr.com/bnr.php?section=General&pub=535951&format=300x250&ga=g
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
Hash f312a3fdf7507559d479eb8a0e09e195
4abf758ae68bce95323ce93120c40d5c0bc56a53
05b7487f7ea72f801cf6da7ccc73da4aa409882187493ef5b9c8e5f292695113
GET /bnr.php?section=General&pub=535951&format=300x250&ga=g HTTP/1.1
Host: pppbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:16 GMT
content-type: application/javascript
expires: Sat, 10 Sep 2022 19:34:16 GMT
last-modified: Sat, 10 Sep 2022 19:34:16 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex, nofollow, noarchive, nosnippet
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 670 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 24fb827545f0df82ba9ce873507284b7
9b19dbdd1f7e262643f5c8937bd71b8b4bbf51e9
8c9289a263ad355d61c55a414ea621a8019e6355e2532825d03d39e0e59292b0
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 10 Sep 2022 19:34:17 GMT
date: Sat, 10 Sep 2022 19:34:17 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 670
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a85180b32154958cd6ea4be9389f882e
20f861943bbdfe4f349e3ef9a270ed879ce66cae
abde57928366a5bb848976b8943b2ef916baaf923eadae448d31247cebe00a11
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ABDE57928366A5BB848976B8943B2EF916BAAF923EADAE448D31247CEBE00A11"
Last-Modified: Fri, 09 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11794
Expires: Sat, 10 Sep 2022 22:50:51 GMT
Date: Sat, 10 Sep 2022 19:34:17 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a85180b32154958cd6ea4be9389f882e
20f861943bbdfe4f349e3ef9a270ed879ce66cae
abde57928366a5bb848976b8943b2ef916baaf923eadae448d31247cebe00a11
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ABDE57928366A5BB848976B8943B2EF916BAAF923EADAE448D31247CEBE00A11"
Last-Modified: Fri, 09 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17153
Expires: Sun, 11 Sep 2022 00:20:10 GMT
Date: Sat, 10 Sep 2022 19:34:17 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 17 kB IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
File type gzip compressed data, max compression\012- data
Hash ce1945391ca92664c9ff6fde2c16c3e3
81698385a6c3a53441fa17309123caa3ab9bc96c
0a316486137b0cb4de7aa0b7dc60b16ed8175cede5e05f064f03be9b590c4cb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ABDE57928366A5BB848976B8943B2EF916BAAF923EADAE448D31247CEBE00A11"
Last-Modified: Fri, 09 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17782
Expires: Sun, 11 Sep 2022 00:30:39 GMT
Date: Sat, 10 Sep 2022 19:34:17 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4565d5ee8ad6b58391a060a6ebddc700
ee28dc6140b970057fc5e49f610a10d924c12bc5
009a31268e175f60acd189ce623e4929e0afd70c4be25bde4831935c46d0203a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "009A31268E175F60ACD189CE623E4929E0AFD70C4BE25BDE4831935C46D0203A"
Last-Modified: Thu, 08 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18977
Expires: Sun, 11 Sep 2022 00:50:34 GMT
Date: Sat, 10 Sep 2022 19:34:17 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4565d5ee8ad6b58391a060a6ebddc700
ee28dc6140b970057fc5e49f610a10d924c12bc5
009a31268e175f60acd189ce623e4929e0afd70c4be25bde4831935c46d0203a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "009A31268E175F60ACD189CE623E4929E0AFD70C4BE25BDE4831935C46D0203A"
Last-Modified: Thu, 08 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14502
Expires: Sat, 10 Sep 2022 23:35:59 GMT
Date: Sat, 10 Sep 2022 19:34:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4a8b934802b39ce62326f039ac83cd96
dbfe44bfbec869b99291881ce7c2539d34d7ca9c
c1d5a7058b585d2207c7162b7d0ed62443426b9b2e1262391ad3118884bda651
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6278
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:17 GMT
Last-Modified: Sat, 10 Sep 2022 17:49:39 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
platform.twitter.com/widgets.js
192.229.233.25200 OK 30 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 192.229.233.25:0
Hash 611d8f264fb1c335ad2d2ae77c42d9a9
e40b2042e9b9303d9a81441c836c09ad9c625ae4
2a7216b89b5a987c4b05de1e75bd2a407465df436856cc6126561ecd91b1ab1d
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 319
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sat, 10 Sep 2022 19:34:17 GMT
Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29220
lh3.googleusercontent.com/-mfy8hvuOm9Y/YV6h-olSEsI/AAAAAAAAHhM/487Zj0mjVnsja9FJ-hytUGmI3sJCaWG0gCLcBGAsYHQ/s72-w640-c-h482/gx__feature-laptop--home%25402x.6a5a4106d816.png
142.250.74.1200 OK 2.8 kB URL HTTP/2 lh3.googleusercontent.com/-mfy8hvuOm9Y/YV6h-olSEsI/AAAAAAAAHhM/487Zj0mjVnsja9FJ-hytUGmI3sJCaWG0gCLcBGAsYHQ/s72-w640-c-h482/gx__feature-laptop--home%25402x.6a5a4106d816.png
IP 142.250.74.1:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash c37112d4eb5fa3a159503c127d35c031
b4cd7bf46ea283370f00e683e9ecbb2c2ef0d0be
27475f91fa11cae4ceccc8a7857bc742c5bbf5d6030e46de645c52fef68df7df
GET /-mfy8hvuOm9Y/YV6h-olSEsI/AAAAAAAAHhM/487Zj0mjVnsja9FJ-hytUGmI3sJCaWG0gCLcBGAsYHQ/s72-w640-c-h482/gx__feature-laptop--home%25402x.6a5a4106d816.png HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1e14"
expires: Sun, 11 Sep 2022 19:34:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="gx__feature-laptop--home@2x.6a5a4106d816.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:17 GMT
server: fife
content-length: 2797
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.djidji07.com/2022/09/4.html
142.250.74.179200 OK 151 kB URL HTTP/2 www.djidji07.com/2022/09/4.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59022)
Size 151 kB (150747 bytes)
Hash b513e0980d2c640d416054ba11d44686
873b672a59953f1b717a22c8688dd43b69e74c38
a86c1812022ecae6b40192a5bd629f06a3a53713f491fa4cb1082ceabba979f5
Analyzer Verdict Alert fortinet Phishing
GET /2022/09/4.html HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.djidji07.com/2022/09/pes-2017-efootball-2023.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:17 GMT
date: Sat, 10 Sep 2022 19:34:17 GMT
cache-control: private, max-age=0
last-modified: Sat, 10 Sep 2022 14:20:13 GMT
etag: W/"ba046b0bcc5790cf86732c3e037ecb8f5fcd118b49dc26f53b8a90848206b23e"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 150747
server: GSE
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
142.250.74.163200 OK 157 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (539)
Size 157 kB (157166 bytes)
Hash 026df0dfed2314af108e700900288961
51c2a55bca7d65c549ef138d1294cac2aa98dd96
24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:23:20 GMT
expires: Wed, 06 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 353458
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ebaaa.xyz/08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCdZAdrrCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_99634&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=728&height=90&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1
185.66.201.8200 OK 1.2 kB URL HTTP/2 ebaaa.xyz/08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCdZAdrrCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_99634&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=728&height=90&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1
IP 185.66.201.8:0
ASN #201702 skHosting.eu s.r.o.
File type ASCII text, with very long lines (612)
Hash 8ce83f011e2c8d5a96907b92afa58858
3a5e2e4baa4df5a16c60cf244fa81da40ec866ba
1e29ecf10a4dc8514988dc3110874ed3271ecc5434fa4dc0c8a8379d271edcc2
GET /08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCdZAdrrCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_99634&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=728&height=90&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1 HTTP/1.1
Host: ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: application/javascript
expires: Sun, 01 Jan 2014 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex,nofollow
content-encoding: br
X-Firefox-Spdy: h2
ylx-i.advertica-cdn2.com/aff/pub_upk7x1.png?1480419365
185.66.200.127200 OK 127 kB URL HTTP/2 ylx-i.advertica-cdn2.com/aff/pub_upk7x1.png?1480419365
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type PNG image data, 728 x 90, 8-bit colormap, non-interlaced\012- data
Size 127 kB (127306 bytes)
Hash 072e7d003890c53b9315c76bbd7b6af7
b7f9c0243d22558363fae9bdc02cc08e5ac6412f
17450484f5b47ca4b231204b2e16a60f78a769b6c3afd4e05127efadbe8b55ec
GET /aff/pub_upk7x1.png?1480419365 HTTP/1.1
Host: ylx-i.advertica-cdn2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: image/png
last-modified: Tue, 29 Nov 2016 11:36:05 GMT
etag: W/"583d6825-5642"
expires: Mon, 10 Oct 2022 19:34:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
www.djidji07.com/favicon.ico
142.250.74.179200 OK 977 B URL HTTP/2 www.djidji07.com/favicon.ico
IP 142.250.74.179:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 64783d9032571c9da388bd974d4189cf
0f062d319a13ff6cc19f07bedf424d92c1a50172
bacfaf078a2db0a5419fabcf7e9baf69769e0968e2276ab63db43ff4b15dffdf
GET /favicon.ico HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/2022/09/pes-2017-efootball-2023.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:18 GMT
date: Sat, 10 Sep 2022 19:34:18 GMT
cache-control: private, max-age=86400
last-modified: Sat, 10 Sep 2022 14:20:13 GMT
etag: W/"ba046b0bcc5790cf86732c3e037ecb8f5fcd118b49dc26f53b8a90848206b23e"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 977
server: GSE
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4a8b934802b39ce62326f039ac83cd96
dbfe44bfbec869b99291881ce7c2539d34d7ca9c
c1d5a7058b585d2207c7162b7d0ed62443426b9b2e1262391ad3118884bda651
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6279
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:18 GMT
Last-Modified: Sat, 10 Sep 2022 17:49:39 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/catamaran/v17/o-0bIpQoyXQa2RxT7-5B6Ryxs2E_6n1iPPja5a7duw.woff2
142.250.74.163200 OK 8.6 kB URL HTTP/2 fonts.gstatic.com/s/catamaran/v17/o-0bIpQoyXQa2RxT7-5B6Ryxs2E_6n1iPPja5a7duw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8644, version 1.0\012- data
Hash 965a0a32be97551e060e9c431ccf6c9b
76e696b885b4d6908e3a4898d6f712c6639f944a
62c66e244e405c6dbaa9b1e8cdc8798db8a9459c8fc66766b1d38b616c4137c3
GET /s/catamaran/v17/o-0bIpQoyXQa2RxT7-5B6Ryxs2E_6n1iPPja5a7duw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ebaaa.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 16:53:53 GMT
expires: Sat, 09 Sep 2023 16:53:53 GMT
cache-control: public, max-age=31536000
age: 96025
last-modified: Fri, 24 Jun 2022 18:44:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.djidji07.com/2022/09/4.html
142.250.74.179200 OK 151 kB URL HTTP/2 www.djidji07.com/2022/09/4.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59022)
Size 151 kB (150747 bytes)
Hash b513e0980d2c640d416054ba11d44686
873b672a59953f1b717a22c8688dd43b69e74c38
a86c1812022ecae6b40192a5bd629f06a3a53713f491fa4cb1082ceabba979f5
Analyzer Verdict Alert fortinet Phishing
GET /2022/09/4.html HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.djidji07.com/2022/09/pes-2017-efootball-2023.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:17 GMT
date: Sat, 10 Sep 2022 19:34:17 GMT
cache-control: private, max-age=0
last-modified: Sat, 10 Sep 2022 14:20:13 GMT
etag: W/"ba046b0bcc5790cf86732c3e037ecb8f5fcd118b49dc26f53b8a90848206b23e"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 150747
server: GSE
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjtYTOYFHWp9XuzEeJW47Mo3sPCzJRxNNG_sH4fVkSSTUMaaehvIc6SLvpnk5jlg2vzqaNpcd_5CNNJDUzZyHp0Xu-U8SofcTyHlgQ6zTz0XQySOS0B_P53jQiYJwN-FAX42LDxImkG945JufoD8tpnEuWmCI-TS6kJIfjKBHOl7qYdIO9xc5psiUS12Q/s72-w640-c-h360/@pesfree%20(1).png
142.250.74.1200 OK 9.1 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjtYTOYFHWp9XuzEeJW47Mo3sPCzJRxNNG_sH4fVkSSTUMaaehvIc6SLvpnk5jlg2vzqaNpcd_5CNNJDUzZyHp0Xu-U8SofcTyHlgQ6zTz0XQySOS0B_P53jQiYJwN-FAX42LDxImkG945JufoD8tpnEuWmCI-TS6kJIfjKBHOl7qYdIO9xc5psiUS12Q/s72-w640-c-h360/@pesfree%20(1).png
IP 142.250.74.1:0
Hash 89957c6da13ce2f29dae60abbd892189
961e9f19df420694db5f30679989f0d970c1cf36
9bf3be333afb3272ef28ffa42f155d07d5cc302000fdb4c796eb721ae1572b6a
GET /img/b/R29vZ2xl/AVvXsEjtYTOYFHWp9XuzEeJW47Mo3sPCzJRxNNG_sH4fVkSSTUMaaehvIc6SLvpnk5jlg2vzqaNpcd_5CNNJDUzZyHp0Xu-U8SofcTyHlgQ6zTz0XQySOS0B_P53jQiYJwN-FAX42LDxImkG945JufoD8tpnEuWmCI-TS6kJIfjKBHOl7qYdIO9xc5psiUS12Q/s72-w640-c-h360/@pesfree%20(1).png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1ef1"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="@pesfree (1).png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 6007
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhLJhGTumudU7qe8XnMaMUmJ_p4--wwKUgOibUKtCgfqmN0QVOdUanUqQTQnh_yVvUH9pgK-gTzfp91Fo6iuElTKMnkh4DxkSlVsmJAUc81MXKNmtG1hHPG7NZyx0uEKxuNrzh-sanYdovXliUm9d-xNZ969GvEMh8RdL6s3rTDSOHW1fcA2ei3NOXIlw/s72-w640-h360-c/302433474_435359198627204_8246478374153219008_n.jpg
142.250.74.1200 OK 4.6 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhLJhGTumudU7qe8XnMaMUmJ_p4--wwKUgOibUKtCgfqmN0QVOdUanUqQTQnh_yVvUH9pgK-gTzfp91Fo6iuElTKMnkh4DxkSlVsmJAUc81MXKNmtG1hHPG7NZyx0uEKxuNrzh-sanYdovXliUm9d-xNZ969GvEMh8RdL6s3rTDSOHW1fcA2ei3NOXIlw/s72-w640-h360-c/302433474_435359198627204_8246478374153219008_n.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7ce5860f73f417093579f36d4e019fc9
5d327e67e76a9aa35833d1f85df8ae151367d009
94d20b39472ad7c4c7d326f201194569cc6574876c9495405282cfe127e89b22
GET /img/b/R29vZ2xl/AVvXsEhLJhGTumudU7qe8XnMaMUmJ_p4--wwKUgOibUKtCgfqmN0QVOdUanUqQTQnh_yVvUH9pgK-gTzfp91Fo6iuElTKMnkh4DxkSlVsmJAUc81MXKNmtG1hHPG7NZyx0uEKxuNrzh-sanYdovXliUm9d-xNZ969GvEMh8RdL6s3rTDSOHW1fcA2ei3NOXIlw/s72-w640-h360-c/302433474_435359198627204_8246478374153219008_n.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f71"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="302433474_435359198627204_8246478374153219008_n.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 4637
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgmdKC4gGJhRWMZEuwWSNvP08-S8a17lbvTMZyJKdS326fiDsn7o16xen82qIuF6Byx9zIpAFqsb0G0BAmmdOLHB2j8hWPwKBpM11wrJEiBpNF6a5Xqza7jiORlIMFmNAR4NB8zybCkUnVcZoNISLGn4e4vWqXyOk90RTV5xl0Pw5j_XTMnHxeEmvnPIw/s72-w640-c-h360/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5.jpg
142.250.74.1200 OK 6.6 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgmdKC4gGJhRWMZEuwWSNvP08-S8a17lbvTMZyJKdS326fiDsn7o16xen82qIuF6Byx9zIpAFqsb0G0BAmmdOLHB2j8hWPwKBpM11wrJEiBpNF6a5Xqza7jiORlIMFmNAR4NB8zybCkUnVcZoNISLGn4e4vWqXyOk90RTV5xl0Pw5j_XTMnHxeEmvnPIw/s72-w640-c-h360/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d605d74409498ea15b52392a09596b80
4f26f263aa29d7117fb3b0c321ffc482145ad93c
e0fb76aa53aa8efdb1ac6116ac90b1019a71769f1908d8766f8c5dfbda0ea90c
GET /img/b/R29vZ2xl/AVvXsEgmdKC4gGJhRWMZEuwWSNvP08-S8a17lbvTMZyJKdS326fiDsn7o16xen82qIuF6Byx9zIpAFqsb0G0BAmmdOLHB2j8hWPwKBpM11wrJEiBpNF6a5Xqza7jiORlIMFmNAR4NB8zybCkUnVcZoNISLGn4e4vWqXyOk90RTV5xl0Pw5j_XTMnHxeEmvnPIw/s72-w640-c-h360/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1eeb"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="eFootball PES 2023 PPSSPP Camera PS5.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 6609
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjtYTOYFHWp9XuzEeJW47Mo3sPCzJRxNNG_sH4fVkSSTUMaaehvIc6SLvpnk5jlg2vzqaNpcd_5CNNJDUzZyHp0Xu-U8SofcTyHlgQ6zTz0XQySOS0B_P53jQiYJwN-FAX42LDxImkG945JufoD8tpnEuWmCI-TS6kJIfjKBHOl7qYdIO9xc5psiUS12Q/w345-h180-p-k-no-nu/@pesfree%20(1).png
142.250.74.1200 OK 66 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjtYTOYFHWp9XuzEeJW47Mo3sPCzJRxNNG_sH4fVkSSTUMaaehvIc6SLvpnk5jlg2vzqaNpcd_5CNNJDUzZyHp0Xu-U8SofcTyHlgQ6zTz0XQySOS0B_P53jQiYJwN-FAX42LDxImkG945JufoD8tpnEuWmCI-TS6kJIfjKBHOl7qYdIO9xc5psiUS12Q/w345-h180-p-k-no-nu/@pesfree%20(1).png
IP 142.250.74.1:0
File type PNG image data, 345 x 180, 8-bit/color RGB, non-interlaced\012- data
Hash 7d65cd7744f5ef362fadfde57a5912d9
de1b8aa195a185250a3bb9428d86e32e020ce23c
c6ca4421f2933a9e6ac206dd488429af840bd36d121ea1001f016558ac30dac7
GET /img/b/R29vZ2xl/AVvXsEjtYTOYFHWp9XuzEeJW47Mo3sPCzJRxNNG_sH4fVkSSTUMaaehvIc6SLvpnk5jlg2vzqaNpcd_5CNNJDUzZyHp0Xu-U8SofcTyHlgQ6zTz0XQySOS0B_P53jQiYJwN-FAX42LDxImkG945JufoD8tpnEuWmCI-TS6kJIfjKBHOl7qYdIO9xc5psiUS12Q/w345-h180-p-k-no-nu/@pesfree%20(1).png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1ef1"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="@pesfree (1).png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 65777
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYGPfhjQo2eu2rAracFFjSCP4quBx_H-AQBojlaEA6uzOjIOXHZfg5VpCE8ZwyuxAMfVTrviYhEHP7uHVDqwwnjNez2weoG8fh-7SsUCcJHAxWkSomKdlrrg0vR9WqB2T-rU8ukWA422Ipezv2PXOE7kIj25HUo2-pJzO5vW7B_gTcOylsIfo9zNOr1Q/w345-h180-p-k-no-nu/IMG-20220822-WA0002.jpg
142.250.74.1200 OK 41 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYGPfhjQo2eu2rAracFFjSCP4quBx_H-AQBojlaEA6uzOjIOXHZfg5VpCE8ZwyuxAMfVTrviYhEHP7uHVDqwwnjNez2weoG8fh-7SsUCcJHAxWkSomKdlrrg0vR9WqB2T-rU8ukWA422Ipezv2PXOE7kIj25HUo2-pJzO5vW7B_gTcOylsIfo9zNOr1Q/w345-h180-p-k-no-nu/IMG-20220822-WA0002.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 345x180, components 3\012- data
Hash 686b906bf004ecef82668d69da1da463
8ec65c096cea8b71ece7e798a74516a631472349
c42d61e18df4137ff3583b94811ba932f9a0db1a34c5970df22ad6adc2cff0dd
GET /img/b/R29vZ2xl/AVvXsEhYGPfhjQo2eu2rAracFFjSCP4quBx_H-AQBojlaEA6uzOjIOXHZfg5VpCE8ZwyuxAMfVTrviYhEHP7uHVDqwwnjNez2weoG8fh-7SsUCcJHAxWkSomKdlrrg0vR9WqB2T-rU8ukWA422Ipezv2PXOE7kIj25HUo2-pJzO5vW7B_gTcOylsIfo9zNOr1Q/w345-h180-p-k-no-nu/IMG-20220822-WA0002.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f65"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG-20220822-WA0002.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 41352
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjLlmLdWUQ8eaRG053uvPu65amCkUDDK6RT7JnMxEEtaWCeqQcDZ64xf0qKv_PBzpo4l4jWc3rgrCKHU6KQmcl9tPJLDAn4_PY_PaMUSFpu4dr-7MU0h2Iv3WPgNEvbJn92w6X6pgYSeFVkrA9oNY9iCrDUXK71t15Ht9Jbsgo52R5pctKe-IYhg-_smw/w345-h180-p-k-no-nu/Capture%20d%E2%80%99%C3%A9cran%20(542).png
142.250.74.1200 OK 91 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjLlmLdWUQ8eaRG053uvPu65amCkUDDK6RT7JnMxEEtaWCeqQcDZ64xf0qKv_PBzpo4l4jWc3rgrCKHU6KQmcl9tPJLDAn4_PY_PaMUSFpu4dr-7MU0h2Iv3WPgNEvbJn92w6X6pgYSeFVkrA9oNY9iCrDUXK71t15Ht9Jbsgo52R5pctKe-IYhg-_smw/w345-h180-p-k-no-nu/Capture%20d%E2%80%99%C3%A9cran%20(542).png
IP 142.250.74.1:0
File type PNG image data, 345 x 180, 8-bit/color RGB, non-interlaced\012- data
Hash 789710750880e3a72198ac562ba40ac1
bbc30a7698e340f8484d596d12ee975886a1213b
a4881eb80bf3e2484e7500f6bb5189abd7b0234386556bbfa4601f2a00f0aa85
GET /img/b/R29vZ2xl/AVvXsEjLlmLdWUQ8eaRG053uvPu65amCkUDDK6RT7JnMxEEtaWCeqQcDZ64xf0qKv_PBzpo4l4jWc3rgrCKHU6KQmcl9tPJLDAn4_PY_PaMUSFpu4dr-7MU0h2Iv3WPgNEvbJn92w6X6pgYSeFVkrA9oNY9iCrDUXK71t15Ht9Jbsgo52R5pctKe-IYhg-_smw/w345-h180-p-k-no-nu/Capture%20d%E2%80%99%C3%A9cran%20(542).png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f27"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Capture d__cran (542).png";filename*=UTF-8''Capture%20d%E2%80%99%C3%A9cran%20(542).png
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 91356
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.99200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 08:39:19 GMT
expires: Thu, 07 Sep 2023 08:39:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 31 Aug 2022 22:11:04 GMT
content-type: text/javascript
age: 298499
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj39DTjWCy3LaocIZfCwGaHMU4ZZLwLS_KMYFXb-Bo3ulRcCZoUX7MEnWmPLKh2S_rl4kXYArXhzYvNEdRrrUxoFVGUTkWdlBWhbii2GQkcZ8yL4Roboj47fldv6mtSWEFmR5mU216UeV0hjYO_A8OMa6-DQrE02446eXCR0tnFiC8KW78pON0HEeaAzg/w345-h180-p-k-no-nu/285558095_5112735985475277_8915648788780273678_n.jpg
142.250.74.1200 OK 31 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj39DTjWCy3LaocIZfCwGaHMU4ZZLwLS_KMYFXb-Bo3ulRcCZoUX7MEnWmPLKh2S_rl4kXYArXhzYvNEdRrrUxoFVGUTkWdlBWhbii2GQkcZ8yL4Roboj47fldv6mtSWEFmR5mU216UeV0hjYO_A8OMa6-DQrE02446eXCR0tnFiC8KW78pON0HEeaAzg/w345-h180-p-k-no-nu/285558095_5112735985475277_8915648788780273678_n.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 345x180, components 3\012- data
Hash 00d5e927eebd8f7c8c573269938db822
bc3d1a9503bf7fd7a89e560d9d1d9d1837c086a2
ab93273d6186329edca7b3101deededf989951ed12f89924920f347792b83243
GET /img/b/R29vZ2xl/AVvXsEj39DTjWCy3LaocIZfCwGaHMU4ZZLwLS_KMYFXb-Bo3ulRcCZoUX7MEnWmPLKh2S_rl4kXYArXhzYvNEdRrrUxoFVGUTkWdlBWhbii2GQkcZ8yL4Roboj47fldv6mtSWEFmR5mU216UeV0hjYO_A8OMa6-DQrE02446eXCR0tnFiC8KW78pON0HEeaAzg/w345-h180-p-k-no-nu/285558095_5112735985475277_8915648788780273678_n.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1ef3"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="285558095_5112735985475277_8915648788780273678_n.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 31267
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7Zq53oR2ug2FExOIK5X03ai-Gw6IjBHdS4buQ3V0uY9Xgy0LOEdLbC-inHNvLE-OLxGWj26-8-XkcYpp__iAAbZYbg0COuzkRWIucjwc2f8saoqgm8oGjm230-0JEc4IGW9Gcr3UnkAxIpWy_ZANzbb2eZcUwtOr5HLONeqZ9k4wty0KMEPmlIilrDw/s72-w640-c-h360/2022-07-26_00-13-27.png
142.250.74.1200 OK 12 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7Zq53oR2ug2FExOIK5X03ai-Gw6IjBHdS4buQ3V0uY9Xgy0LOEdLbC-inHNvLE-OLxGWj26-8-XkcYpp__iAAbZYbg0COuzkRWIucjwc2f8saoqgm8oGjm230-0JEc4IGW9Gcr3UnkAxIpWy_ZANzbb2eZcUwtOr5HLONeqZ9k4wty0KMEPmlIilrDw/s72-w640-c-h360/2022-07-26_00-13-27.png
IP 142.250.74.1:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash a6c55a320d96c0a1ae2a025393c5fd90
d78396e4a29bac78d96bc0308188de6c973000cb
e776d29c798004b9388fa658bdaf0bcb71cf7d12d290cb8bd88e38b41cc046fa
GET /img/b/R29vZ2xl/AVvXsEi7Zq53oR2ug2FExOIK5X03ai-Gw6IjBHdS4buQ3V0uY9Xgy0LOEdLbC-inHNvLE-OLxGWj26-8-XkcYpp__iAAbZYbg0COuzkRWIucjwc2f8saoqgm8oGjm230-0JEc4IGW9Gcr3UnkAxIpWy_ZANzbb2eZcUwtOr5HLONeqZ9k4wty0KMEPmlIilrDw/s72-w640-c-h360/2022-07-26_00-13-27.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v265"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2022-07-26_00-13-27.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 11528
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7169ae51d4c8f3b39a7d4929ed49c2f2
f82b3f6fd925816f0c7b0356c48cbddb3c9a063d
25fda1b1bac24f727220bd0549d3dffd17f607e39400e50d63e5320bab5e8d69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25FDA1B1BAC24F727220BD0549D3DFFD17F607E39400E50D63E5320BAB5E8D69"
Last-Modified: Fri, 09 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16954
Expires: Sun, 11 Sep 2022 00:16:52 GMT
Date: Sat, 10 Sep 2022 19:34:18 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7169ae51d4c8f3b39a7d4929ed49c2f2
f82b3f6fd925816f0c7b0356c48cbddb3c9a063d
25fda1b1bac24f727220bd0549d3dffd17f607e39400e50d63e5320bab5e8d69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25FDA1B1BAC24F727220BD0549D3DFFD17F607E39400E50D63E5320BAB5E8D69"
Last-Modified: Fri, 09 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14793
Expires: Sat, 10 Sep 2022 23:40:51 GMT
Date: Sat, 10 Sep 2022 19:34:18 GMT
Connection: keep-alive
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEij0nAhMEklTodbolu3V9xEMWU1gE-5lRftB-02awl5Db0NHtv7XTgn0_aPj207fCKor-3vnOcxpcEIQnZRL4ZZmOOfFUdpeeZJOrcp7y3s2vE4ruXM6vRh6RIKzL-zIKTRI90HoBe7yGqPAT8nyhJ8nOB2Pbr3WfIBbUiwkHQIIMslivnoe5rwYW_VzA/w345-h180-p-k-no-nu/maxresdefafgggult.jpg
142.250.74.1200 OK 39 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEij0nAhMEklTodbolu3V9xEMWU1gE-5lRftB-02awl5Db0NHtv7XTgn0_aPj207fCKor-3vnOcxpcEIQnZRL4ZZmOOfFUdpeeZJOrcp7y3s2vE4ruXM6vRh6RIKzL-zIKTRI90HoBe7yGqPAT8nyhJ8nOB2Pbr3WfIBbUiwkHQIIMslivnoe5rwYW_VzA/w345-h180-p-k-no-nu/maxresdefafgggult.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 345x180, components 3\012- data
Hash 7072b8a2a1c68ef3d8fc7dc893c25252
b56fe95425d6a75d892f77a60e082031bb946a7b
6f73dacf58bac09e9aa2cc257216c2cadda1235e8fed23561d6279b1917808da
GET /img/b/R29vZ2xl/AVvXsEij0nAhMEklTodbolu3V9xEMWU1gE-5lRftB-02awl5Db0NHtv7XTgn0_aPj207fCKor-3vnOcxpcEIQnZRL4ZZmOOfFUdpeeZJOrcp7y3s2vE4ruXM6vRh6RIKzL-zIKTRI90HoBe7yGqPAT8nyhJ8nOB2Pbr3WfIBbUiwkHQIIMslivnoe5rwYW_VzA/w345-h180-p-k-no-nu/maxresdefafgggult.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1eed"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="maxresdefafgggult.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 39383
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash f9b43743831ff91e7846a1d7e76944fb
5d8d6aa228b5c1859590e2c4552da84c1329f641
4487233e7717a5edbe792cf8725c448e1b358147cbe767d62ec9873f777d6074
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1037
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:18 GMT
Last-Modified: Sat, 10 Sep 2022 19:17:02 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7169ae51d4c8f3b39a7d4929ed49c2f2
f82b3f6fd925816f0c7b0356c48cbddb3c9a063d
25fda1b1bac24f727220bd0549d3dffd17f607e39400e50d63e5320bab5e8d69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25FDA1B1BAC24F727220BD0549D3DFFD17F607E39400E50D63E5320BAB5E8D69"
Last-Modified: Fri, 09 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16842
Expires: Sun, 11 Sep 2022 00:15:00 GMT
Date: Sat, 10 Sep 2022 19:34:18 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7169ae51d4c8f3b39a7d4929ed49c2f2
f82b3f6fd925816f0c7b0356c48cbddb3c9a063d
25fda1b1bac24f727220bd0549d3dffd17f607e39400e50d63e5320bab5e8d69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25FDA1B1BAC24F727220BD0549D3DFFD17F607E39400E50D63E5320BAB5E8D69"
Last-Modified: Fri, 09 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17215
Expires: Sun, 11 Sep 2022 00:21:13 GMT
Date: Sat, 10 Sep 2022 19:34:18 GMT
Connection: keep-alive
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhX71HN9sza-Ghcwj0dhTPqB4NlIoy6x8_V3S1AHE9p4KBSe2qK1PeUThJ6Lwg0_adKZqmPqrf7LqKrp_7_CE1rirs33Q96RnOUw-DzlBQqBoj-spN8mX4HGn_Jxlqpl6ixECU-2xUZVjoelRdcPSykvUEF5KI3KfUz0naS6OKiJLOT8hTwpgjIrvT9gg/s72-w640-h360-c/Capture%20d%E2%80%99%C3%A9cran%20(564).png
142.250.74.1200 OK 7.5 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhX71HN9sza-Ghcwj0dhTPqB4NlIoy6x8_V3S1AHE9p4KBSe2qK1PeUThJ6Lwg0_adKZqmPqrf7LqKrp_7_CE1rirs33Q96RnOUw-DzlBQqBoj-spN8mX4HGn_Jxlqpl6ixECU-2xUZVjoelRdcPSykvUEF5KI3KfUz0naS6OKiJLOT8hTwpgjIrvT9gg/s72-w640-h360-c/Capture%20d%E2%80%99%C3%A9cran%20(564).png
IP 142.250.74.1:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash f2e00a0a9ed46883d53b227886ef6936
1fadc348e0f7fa7487ae365592617b1368219421
7138fceb5339dc4d6c49096f4611412bd1a846c92dcd4d9839ba15c809a64cd3
GET /img/b/R29vZ2xl/AVvXsEhX71HN9sza-Ghcwj0dhTPqB4NlIoy6x8_V3S1AHE9p4KBSe2qK1PeUThJ6Lwg0_adKZqmPqrf7LqKrp_7_CE1rirs33Q96RnOUw-DzlBQqBoj-spN8mX4HGn_Jxlqpl6ixECU-2xUZVjoelRdcPSykvUEF5KI3KfUz0naS6OKiJLOT8hTwpgjIrvT9gg/s72-w640-h360-c/Capture%20d%E2%80%99%C3%A9cran%20(564).png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f79"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Capture d__cran (564).png";filename*=UTF-8''Capture%20d%E2%80%99%C3%A9cran%20(564).png
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 7512
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7169ae51d4c8f3b39a7d4929ed49c2f2
f82b3f6fd925816f0c7b0356c48cbddb3c9a063d
25fda1b1bac24f727220bd0549d3dffd17f607e39400e50d63e5320bab5e8d69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25FDA1B1BAC24F727220BD0549D3DFFD17F607E39400E50D63E5320BAB5E8D69"
Last-Modified: Fri, 09 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19696
Expires: Sun, 11 Sep 2022 01:02:34 GMT
Date: Sat, 10 Sep 2022 19:34:18 GMT
Connection: keep-alive
goo.gl/jF5QWo
142.250.74.110403 Forbidden 6.7 kB IP 142.250.74.110:0
Hash f55a653c4b8bbb35a5c7f2539cc0bcc5
de842226f2ae49d9fc9edc5d9ad974ad494e5b30
3e047e97df973b4d509b182c0782d470aa99b3ccc2da4e41d2bf84883ccef0b1
GET /jF5QWo HTTP/1.1
Host: goo.gl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 10 Sep 2022 19:34:16 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000
content-security-policy: require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport, script-src 'nonce-Ekn3LEYIcoYyVLKBJG4sTA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/DurableDeepLinkUi/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjRAN3iblLKi1EIOTsTi1ARvMe2y7VYJzzP35ABY4oRS4vmfytMfpk_bBjK9tbdy4QxcjjBvBf5pQx_FpxCVAPHCifC3dczi2oXv95L0XjMwnZzXLCi24t3n8B3gPVe84wE5M8dxx5rcrRMOYtrOxuQHdh5Nvwe-i6fYLodJ-dRawJBm8FNY32KCl6UcQ/s72-w640-h360-c/%D8%A8%D8%A7%D8%A8%D8%A7.jpg
142.250.74.1200 OK 5.5 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjRAN3iblLKi1EIOTsTi1ARvMe2y7VYJzzP35ABY4oRS4vmfytMfpk_bBjK9tbdy4QxcjjBvBf5pQx_FpxCVAPHCifC3dczi2oXv95L0XjMwnZzXLCi24t3n8B3gPVe84wE5M8dxx5rcrRMOYtrOxuQHdh5Nvwe-i6fYLodJ-dRawJBm8FNY32KCl6UcQ/s72-w640-h360-c/%D8%A8%D8%A7%D8%A8%D8%A7.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash c59f569b8021ad16d49bc89fbf10c2ab
be91d4a7195a6709b919e6660c00ba6b0704fc29
644a68c0be95c312717d3bade5523104e3dcbbb6e17c24e38c6368ad092325a2
GET /img/b/R29vZ2xl/AVvXsEjRAN3iblLKi1EIOTsTi1ARvMe2y7VYJzzP35ABY4oRS4vmfytMfpk_bBjK9tbdy4QxcjjBvBf5pQx_FpxCVAPHCifC3dczi2oXv95L0XjMwnZzXLCi24t3n8B3gPVe84wE5M8dxx5rcrRMOYtrOxuQHdh5Nvwe-i6fYLodJ-dRawJBm8FNY32KCl6UcQ/s72-w640-h360-c/%D8%A8%D8%A7%D8%A8%D8%A7.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2a1"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="____.jpg";filename*=UTF-8''%D8%A8%D8%A7%D8%A8%D8%A7.jpg
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 5464
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibPf3798P9W-YAgAEJxZlrdWJQxJ2KpkJ-R9mUIT0YgsQCvoqOhSPFu4kEamDGiLfYPMpA18ii9cyCbhb-HrcVa8KF1gGzBzAWUtDXo69Ck9OjYTog0CB22egaL6AbbIubKyz7GWExbtxmH8TH7FH0uWGN4yuCIT5xhvZr6UOffsnYbIYmf5uBMDpvHg/w345-h180-p-k-no-nu/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5%20Android%20Offline%20600MB.jpg
142.250.74.1200 OK 46 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibPf3798P9W-YAgAEJxZlrdWJQxJ2KpkJ-R9mUIT0YgsQCvoqOhSPFu4kEamDGiLfYPMpA18ii9cyCbhb-HrcVa8KF1gGzBzAWUtDXo69Ck9OjYTog0CB22egaL6AbbIubKyz7GWExbtxmH8TH7FH0uWGN4yuCIT5xhvZr6UOffsnYbIYmf5uBMDpvHg/w345-h180-p-k-no-nu/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5%20Android%20Offline%20600MB.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 345x180, components 3\012- data
Hash 809516c1cc7e6108e86c94f5f018c5a6
18e59add0288756b136efec78e1b158f8420d596
6ca82b0025fec01b89dee907e866c778cbc2572307b50e0a812d13b5c8f467a6
GET /img/b/R29vZ2xl/AVvXsEibPf3798P9W-YAgAEJxZlrdWJQxJ2KpkJ-R9mUIT0YgsQCvoqOhSPFu4kEamDGiLfYPMpA18ii9cyCbhb-HrcVa8KF1gGzBzAWUtDXo69Ck9OjYTog0CB22egaL6AbbIubKyz7GWExbtxmH8TH7FH0uWGN4yuCIT5xhvZr6UOffsnYbIYmf5uBMDpvHg/w345-h180-p-k-no-nu/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5%20Android%20Offline%20600MB.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f73"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="eFootball PES 2023 PPSSPP Camera PS5 Android Offline 600MB.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 45463
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjxEf1LYQZ7ALLTPr-BwCKsORg19cXEh5e-r4Q-t-O2qCCO_1dTui4PzJQ8WRk4QjtDSM1-BblBgY3fxuHyeGyJJ1PGiAtOisMlvLn5QAh6z59USwMbHCFI1CGSGvq5qjOwOdVFZMxvRRFHDVgwF6G-uhBNmpQ_h6ZYIZ7au4cZ4cRrvQiJAPkorIb8qQ/w345-h180-p-k-no-nu/296104129_468340008632419_3036972586405387778_n.jpg
142.250.74.1200 OK 37 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjxEf1LYQZ7ALLTPr-BwCKsORg19cXEh5e-r4Q-t-O2qCCO_1dTui4PzJQ8WRk4QjtDSM1-BblBgY3fxuHyeGyJJ1PGiAtOisMlvLn5QAh6z59USwMbHCFI1CGSGvq5qjOwOdVFZMxvRRFHDVgwF6G-uhBNmpQ_h6ZYIZ7au4cZ4cRrvQiJAPkorIb8qQ/w345-h180-p-k-no-nu/296104129_468340008632419_3036972586405387778_n.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 345x180, components 3\012- data
Hash 74ff5ec68cf5de9dbdcd674bae441e88
86532e7691a5e40081cbbf3de74acaadee4e07d5
0506ed4c946dd0176f94e4dc6f4aa50bdb93ed2c3f5eef682e3e2b54b5054dc8
GET /img/b/R29vZ2xl/AVvXsEjxEf1LYQZ7ALLTPr-BwCKsORg19cXEh5e-r4Q-t-O2qCCO_1dTui4PzJQ8WRk4QjtDSM1-BblBgY3fxuHyeGyJJ1PGiAtOisMlvLn5QAh6z59USwMbHCFI1CGSGvq5qjOwOdVFZMxvRRFHDVgwF6G-uhBNmpQ_h6ZYIZ7au4cZ4cRrvQiJAPkorIb8qQ/w345-h180-p-k-no-nu/296104129_468340008632419_3036972586405387778_n.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f31"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="296104129_468340008632419_3036972586405387778_n.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 37139
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
o-oo.ooo/js/yxpup.js
185.66.201.42200 OK 38 kB IP 185.66.201.42:0
ASN #201702 skHosting.eu s.r.o.
File type ASCII text, with very long lines (65536), with no line terminators
Hash f7e463a22a3ddc0a839a6549483dace2
4d82feaf34d4e5c15a8a657514aecf75e53a5454
8b22405ba6321ac8c33132a6eff535f705272b591b5236992d46493ad9367c33
Analyzer Verdict Alert fortinet Malware
GET /js/yxpup.js HTTP/1.1
Host: o-oo.ooo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: application/javascript
last-modified: Wed, 20 Jul 2022 07:40:48 GMT
etag: W/"62d7b180-15963"
content-encoding: br
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEij0nAhMEklTodbolu3V9xEMWU1gE-5lRftB-02awl5Db0NHtv7XTgn0_aPj207fCKor-3vnOcxpcEIQnZRL4ZZmOOfFUdpeeZJOrcp7y3s2vE4ruXM6vRh6RIKzL-zIKTRI90HoBe7yGqPAT8nyhJ8nOB2Pbr3WfIBbUiwkHQIIMslivnoe5rwYW_VzA/s72-w640-c-h360/maxresdefafgggult.jpg
142.250.74.1200 OK 5.7 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEij0nAhMEklTodbolu3V9xEMWU1gE-5lRftB-02awl5Db0NHtv7XTgn0_aPj207fCKor-3vnOcxpcEIQnZRL4ZZmOOfFUdpeeZJOrcp7y3s2vE4ruXM6vRh6RIKzL-zIKTRI90HoBe7yGqPAT8nyhJ8nOB2Pbr3WfIBbUiwkHQIIMslivnoe5rwYW_VzA/s72-w640-c-h360/maxresdefafgggult.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 87fadc0392bee55d0153a5247d5298e3
b66ee797945b42b13ace2bcf6f0b9462bb1a5e6b
77a1dfbaa798c2ed70261101711520cdee853e43a208f87856b70cb368e7e695
GET /img/b/R29vZ2xl/AVvXsEij0nAhMEklTodbolu3V9xEMWU1gE-5lRftB-02awl5Db0NHtv7XTgn0_aPj207fCKor-3vnOcxpcEIQnZRL4ZZmOOfFUdpeeZJOrcp7y3s2vE4ruXM6vRh6RIKzL-zIKTRI90HoBe7yGqPAT8nyhJ8nOB2Pbr3WfIBbUiwkHQIIMslivnoe5rwYW_VzA/s72-w640-c-h360/maxresdefafgggult.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1eed"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="maxresdefafgggult.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 5692
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhLJhGTumudU7qe8XnMaMUmJ_p4--wwKUgOibUKtCgfqmN0QVOdUanUqQTQnh_yVvUH9pgK-gTzfp91Fo6iuElTKMnkh4DxkSlVsmJAUc81MXKNmtG1hHPG7NZyx0uEKxuNrzh-sanYdovXliUm9d-xNZ969GvEMh8RdL6s3rTDSOHW1fcA2ei3NOXIlw/w345-h180-p-k-no-nu/302433474_435359198627204_8246478374153219008_n.jpg
142.250.74.1200 OK 27 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhLJhGTumudU7qe8XnMaMUmJ_p4--wwKUgOibUKtCgfqmN0QVOdUanUqQTQnh_yVvUH9pgK-gTzfp91Fo6iuElTKMnkh4DxkSlVsmJAUc81MXKNmtG1hHPG7NZyx0uEKxuNrzh-sanYdovXliUm9d-xNZ969GvEMh8RdL6s3rTDSOHW1fcA2ei3NOXIlw/w345-h180-p-k-no-nu/302433474_435359198627204_8246478374153219008_n.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 345x180, components 3\012- data
Hash 46e0a3ec615541e146a163d9ae77e407
b79d165ccf6c21e313d919bf6346aaea2d4ff26c
1149e9bb3ff42fee891e56fdd18d988bb5368606282f9014ded22e9dd7fd8ea6
GET /img/b/R29vZ2xl/AVvXsEhLJhGTumudU7qe8XnMaMUmJ_p4--wwKUgOibUKtCgfqmN0QVOdUanUqQTQnh_yVvUH9pgK-gTzfp91Fo6iuElTKMnkh4DxkSlVsmJAUc81MXKNmtG1hHPG7NZyx0uEKxuNrzh-sanYdovXliUm9d-xNZ969GvEMh8RdL6s3rTDSOHW1fcA2ei3NOXIlw/w345-h180-p-k-no-nu/302433474_435359198627204_8246478374153219008_n.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f71"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="302433474_435359198627204_8246478374153219008_n.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 27301
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgUjg1Ue2wi3vHmYl5vgu6x_BaKU4RtzAcXliA9Wwv584UGKL_YNLHk3rQZMLGG4UmaRpvMojxOZGsKQisDi1VPnFKE01rDukjhVJdxgSSrRnM-CxYP-M0eA1ldODzG7g8GtDxLuX1-R0Z8rjKGZbGgK4QChdiUwsDx5okn2vapjkNalVuRmXHXBE1InQ/w640-h360/2022-09-07_21-57-46.jpg
142.250.74.1200 OK 124 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgUjg1Ue2wi3vHmYl5vgu6x_BaKU4RtzAcXliA9Wwv584UGKL_YNLHk3rQZMLGG4UmaRpvMojxOZGsKQisDi1VPnFKE01rDukjhVJdxgSSrRnM-CxYP-M0eA1ldODzG7g8GtDxLuX1-R0Z8rjKGZbGgK4QChdiUwsDx5okn2vapjkNalVuRmXHXBE1InQ/w640-h360/2022-09-07_21-57-46.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x360, components 3\012- data
Size 124 kB (123899 bytes)
Hash a2a9580aa4e306c1ddce08968ef9cb95
5b7b39804b28e7903aa8395b83892e20acf3f6ae
7d8bb66fb022a3efd88f08bc722c8549be18183e14209e66002468b78e858e4b
GET /img/b/R29vZ2xl/AVvXsEgUjg1Ue2wi3vHmYl5vgu6x_BaKU4RtzAcXliA9Wwv584UGKL_YNLHk3rQZMLGG4UmaRpvMojxOZGsKQisDi1VPnFKE01rDukjhVJdxgSSrRnM-CxYP-M0eA1ldODzG7g8GtDxLuX1-R0Z8rjKGZbGgK4QChdiUwsDx5okn2vapjkNalVuRmXHXBE1InQ/w640-h360/2022-09-07_21-57-46.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f7b"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2022-09-07_21-57-46.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 123899
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=7a90435fce66f15b6eb4136075ec33317f3717ca
104.244.42.136200 OK 308 B URL HTTP/2 syndication.twitter.com/settings?session_id=7a90435fce66f15b6eb4136075ec33317f3717ca
IP 104.244.42.136:0
File type JSON data\012- , ASCII text, with very long lines (709), with no line terminators
Hash d8e2887342b363c09cd19d9b36199dbe
47c62bf9e3e60b6ab0b61eae608db43c04f7bea4
c38e646e125827b7520415ecaf228031c848266838cd894fa44a41686fedc553
GET /settings?session_id=7a90435fce66f15b6eb4136075ec33317f3717ca HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 19:34:17 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sat, 10 Sep 2022 19:34:18 GMT
content-length: 308
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: a8de0bd97197e80715d19dc3fb57d643401550c7be1ecd346eb63675d6879450
X-Firefox-Spdy: h2
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
142.250.74.163200 OK 34 kB URL HTTP/2 www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2453)
Hash 5eb6a8c4562d879ad4e58c8d6a4058fa
8e6ca9574740563bb7194c670f2db856e884c1ea
f45309349cf9a6da03cabe810d83e9d6004bd98d30108ecc3257d668a055ec96
GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 33858
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 19:31:34 GMT
expires: Sat, 10 Sep 2022 20:21:34 GMT
cache-control: public, max-age=3000
last-modified: Thu, 08 Sep 2022 14:44:35 GMT
content-type: text/javascript
age: 164
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true
216.58.207.206200 OK 137 B URL HTTP/2 play.google.com/log?format=json&hasfast=true
IP 216.58.207.206:0
Hash e6e028f5e5a3f03813c412df69d7b7a1
72f85fad501e0083b27285672eadfd16ed568854
e459a9373b174123bc6147d306215728a3afa1de8fb91bdcee40b67115e4c748
POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1512
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 10 Sep 2022 19:34:18 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+624; expires=Mon, 09-Sep-2024 19:34:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 10 Sep 2022 19:34:18 GMT
X-Firefox-Spdy: h2
www.djidji07.com/2022/09/2023-smokepatch-pes-2017_6.html
142.250.74.179200 OK 151 kB URL HTTP/2 www.djidji07.com/2022/09/2023-smokepatch-pes-2017_6.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58790)
Size 151 kB (150969 bytes)
Hash 2860ee90c050658a63912a585205f95d
d11f94d9805c71dbcb76f77bde0961bfb1563e4e
4fa31a57482cf86f5634a0efd950a503a9e4d34f9b81128438b2aa9a45c6a993
Analyzer Verdict Alert fortinet Phishing
GET /2022/09/2023-smokepatch-pes-2017_6.html HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.djidji07.com/2022/09/pes-2017-efootball-2023.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:18 GMT
date: Sat, 10 Sep 2022 19:34:18 GMT
cache-control: private, max-age=0
last-modified: Sat, 10 Sep 2022 14:20:13 GMT
etag: W/"ba046b0bcc5790cf86732c3e037ecb8f5fcd118b49dc26f53b8a90848206b23e"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 150969
server: GSE
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/tornado.jpg
185.66.200.127200 OK 43 kB URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/tornado.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x752, components 3\012- data
Hash 991f18e7137809c4c35552400334f2eb
f9d1784820ad71296a58eb507b970c154495f2e2
e2b70097fdaba35ad3c4081bd3736025516c24f728f680f2300505d4980c1593
GET /genericImages/breaking-news/tornado.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:25:36 GMT
vary: Accept-Encoding
etag: W/"5d9da790-a397"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/tsunami.jpg
185.66.200.127200 OK 134 kB URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/tsunami.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Size 134 kB (134493 bytes)
Hash f30ea3d5ccb7b88b0c1041c71bda2006
424b273bccb440bacf98af31e3bd555b3ecb536d
8da67d884e5687b93a3b54ecfb30d93fd0c1b9db27b2547aef72999cda237c1e
GET /genericImages/breaking-news/tsunami.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:25:19 GMT
vary: Accept-Encoding
etag: W/"5d9da77f-15e0e"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
www.djidji07.com/2022/09/2023-smokepatch-pes-2017_6.html
142.250.74.179200 OK 151 kB URL HTTP/2 www.djidji07.com/2022/09/2023-smokepatch-pes-2017_6.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58790)
Size 151 kB (150970 bytes)
Hash d7b31ff1bddb7dcd3d820995c24907f1
d49be3efa62a827d6bb4bb13f6f30194e1fd538e
7d0b90a5932d9c5ab91d57371dfd33fdc22e50d745520697efb9454169060cf3
Analyzer Verdict Alert fortinet Phishing
GET /2022/09/2023-smokepatch-pes-2017_6.html HTTP/1.1
Host: www.djidji07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.djidji07.com/2022/09/pes-2017-efootball-2023.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:18 GMT
date: Sat, 10 Sep 2022 19:34:18 GMT
cache-control: private, max-age=0
last-modified: Sat, 10 Sep 2022 14:20:13 GMT
etag: W/"ba046b0bcc5790cf86732c3e037ecb8f5fcd118b49dc26f53b8a90848206b23e"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 150970
server: GSE
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/fire.jpg
185.66.200.127200 OK 98 kB URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/fire.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Hash d2db288c416f9c5eb2cd2d9da339916a
23c7b7acef5f6da23993636098be40403a723836
9c9912933eeac0c79b35abae05111bddb41ec86e145a24a2e2cff331cf3b1bc2
GET /genericImages/breaking-news/fire.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:26:37 GMT
vary: Accept-Encoding
etag: W/"5d9da7cd-17dc1"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/shark.jpg
185.66.200.127200 OK 104 kB URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/shark.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
Size 104 kB (104434 bytes)
Hash dcb9d479fc6dfff58a2b7f584cecf626
3ff7e148f33cfe49f8abacc79c28bc8435e110cc
ed58c39cc97d76176664338a386ada59567a4450ffd0432a7d3e382dd69264ed
GET /genericImages/breaking-news/shark.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:26:04 GMT
vary: Accept-Encoding
etag: W/"5d9da7ac-197f9"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/rocket.jpg
185.66.200.127200 OK 90 kB URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/rocket.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
Hash 1a27df99645ddec8e81d2e178b0e662c
ade6990c63d952c4e7b54f72f5d3affc9736cab3
88a23e329108735b872f275e1e72a830b37ed08c176dc40e8d21e6e98d21e30d
GET /genericImages/breaking-news/rocket.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:26:15 GMT
vary: Accept-Encoding
etag: W/"5d9da7b7-160b5"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
ebaaa.xyz/148bcf03fc/bb6bac9292/D07FBF61.png
185.66.201.8200 OK 7.2 kB URL HTTP/2 ebaaa.xyz/148bcf03fc/bb6bac9292/D07FBF61.png
IP 185.66.201.8:0
ASN #201702 skHosting.eu s.r.o.
File type ASCII text, with very long lines (1189)
Hash 35c37c2aa69e7e50b06db6c77fbd46b4
5395c8282f63113eb44742bda166d8dde162f73d
e9cf53d06790d2cdc10a65d857561ede3ef192321a1a65068c0d734418a62e5f
GET /148bcf03fc/bb6bac9292/D07FBF61.png HTTP/1.1
Host: ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_83875&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=300&height=250&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1&randomA=194877271885&realRef=aHFIREg2bGRTWGwvcUh0bHpEZVlPRmhFNHFtRUdMTUptYlFndzU5dC9uND0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: application/javascript
expires: Sun, 01 Jan 2014 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex,nofollow
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7458261eb0cd974a9ea7da4965b8205e
898c0cad70a4c1c22b6b2b968ba10cac8502d502
d7c3b3cf0348fe1e3c6180c6b9d342af2b7548111dc045aa4f3277089c31a6a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D7C3B3CF0348FE1E3C6180C6B9D342AF2B7548111DC045AA4F3277089C31A6A5"
Last-Modified: Sat, 10 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8379
Expires: Sat, 10 Sep 2022 21:53:58 GMT
Date: Sat, 10 Sep 2022 19:34:19 GMT
Connection: keep-alive
cdn.jsdelivr.net/gh/Abdo-Hegazi/wdbloog@6bdae011/wdbloogablock.js
151.101.85.229200 OK 62 kB URL HTTP/2 cdn.jsdelivr.net/gh/Abdo-Hegazi/wdbloog@6bdae011/wdbloogablock.js
IP 151.101.85.229:0
File type Unicode text, UTF-8 text, with very long lines (65300)
Hash 3b02df9070b7c29da47a6648fb8fc605
be85d3bcd0d0a4b69df62e2ece5e521fa996123a
afa462c45233e2f8db2259b6a98590a15015da64de04f88d532fb108e8679360
GET /gh/Abdo-Hegazi/wdbloog@6bdae011/wdbloogablock.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.djidji07.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 6bdae011
x-jsd-version-type: branch
etag: W/"1648b-ZlSERJEr1qXnAA1jGd0QGwxRXIA"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 10 Sep 2022 19:34:20 GMT
age: 20007
x-served-by: cache-fra19169-FRA, cache-bma1663-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 62239
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash c9cf6940ebb1e0180f8f61f96575800f
d0828285a6725bc2a27b8a3265570bf5e2b18011
a391a381d915b702b6e7220a4020a871ddb1bb132a6b92d3edddb580ead8da45
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 19:34:20 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "2B334171E1683D7A1108B2D754CDB6D2BA47EF83"
Expires: Sun, 11 Sep 2022 06:00:00 GMT
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 687
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748a99b779d60b4d-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 55d14c90ec16748861894ce8f82eafcd
f3ebe8972971c1201c1ec7c533f019f79c36cde5
fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 73 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
Hash 755a326a688b064094ea5a2fb154f8d1
ad84b480b455862d516f265ebe71ab50817fe8c2
3a871d55a62cdc71441d2fcfdc67332e3b417e45ea9f5c7dbbc8fed488d4e344
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Sat, 10 Sep 2022 19:34:20 GMT
expires: Sat, 10 Sep 2022 19:34:20 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3777785730997181841
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57423
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 97e5566c275b9fe27464690811145846
fa8973c8004db59d9a8fd46e9743fb6c9a8d3efd
e77cd1a4510c736e628aa10719f7694d7c7fef15adf1a449d800f90cde76fb88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 19:34:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a40490a-216d-49e4-bfae-20c0ba1e9616.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a40490a-216d-49e4-bfae-20c0ba1e9616.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0fd70eea0aa5e563509d9e2c0ae25050
75438d4566755201604bebadec4b699ba585b62b
584534a66a490a6a5f217b484edc5aebbb3076f70280984fecd724138420331c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a40490a-216d-49e4-bfae-20c0ba1e9616.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4434
x-amzn-requestid: d2239717-afaf-485c-b238-e421f3f2750f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjs3GsCoAMFTYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb31e-4d779e9e395f30db784955e7;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: hW6DClTvHw4WjHttC_4SBQBO0E8cAi1GnufETnH2OzaUP0EAj0S14g==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:54:41 GMT
age: 77982
etag: "75438d4566755201604bebadec4b699ba585b62b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pppbr.com/show.php?u19631662838457=true&ad=673873&f=300x250&a=395578&cri=0&s=ZjJjNGJlNzJlZWUyM2M2MjFiNzdiNWUxM2ExODZlZDA=&u=535951&si=165886968&di=40785344&ci=16&h=cf16a86680c3a99b8449d67e67eee58b&cc=NO&https=1&useAf=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&ar=aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==
185.66.200.220200 OK 0 B URL HTTP/2 pppbr.com/show.php?u19631662838457=true&ad=673873&f=300x250&a=395578&cri=0&s=ZjJjNGJlNzJlZWUyM2M2MjFiNzdiNWUxM2ExODZlZDA=&u=535951&si=165886968&di=40785344&ci=16&h=cf16a86680c3a99b8449d67e67eee58b&cc=NO&https=1&useAf=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&ar=aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
GET /show.php?u19631662838457=true&ad=673873&f=300x250&a=395578&cri=0&s=ZjJjNGJlNzJlZWUyM2M2MjFiNzdiNWUxM2ExODZlZDA=&u=535951&si=165886968&di=40785344&ci=16&h=cf16a86680c3a99b8449d67e67eee58b&cc=NO&https=1&useAf=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&ar=aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw== HTTP/1.1
Host: pppbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/bnr_xload.php?section=General&pub=535951&format=300x250&ga=g&xt=166283845657981&xtt=6663162
Cookie: used_ad2784267=1; total_impressions=1; cpa_673873=300x250_165886968_0; used_ad2633134=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:17 GMT
last-modified: Sat, 10 Sep 2022 19:34:17 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex, nofollow, noarchive, nosnippet
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.djidji07.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
216.58.207.237200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.djidji07.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
IP 216.58.207.237:0
GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.djidji07.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 10 Sep 2022 19:34:18 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-krwF9IkxtqC3rgW8j12M2Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ylx-i.advertica-cdn2.com/aff/pub_s9c2nm.png?1480419364
185.66.200.127200 OK 0 B URL HTTP/2 ylx-i.advertica-cdn2.com/aff/pub_s9c2nm.png?1480419364
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
GET /aff/pub_s9c2nm.png?1480419364 HTTP/1.1
Host: ylx-i.advertica-cdn2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: image/png
last-modified: Tue, 29 Nov 2016 11:36:04 GMT
etag: W/"583d6824-68a8"
expires: Mon, 10 Oct 2022 19:34:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/monster.jpg
185.66.200.127200 OK 0 B URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/monster.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
GET /genericImages/breaking-news/monster.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:26:27 GMT
vary: Accept-Encoding
etag: W/"5d9da7c3-6f44"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
dz4ad.com/display/items.php?3714&1875&336&280&1
104.21.93.88200 OK 0 B URL HTTP/2 dz4ad.com/display/items.php?3714&1875&336&280&1
IP 104.21.93.88:0
GET /display/items.php?3714&1875&336&280&1 HTTP/1.1
Host: dz4ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 19:34:16 GMT
content-type: application/javascript
x-powered-by: PHP/7.2.29
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Sat, 10 Sep 2022 19:34:16 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f5N48S9Ns9UzgEBCK6VNlTPAUmKBAke42SAXFcN8BETbjIk90trNVSMPop7eGD9XzWXm54FBfQmdSkdMBd6AU10BMplEBUKQVPEgBDVIooVAc0YW24iGnPEAP6I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 748a99a1086fb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ebaaa.xyz/148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_83875&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=300&height=250&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1&randomA=194877271885&realRef=aHFIREg2bGRTWGwvcUh0bHpEZVlPRmhFNHFtRUdMTUptYlFndzU5dC9uND0=
185.66.201.8200 OK 0 B URL HTTP/2 ebaaa.xyz/148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_83875&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=300&height=250&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1&randomA=194877271885&realRef=aHFIREg2bGRTWGwvcUh0bHpEZVlPRmhFNHFtRUdMTUptYlFndzU5dC9uND0=
IP 185.66.201.8:0
ASN #201702 skHosting.eu s.r.o.
GET /148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_83875&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=300&height=250&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1&randomA=194877271885&realRef=aHFIREg2bGRTWGwvcUh0bHpEZVlPRmhFNHFtRUdMTUptYlFndzU5dC9uND0= HTTP/1.1
Host: ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: text/html; charset=UTF-8
set-cookie: total_impressions=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; secure; SameSite=None
used_ad2633134=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure; SameSite=None
expires: Sun, 01 Jan 2014 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex,nofollow
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/DJIDJI07/
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/DJIDJI07/
IP 157.240.200.35:0
GET /DJIDJI07/ HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
accept-ch-lifetime: 4838400
accept-ch: sec-ch-prefers-color-scheme
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/comet_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: qqf16nue0bh/VeVm/HwgoWNKupo4rEEsyYlcjoIkEVEaueCxiN6McgsYjbx22SisUQ62t8RZeWKJIkmnoLfspw==
date: Sat, 10 Sep 2022 19:34:18 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7Zq53oR2ug2FExOIK5X03ai-Gw6IjBHdS4buQ3V0uY9Xgy0LOEdLbC-inHNvLE-OLxGWj26-8-XkcYpp__iAAbZYbg0COuzkRWIucjwc2f8saoqgm8oGjm230-0JEc4IGW9Gcr3UnkAxIpWy_ZANzbb2eZcUwtOr5HLONeqZ9k4wty0KMEPmlIilrDw/w345-h180-p-k-no-nu/2022-07-26_00-13-27.png
142.250.74.1200 OK 0 B URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7Zq53oR2ug2FExOIK5X03ai-Gw6IjBHdS4buQ3V0uY9Xgy0LOEdLbC-inHNvLE-OLxGWj26-8-XkcYpp__iAAbZYbg0COuzkRWIucjwc2f8saoqgm8oGjm230-0JEc4IGW9Gcr3UnkAxIpWy_ZANzbb2eZcUwtOr5HLONeqZ9k4wty0KMEPmlIilrDw/w345-h180-p-k-no-nu/2022-07-26_00-13-27.png
IP 142.250.74.1:0
GET /img/b/R29vZ2xl/AVvXsEi7Zq53oR2ug2FExOIK5X03ai-Gw6IjBHdS4buQ3V0uY9Xgy0LOEdLbC-inHNvLE-OLxGWj26-8-XkcYpp__iAAbZYbg0COuzkRWIucjwc2f8saoqgm8oGjm230-0JEc4IGW9Gcr3UnkAxIpWy_ZANzbb2eZcUwtOr5HLONeqZ9k4wty0KMEPmlIilrDw/w345-h180-p-k-no-nu/2022-07-26_00-13-27.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v265"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2022-07-26_00-13-27.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 111612
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.css
104.18.11.207200 OK 0 B URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.css
IP 104.18.11.207:0
GET /font-awesome/4.7.0/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 19:34:16 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:31
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: c44f8bcfa4de0b33355df52d479cfae3
cdn-cache: HIT
cf-cache-status: HIT
age: 10948717
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 748a999edd34b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/water.jpg
185.66.200.127200 OK 0 B URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/water.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
GET /genericImages/breaking-news/water.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:24:25 GMT
vary: Accept-Encoding
etag: W/"5d9da749-1ac32"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
rawgit.com/skimi01/Amni8/master/chat-head-1.js
104.21.63.184200 OK 0 B URL HTTP/2 rawgit.com/skimi01/Amni8/master/chat-head-1.js
IP 104.21.63.184:0
GET /skimi01/Amni8/master/chat-head-1.js HTTP/1.1
Host: rawgit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: application/javascript;charset=utf-8
x-content-type-options: nosniff
x-robots-tag: none
access-control-allow-origin: *
link: <https://rawgit.com/>; rel="sunset"; title="RawGit will soon shut down. Please stop using it."
sunset: Tue, 01 Oct 2019 00:00:00 GMT
etag: W/"b04bc9a0a17740857faeac9f6a5b92dfeb772360a34c3874d931ae6ddc6227ae"
cache-control: max-age=3600, s-maxage=300
vary: Accept-Encoding
rawgit-cache-status: HIT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k3IJilfnuiFH6h3FB%2B%2FutOnHBsTdMgcaHNWJj5ki2c%2FEYdarswVLOqy3Dmfap%2Fzz6g2f52otfm3OGQ7l%2Fz%2FZH1x9SDVAwKA4CNBhSvl%2FhSI0HHEjUNsLBXT5vYSn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; preload
server: cloudflare
cf-ray: 748a99a508aeb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ebaaa.xyz/08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCdZAdrrCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_99634&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=728&height=90&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1&randomA=513489532506&realRef=aHFIREg2bGRTWGwvcUh0bHpEZVlPRmhFNHFtRUdMTUptYlFndzU5dC9uND0=
185.66.201.8200 OK 0 B URL HTTP/2 ebaaa.xyz/08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCdZAdrrCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_99634&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=728&height=90&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1&randomA=513489532506&realRef=aHFIREg2bGRTWGwvcUh0bHpEZVlPRmhFNHFtRUdMTUptYlFndzU5dC9uND0=
IP 185.66.201.8:0
ASN #201702 skHosting.eu s.r.o.
GET /08c73116f6/82b174e040/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCdZAdrrCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_99634&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&capSettings=cHBwYnIuY29tfDUwMDAwfDI0fDYxMzk4&adApiR=loaded_string_6561635b0bce9d250429df012c0426f88d0bd_2784267_1662838457.0218_85097&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=728&height=90&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1&randomA=513489532506&realRef=aHFIREg2bGRTWGwvcUh0bHpEZVlPRmhFNHFtRUdMTUptYlFndzU5dC9uND0= HTTP/1.1
Host: ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: text/html; charset=UTF-8
set-cookie: total_impressions=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; secure; SameSite=None
used_ad2784267=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure; SameSite=None
expires: Sun, 01 Jan 2014 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex,nofollow
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/spider.jpg
185.66.200.127200 OK 0 B URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/spider.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
GET /genericImages/breaking-news/spider.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:25:50 GMT
vary: Accept-Encoding
etag: W/"5d9da79e-f2f2"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.ebaaa.xyz/genericImages/breaking-news/unicorn.jpg
185.66.200.127200 OK 0 B URL HTTP/2 cdn.ebaaa.xyz/genericImages/breaking-news/unicorn.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
GET /genericImages/breaking-news/unicorn.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ebaaa.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:18 GMT
content-type: image/jpeg
last-modified: Wed, 09 Oct 2019 09:24:51 GMT
vary: Accept-Encoding
etag: W/"5d9da763-20b52"
expires: Mon, 10 Oct 2022 19:34:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-cache: HIT
x-server: cdnbts
content-encoding: gzip
X-Firefox-Spdy: h2
dz4ad.com/display/items.php?3785&1875&300&100&1
104.21.93.88200 OK 0 B URL HTTP/2 dz4ad.com/display/items.php?3785&1875&300&100&1
IP 104.21.93.88:0
GET /display/items.php?3785&1875&300&100&1 HTTP/1.1
Host: dz4ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 19:34:16 GMT
content-type: application/javascript
x-powered-by: PHP/7.2.29
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Sat, 10 Sep 2022 19:34:16 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oi6d3DofplTCN%2BDG4%2BmyHRrvmY7GPkxnr86s5cBLE%2F2t3GGuMPbCQz7Gt0bqRc03P2kD6PNNFczD2fuAhJexcu2kBqTnigTTCeEpMfo4E6vXxzGZoexJVe0OK5U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 748a99a10877b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.paypalobjects.com/en_DZ/i/scr/pixel.gif
192.229.221.25404 Not Found 0 B URL HTTP/2 www.paypalobjects.com/en_DZ/i/scr/pixel.gif
IP 192.229.221.25:0
GET /en_DZ/i/scr/pixel.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.djidji07.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-encoding: gzip
access-control-allow-origin: *
cache-control: no-store
content-type: text/html
date: Sat, 10 Sep 2022 19:34:17 GMT
dc: ccg11-origin-www-1.paypal.com
expires: Sat, 10 Sep 2022 20:34:17 GMT
paypal-debug-id: 131d4b9f03920
server: ECAcc (daa/7D33)
strict-transport-security: max-age=63072000; includeSubDomains; preload
traceparent: 00-0000000000000000000131d4b9f03920-f4d103bc7d6fb2d3-01
vary: Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgmdKC4gGJhRWMZEuwWSNvP08-S8a17lbvTMZyJKdS326fiDsn7o16xen82qIuF6Byx9zIpAFqsb0G0BAmmdOLHB2j8hWPwKBpM11wrJEiBpNF6a5Xqza7jiORlIMFmNAR4NB8zybCkUnVcZoNISLGn4e4vWqXyOk90RTV5xl0Pw5j_XTMnHxeEmvnPIw/w345-h180-p-k-no-nu/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5.jpg
142.250.74.1200 OK 0 B URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgmdKC4gGJhRWMZEuwWSNvP08-S8a17lbvTMZyJKdS326fiDsn7o16xen82qIuF6Byx9zIpAFqsb0G0BAmmdOLHB2j8hWPwKBpM11wrJEiBpNF6a5Xqza7jiORlIMFmNAR4NB8zybCkUnVcZoNISLGn4e4vWqXyOk90RTV5xl0Pw5j_XTMnHxeEmvnPIw/w345-h180-p-k-no-nu/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5.jpg
IP 142.250.74.1:0
GET /img/b/R29vZ2xl/AVvXsEgmdKC4gGJhRWMZEuwWSNvP08-S8a17lbvTMZyJKdS326fiDsn7o16xen82qIuF6Byx9zIpAFqsb0G0BAmmdOLHB2j8hWPwKBpM11wrJEiBpNF6a5Xqza7jiORlIMFmNAR4NB8zybCkUnVcZoNISLGn4e4vWqXyOk90RTV5xl0Pw5j_XTMnHxeEmvnPIw/w345-h180-p-k-no-nu/eFootball%20PES%202023%20PPSSPP%20Camera%20PS5.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1eeb"
expires: Sun, 11 Sep 2022 19:34:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="eFootball PES 2023 PPSSPP Camera PS5.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 19:34:18 GMT
server: fife
content-length: 44714
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dz4ad.com/display/items.php?8934&1875&300&100&0&0&0
104.21.93.88200 OK 0 B URL HTTP/2 dz4ad.com/display/items.php?8934&1875&300&100&0&0&0
IP 104.21.93.88:0
GET /display/items.php?8934&1875&300&100&0&0&0 HTTP/1.1
Host: dz4ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 19:34:16 GMT
content-type: application/javascript
x-powered-by: PHP/7.2.29
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Sat, 10 Sep 2022 19:34:16 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FC0OK8FTAfPxdhg5eLG86VyiPhc5co2iH%2Fh4QvpEqN%2BLkkul3nZ2veUWyu%2FuZ8STco1037KmlCUwZwJJg35aKPOiNSXZ45wS2SFY8Eqb7%2FQn5JIQOjrEOJDwysw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 748a99a10870b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pppbr.com/bnr_xload.php?section=General&pub=535951&format=300x250&ga=g&xt=166283845657981&xtt=6663162
185.66.200.220200 OK 0 B URL HTTP/2 pppbr.com/bnr_xload.php?section=General&pub=535951&format=300x250&ga=g&xt=166283845657981&xtt=6663162
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
GET /bnr_xload.php?section=General&pub=535951&format=300x250&ga=g&xt=166283845657981&xtt=6663162 HTTP/1.1
Host: pppbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:16 GMT
last-modified: Sat, 10 Sep 2022 19:34:16 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: used_ad2633134=1; expires=Sun, 11-Sep-2022 04:00:00 GMT; Max-Age=30343; path=/; domain=pppbr.com; secure; HttpOnly; SameSite=None
total_impressions=1; expires=Sun, 11-Sep-2022 04:00:00 GMT; Max-Age=30343; path=/; domain=pppbr.com; secure; HttpOnly; SameSite=None
cpa_673873=300x250_165886968_0; expires=Mon, 10-Oct-2022 19:34:17 GMT; Max-Age=2592000; path=/; domain=pppbr.com; secure; SameSite=None
X-Firefox-Spdy: h2
ebaaa.xyz/148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_83875&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=300&height=250&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1
185.66.201.8200 OK 0 B URL HTTP/2 ebaaa.xyz/148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_83875&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=300&height=250&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1
IP 185.66.201.8:0
ASN #201702 skHosting.eu s.r.o.
GET /148bcf03fc/bb6bac9292/?placementName=ROTATOR&type=n&cv=XrdpCrdAjjdkdjCikAAGjCxCkrNkxNpZNrApCrCjdCCrkjCkdCrCrGCxCrdZZdjGjxCCr_83875&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&capSettings=cHBwYnIuY29tfDUwMDAwMHwyNHw1MTg1Mw==&adApiR=loaded_string_8866835b0bce9d250429df012c0426f88d0bd_2633134_1662838457.0311_95564&refferer=225395394_aHR0cHM6Ly93d3cuZGppZGppMDcuY29tLw==&width=300&height=250&yxDom=cHBwYnIuY29t_1739ae9dc103b6f9f09c274dd72176e1 HTTP/1.1
Host: ebaaa.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pppbr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: application/javascript
expires: Sun, 01 Jan 2014 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex,nofollow
content-encoding: br
X-Firefox-Spdy: h2
pppbr.com/bnr.php?section=General&pub=535951&format=728x90&ga=g
185.66.200.220200 OK 0 B URL HTTP/2 pppbr.com/bnr.php?section=General&pub=535951&format=728x90&ga=g
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
GET /bnr.php?section=General&pub=535951&format=728x90&ga=g HTTP/1.1
Host: pppbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:16 GMT
content-type: application/javascript
expires: Sat, 10 Sep 2022 19:34:16 GMT
last-modified: Sat, 10 Sep 2022 19:34:16 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex, nofollow, noarchive, nosnippet
X-Firefox-Spdy: h2
pppbr.com/bnr_xload.php?section=General&pub=535951&format=728x90&ga=g&xt=166283845650690&xtt=7982081
185.66.200.220200 OK 0 B URL HTTP/2 pppbr.com/bnr_xload.php?section=General&pub=535951&format=728x90&ga=g&xt=166283845650690&xtt=7982081
IP 185.66.200.220:0
ASN #201702 skHosting.eu s.r.o.
GET /bnr_xload.php?section=General&pub=535951&format=728x90&ga=g&xt=166283845650690&xtt=7982081 HTTP/1.1
Host: pppbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.djidji07.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 19:34:17 GMT
content-type: text/html; charset=UTF-8
expires: Sat, 10 Sep 2022 19:34:16 GMT
last-modified: Sat, 10 Sep 2022 19:34:16 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: used_ad2784267=1; expires=Sun, 11-Sep-2022 04:00:00 GMT; Max-Age=30343; path=/; domain=pppbr.com; secure; HttpOnly; SameSite=None
total_impressions=1; expires=Sun, 11-Sep-2022 04:00:00 GMT; Max-Age=30343; path=/; domain=pppbr.com; secure; HttpOnly; SameSite=None
cpa_673873=728x90_165886968_0; expires=Mon, 10-Oct-2022 19:34:17 GMT; Max-Age=2592000; path=/; domain=pppbr.com; secure; SameSite=None
X-Firefox-Spdy: h2