Overview

URL giantxxx-tube.blogspot.de/search/label/Katie
IP216.58.211.129
ASNAS15169 Google Inc.
Location United States
Report completed2017-08-13 08:56:00 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-08-13 2 giantxxx-tube.blogspot.de/search/label/Katie Malware
2017-08-13 2 giantxxx-tube.blogspot.no/search/label/Katie Malware
2017-08-13 2 giantxxx-tube.blogspot.no/search/label/Katie Malware
2017-08-13 2 giantxxx-tube.blogspot.no/search/label/%3C!--Can%27t%20find%20substitution% (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 216.58.211.129

Date UQ / IDS / BL URL IP
2017-10-24 11:17:09 +0200
2 - 1 - 5 teenmodelgirl.blogspot.de/ 216.58.211.129
2017-10-24 11:17:02 +0200
2 - 1 - 4 tierraverde-plantemosarboles.blogspot.de/ 216.58.211.129
2017-10-24 11:16:54 +0200
0 - 0 - 4 www.1lira.blogspot.com/ 216.58.211.129
2017-10-24 11:16:23 +0200
0 - 0 - 2 www.negaoloyra.blogspot.com/ 216.58.211.129
2017-10-24 11:16:19 +0200
2 - 0 - 3 chikochannel.blogspot.com/ 216.58.211.129
2017-10-24 11:16:16 +0200
2 - 1 - 5 3xsleep.blogspot.com/ 216.58.211.129
2017-10-24 11:16:15 +0200
0 - 0 - 3 www.oktapanji.blogspot.com/ 216.58.211.129
2017-10-24 11:16:13 +0200
2 - 1 - 1 49celcius.blogspot.ru/ 216.58.211.129
2017-10-24 11:16:08 +0200
0 - 0 - 2 cutecelebswallpaper.blogspot.com/ 216.58.211.129
2017-10-24 11:16:08 +0200
2 - 1 - 4 composicaoiv.blogspot.com/ 216.58.211.129

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2017-10-24 11:17:09 +0200
2 - 1 - 5 teenmodelgirl.blogspot.de/ 216.58.211.129
2017-10-24 11:17:02 +0200
2 - 1 - 4 tierraverde-plantemosarboles.blogspot.de/ 216.58.211.129
2017-10-24 11:16:54 +0200
0 - 0 - 4 www.1lira.blogspot.com/ 216.58.211.129
2017-10-24 11:16:23 +0200
0 - 0 - 2 www.negaoloyra.blogspot.com/ 216.58.211.129
2017-10-24 11:16:19 +0200
2 - 0 - 3 chikochannel.blogspot.com/ 216.58.211.129
2017-10-24 11:16:16 +0200
2 - 1 - 5 3xsleep.blogspot.com/ 216.58.211.129
2017-10-24 11:16:15 +0200
0 - 0 - 3 www.oktapanji.blogspot.com/ 216.58.211.129
2017-10-24 11:16:13 +0200
2 - 1 - 1 49celcius.blogspot.ru/ 216.58.211.129
2017-10-24 11:16:08 +0200
0 - 0 - 2 cutecelebswallpaper.blogspot.com/ 216.58.211.129
2017-10-24 11:16:08 +0200
2 - 1 - 4 composicaoiv.blogspot.com/ 216.58.211.129

Last 10 reports on domain: .

Date UQ / IDS / BL URL IP
2017-10-24 09:55:30 +0200
2 - 1 - 5 giantxxx-tube.blogspot.de/ 216.58.211.129
2017-10-23 09:53:46 +0200
2 - 1 - 5 giantxxx-tube.blogspot.de/ 216.58.211.129
2017-10-22 09:54:57 +0200
2 - 0 - 5 giantxxx-tube.blogspot.de/ 216.58.211.129
2017-10-16 16:26:33 +0200
2 - 1 - 5 giantxxx-tube.blogspot.de/ 172.217.22.161
2017-10-12 18:00:19 +0200
2 - 1 - 5 giantxxx-tube.blogspot.de/ 216.58.211.129
2017-10-08 09:39:09 +0200
2 - 1 - 5 giantxxx-tube.blogspot.de/ 172.217.22.161
2017-09-24 09:42:08 +0200
0 - 0 - 3 giantxxx-tube.blogspot.de/ 216.58.209.129
2017-09-05 23:32:37 +0200
0 - 0 - 3 giantxxx-tube.blogspot.de/2012/08/blonde-dp-w (...) 216.58.211.129
2017-09-05 23:32:34 +0200
0 - 0 - 3 giantxxx-tube.blogspot.de/2012/07/vincevouyer (...) 216.58.211.129
2017-09-02 10:33:49 +0200
0 - 0 - 3 giantxxx-tube.blogspot.de/search/label/lol)/ 216.58.211.129


JavaScript

Executed Scripts (54)


Executed Evals (0)


Executed Writes (6)

#1 JavaScript::Write (size: 5, repeated: 2) - SHA256: 508bd334b02db127e7733b7eeb9c01b098adaccaa099135f85339598261dd03c

                                         2017
                                    

#2 JavaScript::Write (size: 2, repeated: 2) - SHA256: 4523540f1504cd17100c4835e85b7eefd49911580f8efff0599a8f283be6b9e3

                                        17
                                    

#3 JavaScript::Write (size: 101, repeated: 1) - SHA256: 4c68aa5de793661c9d0d8fea99d0dce11cb88e7df613d3552f94f4f5dec3a402

                                        < img src = "<!--Can't find substitution for tag [post.thumbnailUrl]-->"
alt = "Katie Gets Fucked Silly" / >
                                    

#4 JavaScript::Write (size: 102, repeated: 1) - SHA256: 4dea5f66c3d8a7b8a5337ea829400bce506796fd98a9ad20b747ddfbdd00c431

                                        < img src = "<!--Can't find substitution for tag [post.thumbnailUrl]-->"
alt = "Katie Ray Is Hot To Trot" / >
                                    

#5 JavaScript::Write (size: 152, repeated: 1) - SHA256: 1aca8492d13dd92cb336c3db84eed200612cf0e5a4632ece9b302890ca91e538

                                        < script src = "/feeds/posts/summary/-/http://giantxxx-tube.blogspot.no/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1" > < /script>
                                    

#6 JavaScript::Write (size: 3, repeated: 2) - SHA256: 617531b4fec3488c34f60417bf571d1c30e7e2cd8fec9fb06206815345f1df74

                                        Apr
                                    


HTTP Transactions (77)


Request Response
                                        
                                            GET /search/label/Katie HTTP/1.1 
Host: giantxxx-tube.blogspot.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.211.129
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Location: http://giantxxx-tube.blogspot.no/search/label/Katie
Content-Encoding: gzip
Date: Sun, 13 Aug 2017 06:55:24 GMT
Expires: Sun, 13 Aug 2017 06:55:24 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 193
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   193
Md5:    24dc862d1041ab08fef6c19bb783fe24
Sha1:   8429ffafdc897e937ae59023ee624d504f29244a
Sha256: 6b0265d95231ad6f4befe62ee8cd0e36fcd791ec8ac183324849d27c2d2f8c29

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /search/label/Katie HTTP/1.1 
Host: giantxxx-tube.blogspot.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 13 Aug 2017 06:55:25 GMT
Date: Sun, 13 Aug 2017 06:55:25 GMT
Cache-Control: private, max-age=0
Last-Modified: Sun, 23 Jul 2017 08:09:41 GMT
Etag: W/"6155e35eadbfa9228ee2aaa813b6828446ff944955a7d7dd16fff767f5eaa0e9"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 41832
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   41832
Md5:    4985438972c6b48ecdbb1725302ef4ab
Sha1:   751f0f598d1fea501050ded63b557664d0fe3f12
Sha256: 3d6483fb6e570ce050dcef27bc30c60c3abeef690e3e6e6e64e40d32775b646d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css/graddit.css HTTP/1.1 
Host: static.graddit.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         104.28.8.76
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 13 Aug 2017 06:55:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=ddf531bafdc4654b17a7ad5341efe7cc51502607326; expires=Mon, 13-Aug-18 06:55:26 GMT; path=/; domain=.graddit.com; HttpOnly
Last-Modified: Sat, 25 Apr 2015 17:20:22 GMT
Etag: W/"553bccd6-314b"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sun, 13 Aug 2017 08:55:26 GMT
Cache-Control: public, max-age=7200
Server: cloudflare-nginx
CF-RAY: 38d9c4cc43344273-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2337
Md5:    dfa0daa25e78200e40f9571312ec9ae5
Sha1:   568ffde7fb25a6263e31bfa58df1dab40cf8833b
Sha256: 803a55513376be5fab56f6faa9eb38fb8dae0bc428867b15fd59c6c95fedf2e7
                                        
                                            GET /css?family=Oswald HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 13 Aug 2017 06:55:26 GMT
Date: Sun, 13 Aug 2017 06:55:26 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   190
Md5:    32e1eea4c1b428f40572fa2a8e54317b
Sha1:   b436223090a443f588d8830da7b2b88fece1e19f
Sha256: 95692d6b07c607d5f0d74c51ce2b82ba54a834b48981d107f37c9d51d8a75602
                                        
                                            GET /css?family=PT+Sans+Narrow HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 13 Aug 2017 06:55:26 GMT
Date: Sun, 13 Aug 2017 06:55:26 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   212
Md5:    00f3d723193cf265644d7435222efbf6
Sha1:   7eb59ba35851938811fad10ca4c135d6001103a2
Sha256: f8b720a35e804790b3436f6611432007dde2da6bee95b94b1306b74642382267
                                        
                                            GET /-wqzYVSTa638/UQrc7C0UP3I/AAAAAAAABgU/TgbAOmzXLAs/s1600/home.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "va2f"
Expires: Mon, 14 Aug 2017 05:57:07 GMT
Content-Disposition: inline;filename="home.gif"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 05:57:07 GMT
Server: fife
Content-Length: 1157
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 3499


--- Additional Info ---
Magic:  GIF image data, version 89a, 21 x 21
Size:   1157
Md5:    4c4d5a137d02ca4414dfe2e76084c7a0
Sha1:   f5b0e9627a211af31faeb95b74f85471c07cc8e5
Sha256: ff33e9e45ece6b5b9099f38e8e0a246865d21330f4f6300f2f9dc6498c7441d6
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:26 GMT
Expires: Thu, 17 Aug 2017 06:55:26 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    690d4e950aabcc1ce6ccaff7622cbb0e
Sha1:   94507398aac6f045332e508e0b0fa621758dab09
Sha256: ff8180fa9dcf71fc32f770d6630a914224c7e281e48e71c03efda843aa729272
                                        
                                            GET /218437119/halamanav.js HTTP/1.1 
Host: yourjavascript.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         80.241.212.33
HTTP/1.1 200 OK
Content-Type: text/javascript; charset: UTF-8
                                        
Server: nginx
Date: Sun, 13 Aug 2017 06:55:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF line terminators
Size:   5361
Md5:    0b26ad0b1f8e8c99dd6377b77a6606e2
Sha1:   9423d1bb932af7237412b2d39e02a1e55eb23fcf
Sha256: c5c2a9a025bfb657e029f79941deca6f66878ecb129672f20cc774590cb84d81
                                        
                                            GET /24211643151/jquery.easing.js HTTP/1.1 
Host: yourjavascript.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         80.241.212.33
HTTP/1.1 502 Bad Gateway
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx
Date: Sun, 13 Aug 2017 06:55:26 GMT
Content-Length: 0
Connection: keep-alive
Etag: "51abb742-0"


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=440115, public, no-transform, must-revalidate
Last-Modified: Fri, 11 Aug 2017 09:05:56 GMT
Expires: Fri, 18 Aug 2017 09:05:56 GMT
Date: Sun, 13 Aug 2017 06:55:26 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    6e41d8ae633c12ff014b571741af0fe1
Sha1:   b83f29a7f1d6c0cf9fb0b92adf8b42d085e0c43a
Sha256: 4f40467a73a3f4f41b3750ff9414f5bc4cc834b4dd7ea1f2627f30f45b21f84f
                                        
                                            GET /jquery-2.1.1.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         94.31.29.54
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 13 Aug 2017 06:55:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Oct 2014 00:16:07 GMT
Vary: Accept-Encoding
Etag: W/"54499a47-3c637"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   89265
Md5:    8eda8f2e67f0b05454b9737205d2f334
Sha1:   abc4f5d34a8923bedc92cb6d455165b683636913
Sha256: d86a75d4eae0cf75d997facaa2278440804f14e9f4313f2b99ea4e6415bc0592
                                        
                                            GET /jquery-1.8.3.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         94.31.29.54
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 13 Aug 2017 06:55:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Oct 2014 00:16:07 GMT
Vary: Accept-Encoding
Etag: W/"54499a47-40f49"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   96625
Md5:    fc345cc666e4723a9d03b2621b12dfb1
Sha1:   a4b0d132bef1430dde86dbf1059670e3074a4439
Sha256: d80cae0232bd6ffe42be7f1559c0f25294b1d3905d1ee4268373ddc79175e320
                                        
                                            GET /static/v1/widgets/763856997-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8423
Date: Fri, 04 Aug 2017 13:23:07 GMT
Expires: Sat, 04 Aug 2018 13:23:07 GMT
Last-Modified: Fri, 04 Aug 2017 12:28:43 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 754339
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   8423
Md5:    ccf9e71f344b4f1f0270ce64b1f130fc
Sha1:   bc5162e327adfa3ac930655be968a9370be7dfef
Sha256: 7c1e756bfdcb858e6d38ff5d970f6fdb2889fb5ac38c6f95be0bf40da271f188
                                        
                                            GET /24211643151/jquery.easing.js HTTP/1.1 
Host: yourjavascript.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie
If-None-Match: "51abb742-0"

                                         
                                         80.241.212.33
HTTP/1.1 502 Bad Gateway
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx
Date: Sun, 13 Aug 2017 06:55:26 GMT
Content-Length: 0
Connection: keep-alive
Etag: "51abb742-0"


--- Additional Info ---
                                        
                                            GET /img/icon18_wrench_allbkg.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 475
Date: Wed, 09 Aug 2017 19:36:19 GMT
Expires: Wed, 16 Aug 2017 19:36:19 GMT
Last-Modified: Wed, 09 Aug 2017 02:17:39 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 299947
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  PNG image, 18 x 18, 8-bit colormap, non-interlaced
Size:   475
Md5:    f617effe6d96c15acfea8b2e8aae551f
Sha1:   6d676af11ad2e84b620cce4d5992b657cb2d8ab6
Sha256: d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:26 GMT
Expires: Thu, 17 Aug 2017 06:55:26 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    2f4c7ffb743ab01440a193055af39ea2
Sha1:   0895c4183174833873a27a9415d8a5289dc3869a
Sha256: d9ea2f41eeab8de59167123615085c8f8f921ec692c66f6cb2806e2502c14144
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=1486440074319405536&zx=ac321136-9818-484f-a5d7-7c7918427075 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: private, max-age=1800
Pragma: no-cache
Expires: Sun, 13 Aug 2017 06:55:26 GMT
Date: Sun, 13 Aug 2017 06:55:26 GMT
Last-Modified: Sun, 13 Aug 2017 06:55:26 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /-Es4rPAZpSEA/VO-9j025emI/AAAAAAAAAA8/v0-_VsrrI3I/s930/sun%2Blogo.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v10"
Expires: Fri, 11 Aug 2017 11:30:17 GMT
Content-Disposition: inline;filename="sun logo.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 4937
X-XSS-Protection: 1; mode=block
Age: 123
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 50 x 50, 8-bit/color RGBA, non-interlaced
Size:   4937
Md5:    ec96de9adb433356cd5275b700162ca8
Sha1:   129635c9d3a7c80cc6a31fa529720bae1a19ed55
Sha256: c2f14ee0930eb95756034a91fa5e7e27eb22f2201d9de9f0a420a0b967df6a39
                                        
                                            GET /-AIW512aa4Ms/URJ2uXZh45I/AAAAAAAAB9c/QMul0JdxpNs/s1600/outerpic.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7d7"
Expires: Sun, 13 Aug 2017 18:07:24 GMT
Content-Disposition: inline;filename="outerpic.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 573
X-XSS-Protection: 1; mode=block
Age: 123
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 3 x 360, 8-bit/color RGBA, non-interlaced
Size:   573
Md5:    9d6d0849e0f88f04ba6044729a7bf332
Sha1:   91194bb1f839c4ab78e48367084ffb6ca7da5a28
Sha256: 20559eee8ae65c5a706e7c348960d7fad2a08b02e75f4861f6c66b4bf2c452cc
                                        
                                            GET /-IeHXc7J7dZs/URLRwVeKocI/AAAAAAAACFA/OepYPORtIII/s1600/menuh.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v850"
Expires: Mon, 14 Aug 2017 06:53:23 GMT
Content-Disposition: inline;filename="menuh.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 196
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 123


--- Additional Info ---
Magic:  PNG image, 5 x 60, 8-bit/color RGBA, non-interlaced
Size:   196
Md5:    af8a1d93aa40aadbf1f260df21bc2f80
Sha1:   7b1f56fffb743cf880bcd946851a873fe44855e8
Sha256: 55fb946d0c7e56072bb1855932f6df8583a5c4fa4e78a2ec49f3a352dd4d25c5
                                        
                                            GET /-K4hNJ9YcB7I/URKRQe-RbaI/AAAAAAAAB_c/bGaB_wyqaoA/s1600/dotted.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7f7"
Expires: Mon, 14 Aug 2017 06:44:30 GMT
Content-Disposition: inline;filename="dotted.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:44:30 GMT
Server: fife
Content-Length: 155
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 656


--- Additional Info ---
Magic:  PNG image, 3 x 3, 8-bit/color RGBA, non-interlaced
Size:   155
Md5:    068bd1f856006d35692c1bdfae79b6a6
Sha1:   b5904975c385f3623cc9d5cf90b555b8e5e9ce7c
Sha256: 68545da4030bd7eac3700eb6c90475da521a97655bae6c755960a66a1b1649cc
                                        
                                            GET /search/label/Katie HTTP/1.1 
Host: giantxxx-tube.blogspot.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie
If-Modified-Since: Sun, 23 Jul 2017 08:09:41 GMT
If-None-Match: W/"6155e35eadbfa9228ee2aaa813b6828446ff944955a7d7dd16fff767f5eaa0e9"

                                         
                                         216.58.211.129
HTTP/1.1 304 Not Modified
                                        
Expires: Sun, 13 Aug 2017 06:55:26 GMT
Date: Sun, 13 Aug 2017 06:55:26 GMT
Cache-Control: private, max-age=0
Etag: W/"6155e35eadbfa9228ee2aaa813b6828446ff944955a7d7dd16fff767f5eaa0e9"
Server: GSE


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /-UzQSVqe350A/URJhGaHsGqI/AAAAAAAAB7s/UVJaEnVxtc8/s1600/body.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "va1c"
Expires: Mon, 14 Aug 2017 05:47:00 GMT
Content-Disposition: inline;filename="body.gif"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 23343
X-XSS-Protection: 1; mode=block
Age: 123
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200
Size:   23343
Md5:    6f52f16e0c8869759029f92150fac68f
Sha1:   d7171b0111ecbc51953fb6a6a0fcb639c9aacdb2
Sha256: 0ba65009d2629977348e7cc30414a518b21b8fe7f50351fcead70764219b9bb2
                                        
                                            GET /s/oswald/v14/-g5pDUSRgvxvOl5u-a_WHw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Oswald
Origin: http://giantxxx-tube.blogspot.no

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19256
Date: Fri, 04 Aug 2017 14:14:07 GMT
Expires: Sat, 04 Aug 2018 14:14:07 GMT
Last-Modified: Wed, 02 Aug 2017 22:45:08 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 751279


--- Additional Info ---
Magic:  data
Size:   19256
Md5:    c7b96bb40a63c91659cd45c6e7640a4e
Sha1:   3081c20b7905c25d37b70d0a4d2fa953c6bd4844
Sha256: 1018f6c6e463db9125b987b08593399c5bc4f4b9c49aa6217a15d20dc09f2b1f
                                        
                                            GET /ajax/libs/jquery/1.6.2/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         172.217.22.170
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 32245
Date: Thu, 03 Aug 2017 23:48:18 GMT
Expires: Fri, 03 Aug 2018 23:48:18 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 803229
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   32245
Md5:    68ab59808bd9d610989e90a6a72de1c9
Sha1:   37e30026185877bbe73d9794a9b30083ae0709fe
Sha256: e730036ff9a2dea35ee12350105dca51535e909c854f51fe0e131a8292f73f6b
                                        
                                            GET /s/ptsansnarrow/v7/UyYrYy3ltEffJV9QueSi4RdbPw3QSf9R-kE0EsQUn2A.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=PT+Sans+Narrow
Origin: http://giantxxx-tube.blogspot.no

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 44404
Date: Fri, 04 Aug 2017 13:23:26 GMT
Expires: Sat, 04 Aug 2018 13:23:26 GMT
Last-Modified: Wed, 27 Aug 2014 23:49:31 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 754321


--- Additional Info ---
Magic:  data
Size:   44404
Md5:    9b1d9a502946fed5ebfa817b53d4eb74
Sha1:   530b23c453a2b246a327de3c5bcf22a1088bd071
Sha256: a1417f819c2764846fba6bf6a2bbac4b4486c8996f64a6dd08a277f59b554401
                                        
                                            GET /feeds/posts/summary/-/http://giantxxx-tube.blogspot.no/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1 HTTP/1.1 
Host: giantxxx-tube.blogspot.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.129
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 13 Aug 2017 06:55:27 GMT
Server: Blogger Render Server 1.0
Content-Length: 193
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text
Size:   193
Md5:    83b482393f028e6de91b032e7fae746b
Sha1:   50bad14cd7b4602d7b9f1ef6d769288588594fc8
Sha256: 031cbc91f964c96aa1975380c3bd66f5fe254439f3281bf0e06bc385c3912aa2
                                        
                                            GET /-6p_AqXL70hQ/UQWPHMObw9I/AAAAAAAABZ0/f2UWIvjFkSQ/s1600/footerli.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v59d"
Expires: Sat, 12 Aug 2017 22:37:22 GMT
Content-Disposition: inline;filename="footerli.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 3569
X-XSS-Protection: 1; mode=block
Age: 124
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 4 x 7, 8-bit/color RGBA, interlaced
Size:   3569
Md5:    280d0cd69675c12bf752cceabb1502f7
Sha1:   931dd6d7487c744e2daaa36b565e14775775e4ea
Sha256: a71cc9c7f45d47492b0bf18a95262af257a63a5e5b16bc28dd55e78d686714af
                                        
                                            GET /search/label/%3C!--Can%27t%20find%20substitution%20for%20tag%20%5Bpost.thumbnailUrl%5D--%3E HTTP/1.1 
Host: giantxxx-tube.blogspot.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 13 Aug 2017 06:55:27 GMT
Date: Sun, 13 Aug 2017 06:55:27 GMT
Cache-Control: private, max-age=0
Last-Modified: Sun, 23 Jul 2017 08:09:41 GMT
Etag: W/"6155e35eadbfa9228ee2aaa813b6828446ff944955a7d7dd16fff767f5eaa0e9"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 41212
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   41212
Md5:    067cde8bfa7d72aa0424354345851c62
Sha1:   e38cf82050215bdc8dfc2559d8508fc6944cc5be
Sha256: eaf0dac110ec9bac67f93e8e2adcf13927c68fca57099929dea835f91d2055ce

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: www.cebr.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         52.0.7.30
HTTP/1.1 302 Moved Temporarily
                                        
Date: Sun, 13 Aug 2017 6:55:24 GMT
Connection: Keep-Alive
Content-Length: 0
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: http://www.apict.top


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.apict.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         216.58.211.147
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 13 Aug 2017 06:55:29 GMT
Date: Sun, 13 Aug 2017 06:55:29 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 29 Jul 2017 09:18:26 GMT
Etag: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 6483
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   6483
Md5:    3b88cdf5490b8af17ac3aeb53fa9ce0b
Sha1:   35e6094fbc5f28318c8c75a65323db0aa32f81fe
Sha256: 4cf3ae340e5e08814801e2791483b7bd8c3e0f9bad632748a544f07adecadacb
                                        
                                            GET / HTTP/1.1 
Host: www.cebr.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie

                                         
                                         52.0.7.30
HTTP/1.1 302 Moved Temporarily
                                        
Date: Sun, 13 Aug 2017 6:55:24 GMT
Connection: Keep-Alive
Content-Length: 0
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: http://www.apict.top


--- Additional Info ---
                                        
                                            GET /css?family=Carter+One HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 13 Aug 2017 06:55:29 GMT
Date: Sun, 13 Aug 2017 06:55:29 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   206
Md5:    58c4036766d6e657dd337a0ed2575321
Sha1:   6b2bc1a59e1e60c4e6210e723fb782e89dac434e
Sha256: b4cfc2b3b4ec436c97fc6e1c336fa42239a6c297e5a580feb23643f8b02be08e
                                        
                                            GET /static/v1/widgets/2582377541-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 42897
Date: Tue, 08 Aug 2017 01:00:28 GMT
Expires: Wed, 08 Aug 2018 01:00:28 GMT
Last-Modified: Mon, 07 Aug 2017 23:56:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 453301
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   42897
Md5:    b38bf92a0c9bb6cb738e3716dcd4e051
Sha1:   3ef3568edf184dd64cc58ded50393b12ef7d887a
Sha256: 506ea2e8c73328d4339ed68ffe7a91851475636a78d0bbec42d1ff4989f3cba6
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:29 GMT
Expires: Thu, 17 Aug 2017 06:55:29 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    596a29e252577a2d8031b342e42361cf
Sha1:   59d830e03307eea34c70224fdd40dc91ce5e7ed1
Sha256: a876127088860f61d6beb031ddf2c6ac593a0e9be3b58e67037e1fd7aa0586c3
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=7347293982142901478&zx=a2c471d2-836c-462b-accf-6359614dc14b HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: private, max-age=1800
Pragma: no-cache
Expires: Sun, 13 Aug 2017 06:55:29 GMT
Date: Sun, 13 Aug 2017 06:55:29 GMT
Last-Modified: Sun, 13 Aug 2017 06:55:29 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET / HTTP/1.1 
Host: www.apict.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Katie
If-Modified-Since: Sat, 29 Jul 2017 09:18:26 GMT
If-None-Match: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"

                                         
                                         216.58.211.147
HTTP/1.1 304 Not Modified
                                        
Expires: Sun, 13 Aug 2017 06:55:29 GMT
Date: Sun, 13 Aug 2017 06:55:29 GMT
Cache-Control: private, max-age=0
Etag: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"
Server: GSE


--- Additional Info ---
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "6cecf206908d58fdc0a655ebc3b28890"
Expires: Sun, 13 Aug 2017 06:55:29 GMT
Date: Sun, 13 Aug 2017 06:55:29 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
Strict-Transport-Security: max-age=31536000
P3P: CP="This is not a P3P policy! See https://support.google.com/accounts/answer/151657?hl=en for more info."
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=109=NuWfNLeajEJ9GjNHg1CSTYsT7bbI6YByDDcvF9qULZ7WV2EFPIG6ZIUcfeEYUTqdUlKhCRferG4jvITI2h_UyzsdebfjDAeMzcPD54zKi3rAfUkQ4suBNg7n9YtIXR7M;Domain=.google.com;Path=/;Expires=Mon, 12-Feb-2018 06:55:29 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16669
Md5:    c1d3d2e3d2eb88e4bf20c57f65158975
Sha1:   b10ca2c4c20efa3684da9000bb6e88bd67adfb45
Sha256: f3c9bb7ce540596af42014587beb87e52309411bd73a0653a0310b0f4ee33acb
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.no.fJ20OopUCoY.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AQ/rs=AGLTcCOYV-uGeKKMIsXry9dQXBbTYS-T9g/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/
Cookie: NID=109=NuWfNLeajEJ9GjNHg1CSTYsT7bbI6YByDDcvF9qULZ7WV2EFPIG6ZIUcfeEYUTqdUlKhCRferG4jvITI2h_UyzsdebfjDAeMzcPD54zKi3rAfUkQ4suBNg7n9YtIXR7M

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46130
Date: Fri, 11 Aug 2017 18:44:51 GMT
Expires: Sat, 11 Aug 2018 18:44:51 GMT
Last-Modified: Fri, 11 Aug 2017 00:45:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 130238
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   46130
Md5:    349f3ad9d1367e5138ba7de61a66c3e1
Sha1:   67bad6019e47f1535234ae38a74455822d34cbcd
Sha256: ec0d99c82071766495ad1c4ed7d9c14b58f8840cba7520e8832e7b7c6fcc2641
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=7347293982142901478&zx=a2c471d2-836c-462b-accf-6359614dc14b HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/
If-Modified-Since: Sun, 13 Aug 2017 06:55:29 GMT

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: private, max-age=1800
Pragma: no-cache
Expires: Sun, 13 Aug 2017 06:55:29 GMT
Date: Sun, 13 Aug 2017 06:55:29 GMT
Last-Modified: Sun, 13 Aug 2017 06:55:29 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET / HTTP/1.1 
Host: www.apict.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/
If-Modified-Since: Sat, 29 Jul 2017 09:18:26 GMT
If-None-Match: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"

                                         
                                         216.58.211.147
HTTP/1.1 304 Not Modified
                                        
Expires: Sun, 13 Aug 2017 06:55:30 GMT
Date: Sun, 13 Aug 2017 06:55:30 GMT
Cache-Control: private, max-age=0
Etag: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"
Server: GSE


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         198.41.214.186
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:38 GMT
Content-Length: 1820
Connection: keep-alive
Set-Cookie: __cfduid=d11b56323d69aee207cc0dfa5795886a11502607338; expires=Mon, 13-Aug-18 06:55:38 GMT; path=/; domain=.msocsp.com; HttpOnly
Last-Modified: Sun, 13 Aug 2017 01:27:52 GMT
Expires: Thu, 17 Aug 2017 01:27:52 GMT
Etag: "7eeaae89815db36bf1121bf61111008ae9fb283d"
Cache-Control: max-age=10800,public,no-transform,must-revalidate
X-Cache: EXPIRED
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38d9c518a2c14267-OSL


--- Additional Info ---
Magic:  data
Size:   1820
Md5:    f02ba83721754b4dfe2555617d98f8e3
Sha1:   7eeaae89815db36bf1121bf61111008ae9fb283d
Sha256: 980bf0e8e6efa9fb8a583fb4b0fed93d25fd99174fe2795141d5782808a9de60
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request
Cookie: __cfduid=d11b56323d69aee207cc0dfa5795886a11502607338

                                         
                                         198.41.214.186
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:38 GMT
Content-Length: 1831
Connection: keep-alive
Last-Modified: Sun, 13 Aug 2017 02:08:27 GMT
Expires: Thu, 17 Aug 2017 02:08:27 GMT
Etag: "5d753b9ff9955b4d7766c192030f6a1bf380a258"
Cache-Control: max-age=10800,public,no-transform,must-revalidate
X-Cache: HIT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38d9c51ca42f4267-OSL


--- Additional Info ---
Magic:  data
Size:   1831
Md5:    90cceab3221ae15bc0f5ad156494de77
Sha1:   5d753b9ff9955b4d7766c192030f6a1bf380a258
Sha256: 523701c00e8ca50c9456718e40bfa2b5e804afad65f4fc7481e3474a2b116423
                                        
                                            GET /s/a/hpc20.png HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=15552000
Last-Modified: Fri, 21 Oct 2016 16:54:36 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:38 GMT
Content-Length: 6327


--- Additional Info ---
Magic:  PNG image, 241 x 224, 8-bit/color RGBA, non-interlaced
Size:   6327
Md5:    300663d738a47589db19f6e84a713988
Sha1:   10fe8bdc5af87e02cb3acc1903362efae8b40ae1
Sha256: a7e293eaa02430979d2efe756a99839519e069b2dba79596850a55fd81ef8582
                                        
                                            GET / HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private, max-age=0
Content-Length: 31274
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
Set-Cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 13-Aug-2019 06:55:38 GMT; path=/ SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; domain=.bing.com; expires=Tue, 13-Aug-2019 06:55:38 GMT; path=/ SRCHUSR=DOB=20170813; domain=.bing.com; expires=Tue, 13-Aug-2019 06:55:38 GMT; path=/ _SS=SID=0D9818556A476E1504D912886BA36F48; domain=.bing.com; path=/ _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; path=/; httponly; domain=bing.com _EDGE_V=1; path=/; httponly; expires=Tue, 13-Aug-2019 06:55:38 GMT; domain=bing.com MUID=305B17C877BF604B2E6B1D15765B612D; path=/; expires=Tue, 13-Aug-2019 06:55:38 GMT; domain=bing.com MUIDB=305B17C877BF604B2E6B1D15765B612D; path=/; httponly; expires=Tue, 13-Aug-2019 06:55:38 GMT
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-MSEdge-Ref: Ref A: 6E81F488660348D581EA4FDE472AF540 Ref B: STOEDGE0513 Ref C: 2017-08-13T06:55:38Z
Date: Sun, 13 Aug 2017 06:55:37 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:55:38 2017
Size:   31274
Md5:    29686f7ec5c9b340e4ec8b447d9c1c0d
Sha1:   83c2b4f86ec1bf218d75498957cd7eb7ee91d674
Sha256: 81415090c5829f6765bb249ed6dfeace6fe20a01c177ce7f8418aade32c7873b
                                        
                                            GET /fd/ls/l?IG=C50B217FC6434B08A2899650D6969173&CID=305B17C877BF604B2E6B1D15765B612D&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:-1,%22BC%22:-1,%22SE%22:-1,%22TC%22:-1,%22H%22:653,%22BP%22:656,%22CT%22:681,%22IL%22:1},%22ad%22:[-1,-1,20,20,20,20,1]}&P=SERP&DA=DB5 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 447F497307EB41F699807830324F326D Ref B: STOEDGE0513 Ref C: 2017-08-13T06:55:39Z
Date: Sun, 13 Aug 2017 06:55:38 GMT


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private, max-age=0
Content-Length: 31228
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-MSEdge-Ref: Ref A: 2FAF0016F1D54E408A27A5D589215F51 Ref B: STOSCHEDGE0116 Ref C: 2017-08-13T06:55:39Z
Date: Sun, 13 Aug 2017 06:55:39 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:55:39 2017
Size:   31228
Md5:    959b33d6fd11a1f8a1e7e5dc686998e5
Sha1:   aef99537eac460fcd23725b7279deea4f060ec85
Sha256: 52f810a87b94fe4684a1e0b4e857588d95928a2d8e516c4fa0aed47ea11d76b3
                                        
                                            GET /rms/BingCore.Bundle/cj,nj/0b5cf849/1a2f5baa.js?bu=rms+answers+Shared+BingCore%24ClientInstV2%24DuplicateXlsDefaultConfig%2cBingCore%24ClientInstV2%24SharedLocalStorageConfigDefault%2cBingCore%24shared%2cBingCore%24env.override%2cEmpty%2cBingCore%24event.custom.fix%2cBingCore%24event.native%2cBingCore%24onHTML%2cBingCore%24dom%2cBingCore%24cookies%2cBingCore%24rmsajax%2cBingCore%24ClientInstV2%24LogUploadCapFeatureDisabled%2cBingCore%24ClientInstV2%24ClientInstConfigSeparateOfflineQueue%2cBingCore%24clientinst%2cBingCore%24replay%2cBingCore%24Animation%2cBingCore%24fadeAnimation%2cBingCore%24framework HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Thu, 10 Aug 2017 11:38:10 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:38 GMT
Content-Length: 4976


--- Additional Info ---
Magic:  gzip compressed data, last modified: Fri Aug 11 06:37:43 2017
Size:   4976
Md5:    bff3bc7bdd8a67d394ddd0d7e8e23061
Sha1:   a038dec0afb3de80b44ed7936eaac11561536bf1
Sha256: eb69c689c2a5a6a44c7099501f99c9acd3852eed92e0a84577a9409626c9a72d
                                        
                                            GET /fd/ls/l?IG=32032CF3687F4F34996A48190A1BB929&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:-1,%22BC%22:-1,%22SE%22:-1,%22TC%22:-1,%22H%22:86,%22BP%22:88,%22CT%22:98,%22IL%22:1},%22ad%22:[-1,-1,0,0,0,0,1]}&P=SERP&DA=DB5 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: CBDEF5CBBD6645969E5BC9AE87E6A8D2 Ref B: STOEDGE0513 Ref C: 2017-08-13T06:55:39Z
Date: Sun, 13 Aug 2017 06:55:38 GMT


--- Additional Info ---
                                        
                                            GET /rms/rms%20answers%20Identity%20Blue$BlueIdentityDropdownBootStrap/cj,nj/c0fac2c5/89faaefc.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Fri, 11 Aug 2017 22:38:39 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:39 GMT
Content-Length: 617


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sat Aug 12 01:51:12 2017
Size:   617
Md5:    2e55fe83d03c3bef4b89a0eeb0a12258
Sha1:   35ec8ac2146d8d943effc177ee3c82ac6eb26102
Sha256: 5e5ea6bcf580b0381d112ca69d708d360a27be689e2c3610dd9c2b80175ad031
                                        
                                            GET /rms/rms%20answers%20Identity%20Blue$BlueIdentityHeader/cj,nj/0ba28337/c68d5c19.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Sat, 12 Aug 2017 14:14:38 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:38 GMT
Content-Length: 801


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sat Aug 12 21:26:00 2017
Size:   801
Md5:    3a25693b2cac7684615ede5fb20cafda
Sha1:   dad70226dd6f5fd31af9ccf11c288ab8f5834722
Sha256: 6fe90e6034372ad276fa11767164f0b187c42029382dade4ea6a5958043adb85
                                        
                                            GET /rms/rms%20answers%20Identity%20SnrWindowsLiveConnectBootstrap/cj,nj/bf587ad6/f1d86b5a.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Thu, 10 Aug 2017 22:46:16 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:38 GMT
Content-Length: 181


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sat Aug 12 00:03:53 2017
Size:   181
Md5:    2b13723cf7a71fc684ad671ac4dd48e3
Sha1:   ddd3a722509100ed0e49a322f5395c611f971c4b
Sha256: 20a65183a5a0e658dae4ce42a1650a1202ac617f59c1a66050449fed345e0832
                                        
                                            GET /rms/LanguageSwitch/cj,nj/f28dadef/aea7e831.js?bu=rms+answers+VisualSystem+LanguageSwitch HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Thu, 10 Aug 2017 11:37:39 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:39 GMT
Content-Length: 174


--- Additional Info ---
Magic:  gzip compressed data, last modified: Fri Aug 11 00:33:07 2017
Size:   174
Md5:    cedd50d893252ead880ab518a3752306
Sha1:   e8d716314657227f34ca20c72c6fa2a6ff0f397e
Sha256: ac7ec7e5bd57604b7e824fce94898c49d4a2f77aad8c47f3269a610af23a4414
                                        
                                            GET /rms/Framework/cj,nj/f0fe13d0/9101d3f2.js?bu=rms+answers+BoxModel+config.instant%2ccore%2ccore%24viewport%2ccore%24layout%2ccore%24metrics%2cmodules%24mutation%2cmodules%24error%2cmodules%24network%2cmodules%24cursor%2cmodules%24keyboard%2cmodules%24bot HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Thu, 10 Aug 2017 11:37:47 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:39 GMT
Content-Length: 7696


--- Additional Info ---
Magic:  gzip compressed data, last modified: Fri Aug 11 00:17:43 2017
Size:   7696
Md5:    1c169b98ff8a3de3b8e894bf73d8bfe3
Sha1:   1e34041201f86b33be9e5df0252c5b67a26ec2b2
Sha256: 324a63f581c7ae83149d953d725c216394d70f188df96e0f56a6532e54869c23
                                        
                                            GET /rms/AutoSug/cj,nj/e5d71383/77450e65.js?bu=rms+answers+AutoSuggest+Service%2cWeb%24Utils%2cWeb%24EventRegisterer%2cWeb%24EventRegistration%2cEmpty%2cEmpty%2cEmpty%2cWeb%24WebCore%2cWeb%24DataProvider%2cEmpty%2cEmpty%2cWeb%24Canvas%2cWeb%24Layout%2cWeb%24SearchForm%2cWeb%24Ghosting%2cEmpty%2cWeb%24PrefixThrottling%2cEmpty%2cEmpty%2cEmpty%2cWeb%24Init HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=20&CH=20&UTC=120

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Sat, 12 Aug 2017 14:14:01 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:39 GMT
Content-Length: 11672


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 00:28:15 2017
Size:   11672
Md5:    985720e28ac1b253d11d1685519d55f6
Sha1:   e6798e3f202671312655d229b013343366b6358d
Sha256: 29d74e111fe10bfdb8b7ba8f8dc22f2e25d76c161c284ecd7c28f27584b1b4e7
                                        
                                            GET /az/hprichbg/rb/LoxodontaAfricana_ROW12071115154_1920x1080.jpg HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:40 GMT
Content-Length: 332500


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   332500
Md5:    a661a6d1c9c973c4af519c5fa8da7c92
Sha1:   1ae5410ff6786d05f37eff1e10a9e96c7a07cf0a
Sha256: 7ea47c8accde39cdb9ed7695c8d2d1e4e51fbad0c7be3eba3015127063f32bfc
                                        
                                            POST /fd/ls/lsp.aspx? HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: text/xml; charset=UTF-8
Referer: https://www.bing.com/
Content-Length: 311
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204138
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         13.107.21.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: F4803F9D9F7445F7808B8D8FDA144A07 Ref B: STOSCHEDGE0111 Ref C: 2017-08-13T06:55:40Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
                                        
                                            POST /fd/ls/lsp.aspx? HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: text/xml; charset=UTF-8
Referer: https://www.bing.com/
Content-Length: 311
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=20&CH=20&UTC=120
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         13.107.21.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 052903199B9045FFAA8302368640C660 Ref B: STOEDGE0513 Ref C: 2017-08-13T06:55:40Z
Date: Sun, 13 Aug 2017 06:55:39 GMT


--- Additional Info ---
                                        
                                            GET /sa/8_01_0_000000/homepageImgViewer_c.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=20&CH=20&UTC=120

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 12442
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: EEB1498B788B43DE9046C8131756E2ED Ref B: STOSCHEDGE0216 Ref C: 2017-08-13T06:55:40Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   12442
Md5:    fbbc4d0f94ac0c2c6be73badc60af5f4
Sha1:   f08be11b9d458c44b9c3c17319117b07bb94954f
Sha256: 3d7e390118252f4dfcfeb21b077f2bd8c9da24b95451a34e2733ac372f61a03c
                                        
                                            GET /notifications/render?bnptrigger=%7B%22PartnerId%22%3A%22HomePage%22%2C%22IID%22%3A%22SERP.2000%22%2C%22Attributes%22%3A%7B%22RawRequestURL%22%3A%22%2F%22%7D%7D&IG=32032CF3687F4F34996A48190A1BB929&IID=SERP.2000 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 3129
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: ED21165EE0CA44199413AC1FC9C191FD Ref B: STOSCHEDGE0116 Ref C: 2017-08-13T06:55:40Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:55:40 2017
Size:   3129
Md5:    f769d1a40399446dc5cfaf5068100762
Sha1:   a6f719f2fbbdcef4685fb21e454a51f0d619b7e7
Sha256: c2e28150ffe337815e8c8f72c2824662ec78646a668fbb4485b06562c5098af0
                                        
                                            GET /notifications/render?bnptrigger=%7B%22PartnerId%22%3A%22HomePage%22%2C%22IID%22%3A%22SERP.2000%22%2C%22Attributes%22%3A%7B%22RawRequestURL%22%3A%22%2F%22%7D%7D&IG=C50B217FC6434B08A2899650D6969173&IID=SERP.2000 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 3129
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: F927BF5F5EC64050A8F746AB7133BC2A Ref B: STOSCHEDGE0310 Ref C: 2017-08-13T06:55:40Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:55:40 2017
Size:   3129
Md5:    f769d1a40399446dc5cfaf5068100762
Sha1:   a6f719f2fbbdcef4685fb21e454a51f0d619b7e7
Sha256: c2e28150ffe337815e8c8f72c2824662ec78646a668fbb4485b06562c5098af0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request
Cookie: __cfduid=d11b56323d69aee207cc0dfa5795886a11502607338

                                         
                                         198.41.214.186
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:41 GMT
Content-Length: 1820
Connection: keep-alive
Last-Modified: Sun, 13 Aug 2017 03:25:41 GMT
Expires: Thu, 17 Aug 2017 03:25:41 GMT
Etag: "c6896d1c1e745328291ae8e2adef85e0fb87e094"
Cache-Control: max-age=10800,public,no-transform,must-revalidate
X-Cache: HIT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38d9c529c09a4267-OSL


--- Additional Info ---
Magic:  data
Size:   1820
Md5:    e138513ccceaa81322a09615b79b6dd6
Sha1:   c6896d1c1e745328291ae8e2adef85e0fb87e094
Sha256: 6fd2f80aa4904202413646c65a58d8bfc078cc506a0f7a9df345243844db2dbf
                                        
                                            GET /sa/8_01_0_000000/homepageImgViewer_c.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204138

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 12442
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: BD13D1D80FAE43CDA0D62119E4F24BD8 Ref B: STOEDGE0513 Ref C: 2017-08-13T06:55:40Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   12442
Md5:    fbbc4d0f94ac0c2c6be73badc60af5f4
Sha1:   f08be11b9d458c44b9c3c17319117b07bb94954f
Sha256: 3d7e390118252f4dfcfeb21b077f2bd8c9da24b95451a34e2733ac372f61a03c
                                        
                                            GET /HPImageArchive.aspx?format=js&idx=0&n=1&nc=1502607340889&pid=hp HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Cache-Control: private
Content-Length: 491
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
X-MSEdge-Ref: Ref A: 8FC500AD159342E6A4AAFE280EAE679C Ref B: STOSCHEDGE0111 Ref C: 2017-08-13T06:55:40Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:55:40 2017
Size:   491
Md5:    f4fa9717941020482905f90016c324e5
Sha1:   a78fb341de0b36094463734718b2274b9ed2935c
Sha256: 850f3a3379b696633907bed662d5bff169ab922e7a3c6a30c302e9db0db99f8e
                                        
                                            GET /rms/rms%20answers%20Notifications%20close-hvr/ic/a5eb578c/409a194b.png HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=15552000
Last-Modified: Sat, 12 Aug 2017 14:13:59 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:40 GMT
Content-Length: 260


--- Additional Info ---
Magic:  PNG image, 21 x 21, 8-bit/color RGBA, non-interlaced
Size:   260
Md5:    38ce43d90c859c30050142fc1068a4ac
Sha1:   1ea79ee0bf8a54053144db88d35fd8cc666dd2de
Sha256: 8d138a7b906943bcefdf5b2cdadd804751ced6147cba3c140ae276c0ad2387d3
                                        
                                            GET /HPImageArchive.aspx?format=js&idx=0&n=1&nc=1502607341277&pid=hp HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Cache-Control: private
Content-Length: 491
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
X-MSEdge-Ref: Ref A: 75C8638B5B6547EFADFBF0DCC6FC42F7 Ref B: STOSCHEDGE0116 Ref C: 2017-08-13T06:55:41Z
Date: Sun, 13 Aug 2017 06:55:41 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:55:41 2017
Size:   491
Md5:    f8187ec72ba45411b5445f94d9bbdb0f
Sha1:   af3521576b2025e23b8a29502fc24be8df29377d
Sha256: 08e44bbcabac42f6fbf646bbea39900cced28172cae693d3d7000926a0c2935b
                                        
                                            GET /login.srf?wa=wsignin1.0&rpsnv=11&ct=1502607339&rver=6.0.5286.0&wp=MBI&wreply=https:%2F%2fwww.bing.com%2Fsecure%2FPassport.aspx%3Fpopup%3D1%26ssl%3D1&lc=1044&id=264960&checkda=1 HTTP/1.1 
Host: login.live.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/

                                         
                                         131.253.61.98
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 0
Expires: Sun, 13 Aug 2017 06:54:41 GMT
Location: https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1
Server: Microsoft-IIS/8.5
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Set-Cookie: uaid=b518e43521914374b2018932e55b77a3; domain=login.live.com;secure= ;path=/;HTTPOnly= ;version=1 MSPRequ=lt=1502607341&co=1&id=264960; secure= ;path=/;HTTPOnly=;version=1
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Sun, 13 Aug 2017 06:55:41 GMT
Connection: close


--- Additional Info ---
                                        
                                            GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Length: 230
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
X-MSEdge-Ref: Ref A: 2E7ACAADA8404AC6B77EF7C531EB3F64 Ref B: STOEDGE0513 Ref C: 2017-08-13T06:55:41Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:55:41 2017
Size:   230
Md5:    6916acc8dc9f2babeaaa1c42794a18c0
Sha1:   e7b8163657bd8c20f9a0e605d747b0bfdb379466
Sha256: 38bff2aeb140972950873d896fdd3b964ca8267b6c25643e92fe21cdafc40d31
                                        
                                            GET /login.srf?wa=wsignin1.0&rpsnv=11&ct=1502607338&rver=6.0.5286.0&wp=MBI&wreply=https:%2F%2fwww.bing.com%2Fsecure%2FPassport.aspx%3Fpopup%3D1%26ssl%3D1&lc=1044&id=264960&checkda=1 HTTP/1.1 
Host: login.live.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/

                                         
                                         131.253.61.98
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 0
Expires: Sun, 13 Aug 2017 06:54:41 GMT
Location: https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1
Server: Microsoft-IIS/8.5
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Set-Cookie: uaid=8994cb373d36466289cae5faf673f84f; domain=login.live.com;secure= ;path=/;HTTPOnly= ;version=1 MSPRequ=lt=1502607341&co=1&id=264960; secure= ;path=/;HTTPOnly=;version=1
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Sun, 13 Aug 2017 06:55:41 GMT
Connection: close


--- Additional Info ---
                                        
                                            GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Length: 230
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
X-MSEdge-Ref: Ref A: CD15DB57786448638174E7F574149872 Ref B: STOSCHEDGE0111 Ref C: 2017-08-13T06:55:41Z
Date: Sun, 13 Aug 2017 06:55:41 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:55:41 2017
Size:   230
Md5:    6916acc8dc9f2babeaaa1c42794a18c0
Sha1:   e7b8163657bd8c20f9a0e605d747b0bfdb379466
Sha256: 38bff2aeb140972950873d896fdd3b964ca8267b6c25643e92fe21cdafc40d31
                                        
                                            GET /sa/8_01_0_000000/HpbHeaderPopup.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 4452
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: 38E401E1F9CE4B4693C9E4AEFD7752B9 Ref B: STOSCHEDGE0310 Ref C: 2017-08-13T06:55:41Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   4452
Md5:    c15eb3418c0871f6de7ecfd7b7c6f6f2
Sha1:   1f824026e7cd0085986b5c37c34a98f3ea94bc20
Sha256: d11a335b12c9aa8cfbb2a5a13da945a50310d776a4f4a3c6d027bf077d97beee
                                        
                                            GET /fd/ls/l?IG=C50B217FC6434B08A2899650D6969173&CID=305B17C877BF604B2E6B1D15765B612D&Type=Event.PPT&DATA={%22S%22:632,%22E%22:3406,%22T%22:0,%22I%22:0,%22N%22:{%22H%22:{%22S%22:1942,%22E%22:3394,%22T%22:3}},%22M%22:{}}&P=SERP&DA=DB5 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 474A6B74550440368818BC55FFF79A14 Ref B: STOEDGE0513 Ref C: 2017-08-13T06:55:41Z
Date: Sun, 13 Aug 2017 06:55:40 GMT


--- Additional Info ---
                                        
                                            GET /sa/8_01_0_000000/HpbHeaderPopup.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 4452
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: 22F45A60789B406FB89290596965C16B Ref B: STOSCHEDGE0116 Ref C: 2017-08-13T06:55:41Z
Date: Sun, 13 Aug 2017 06:55:41 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   4452
Md5:    c15eb3418c0871f6de7ecfd7b7c6f6f2
Sha1:   1f824026e7cd0085986b5c37c34a98f3ea94bc20
Sha256: d11a335b12c9aa8cfbb2a5a13da945a50310d776a4f4a3c6d027bf077d97beee
                                        
                                            GET /fd/ls/l?IG=32032CF3687F4F34996A48190A1BB929&Type=Event.PPT&DATA={%22S%22:66,%22E%22:2714,%22T%22:0,%22I%22:0,%22N%22:{%22H%22:{%22S%22:1180,%22E%22:2708,%22T%22:2}},%22M%22:{}}&P=SERP&DA=DB5 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 42C6B4949BD344F38D4691FB2F3BB860 Ref B: STOSCHEDGE0111 Ref C: 2017-08-13T06:55:42Z
Date: Sun, 13 Aug 2017 06:55:41 GMT


--- Additional Info ---
                                        
                                            GET /az/hprichbg/rb/Kitesurfing_ROW13331642700_1366x768.jpg HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=155; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:41 GMT
Content-Length: 178430


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   178430
Md5:    926b8d22ab6cd248921ee68c12d26835
Sha1:   52ea2b4579f35259d0ce0392655cb8d839ba2e7c
Sha256: be6b4f834dfacf3ada3b0953eaba2117cab79b4c5fec793a930526b5826c2ae2
                                        
                                            GET /fd/ls/l?IG=C50B217FC6434B08A2899650D6969173&CID=305B17C877BF604B2E6B1D15765B612D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22FID%22%3A%22CI%22%2C%22Name%22%3A%22Base%22%2C%22TS%22%3A1502607340829%7D%2C%7B%22Time%22%3A399%2C%22T%22%3A%22CI.Latency%22%2C%22FID%22%3A%22HP%22%2C%22Name%22%3A%22Image%22%2C%22TS%22%3A1502607340829%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=700700; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 9DE68C11C5134611A94524B9CF993AD8 Ref B: STOSCHEDGE0310 Ref C: 2017-08-13T06:55:42Z
Date: Sun, 13 Aug 2017 06:55:41 GMT


--- Additional Info ---
                                        
                                            GET /fd/ls/l?IG=32032CF3687F4F34996A48190A1BB929&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22FID%22%3A%22CI%22%2C%22Name%22%3A%22Base%22%2C%22TS%22%3A1502607340835%7D%2C%7B%22Time%22%3A378%2C%22T%22%3A%22CI.Latency%22%2C%22FID%22%3A%22HP%22%2C%22Name%22%3A%22Image%22%2C%22TS%22%3A1502607340835%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=FF218E6A7EE64F629ACA2AE12B629057&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=0D9818556A476E1504D912886BA36F48&bIm=700700; _EDGE_S=F=1&SID=0D9818556A476E1504D912886BA36F48; _EDGE_V=1; MUID=305B17C877BF604B2E6B1D15765B612D; MUIDB=305B17C877BF604B2E6B1D15765B612D; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204139

                                         
                                         13.107.21.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 4C1DEBD85CCE4EF1B7F6AC515404BAA0 Ref B: STOEDGE0513 Ref C: 2017-08-13T06:55:42Z
Date: Sun, 13 Aug 2017 06:55:41 GMT


--- Additional Info ---