Overview

URL amosdelacama.blogspot.kr/search/label/shower
IP216.58.207.225
ASNAS15169 Google Inc.
Location United States
Report completed2018-11-11 15:24:39 CET
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-11-11 15:24:09 CET 1  104.20.209.59 Client IP ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (CoinHive Mining Domain)


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-11-11 2 amosdelacama.blogspot.kr/search/label/shower Malware
2018-11-11 2 amosdelacama.blogspot.com/search/label/shower Malware
2018-11-11 2 coinhive.com/lib/coinhive.min.js Malware
2018-11-11 2 amosdelacama.blogspot.com/search/label/shower Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 216.58.207.225

Date UQ / IDS / BL URL IP
2019-07-01 08:47:18 +0200
0 - 0 - 1 https://elmulrapan1981.blogspot.ca/ 216.58.207.225
2019-06-30 01:07:11 +0200
0 - 1 - 0 https://tracibexal1973.blogspot.gr/ 216.58.207.225
2019-06-30 00:54:20 +0200
0 - 1 - 0 inbhojinthron1984.blogspot.cl 216.58.207.225
2019-06-30 00:53:43 +0200
0 - 0 - 0 https://fahadsoror.blogspot.com/ 216.58.207.225
2019-06-27 11:05:38 +0200
0 - 0 - 1 https://trotterpledgmost1979.blogspot.hu/ 216.58.207.225
2019-06-26 10:39:23 +0200
0 - 0 - 0 https://fahadsoror.blogspot.com/ 216.58.207.225
2019-06-23 14:55:31 +0200
0 - 0 - 0 https://javsubenglish.blogspot.com/2019/06/rb (...) 216.58.207.225
2019-06-21 15:48:13 +0200
0 - 0 - 0 akjdiuaghdushdiuasdhas.blogspot.com 216.58.207.225
2019-06-21 15:44:47 +0200
0 - 0 - 1 https://reothrivinre1986.blogspot.com.es/ 216.58.207.225
2019-06-21 12:50:56 +0200
0 - 0 - 1 https://deociemilbikd1980.blogspot.nl/ 216.58.207.225

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2019-07-01 11:14:59 +0200
0 - 0 - 0 https://docs.google.com/forms/d/e/1FAIpQLSfZp (...) 216.58.207.206
2019-07-01 09:39:24 +0200
0 - 0 - 1 bartuatenbe1974.blogspot.pt 216.58.211.1
2019-07-01 09:33:26 +0200
0 - 0 - 0 https://movieok4k.blogspot.com/2019/06/articl (...) 216.58.211.1
2019-07-01 09:28:48 +0200
0 - 0 - 1 bartuatenbe1974.blogspot.pt/ 216.58.211.1
2019-07-01 09:19:18 +0200
0 - 0 - 1 https://bartuatenbe1974.blogspot.pt/ 216.58.207.193
2019-07-01 08:47:18 +0200
0 - 0 - 1 https://elmulrapan1981.blogspot.ca/ 216.58.207.225
2019-07-01 08:24:54 +0200
0 - 0 - 1 pacarama1983.blogspot.com 216.58.207.193
2019-07-01 08:19:22 +0200
0 - 1 - 0 mycricketlive.live 172.217.22.179
2019-07-01 07:21:49 +0200
0 - 0 - 0 fijisharkdiving.blogspot.com/2018/10/my-fiji- (...) 216.58.207.193
2019-07-01 06:37:59 +0200
0 - 0 - 0 ta.wow-auto-forms.appspot.com/bower_component (...) 216.58.211.148

Last 10 reports on domain: amosdelacama.blogspot.kr

Date UQ / IDS / BL URL IP
2019-03-31 23:10:39 +0200
0 - 0 - 3 amosdelacama.blogspot.kr/2010/04/la-semilla.html 216.58.211.129
2019-03-25 04:00:47 +0100
0 - 0 - 3 amosdelacama.blogspot.kr/2012/04 172.217.20.33
2018-12-28 15:32:55 +0100
0 - 0 - 2 amosdelacama.blogspot.kr/2010/04/la-semilla.html 172.217.21.129
2018-11-12 05:53:22 +0100
2 - 1 - 5 amosdelacama.blogspot.kr/2011/12 216.58.211.129
2018-11-12 05:07:01 +0100
2 - 1 - 4 amosdelacama.blogspot.kr/search/label/beach 216.58.211.129
2018-11-11 05:32:52 +0100
2 - 1 - 6 amosdelacama.blogspot.kr/2009/03 172.217.21.161
2018-11-11 03:43:58 +0100
2 - 1 - 4 amosdelacama.blogspot.kr/search/label/amateur 216.58.207.225
2018-11-11 00:54:36 +0100
2 - 1 - 4 amosdelacama.blogspot.kr/search/label/anal 172.217.21.161
2018-11-10 05:51:16 +0100
2 - 1 - 4 amosdelacama.blogspot.kr/2013/11/mr-ford-span (...) 216.58.207.225
2018-11-09 12:57:24 +0100
2 - 1 - 5 amosdelacama.blogspot.kr/search/label/Eric%20 (...) 216.58.207.193


JavaScript

Executed Scripts (24)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (64)


Request Response
                                        
                                            GET /search/label/shower HTTP/1.1 
Host: amosdelacama.blogspot.kr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.21.129
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Location: http://amosdelacama.blogspot.com/search/label/shower
Content-Encoding: gzip
Date: Sun, 11 Nov 2018 14:24:08 GMT
Expires: Sun, 11 Nov 2018 14:24:08 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 192
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   192
Md5:    7ee6c9d8e9250f5023d788d31b376878
Sha1:   4322989250f27655639736c100ae6bd64eef64c3
Sha256: 00a6e1b1857e79138c652a2b2a941a177c90e28d4552f0768ad3f606aecff4ac

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /search/label/shower HTTP/1.1 
Host: amosdelacama.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.21.129
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 11 Nov 2018 14:24:08 GMT
Date: Sun, 11 Nov 2018 14:24:08 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 30 Jul 2018 11:10:05 GMT
Etag: W/"6654746834d91255e992ced7469d7fbeeeddd9eedb17fc1342b196a87bcc0578"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 23593
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   23593
Md5:    20cf108975115c4982d0289c917d9ef3
Sha1:   7a51d2fb87663a3c7637868c55092a92cf262b88
Sha256: a638fa9ac369ec8eee093450a610b0560d968ec47d9253bac136e6eecded6641

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Oswald HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.207.202
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 11 Nov 2018 14:24:09 GMT
Date: Sun, 11 Nov 2018 14:24:09 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   190
Md5:    29c6cb9691eba33ad930680d66313307
Sha1:   63eb8bfc15c24ead7df44a7a8582b931a1b4be6e
Sha256: a0cf8335cad6ef633f85ab1b4ad03d637c0b33559da1ac9e8f8d5062ca975970
                                        
                                            GET /css?family=PT+Sans+Narrow HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.207.202
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 11 Nov 2018 14:24:09 GMT
Date: Sun, 11 Nov 2018 14:24:09 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   203
Md5:    7a31f6c0754ee2d17b9bdb3328720497
Sha1:   26b185e39027ce8614d687d29b36b42041c3a293
Sha256: 44b552076172da0cfca6edbc0daa6103ed341e535500fa5fecddcb1e0218fa20
                                        
                                            GET /-wqzYVSTa638/UQrc7C0UP3I/AAAAAAAABgU/TgbAOmzXLAs/s1600/home.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "va2f"
Expires: Mon, 12 Nov 2018 14:20:32 GMT
Content-Disposition: inline;filename="home.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:20:32 GMT
Server: fife
Content-Length: 1157
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 217


--- Additional Info ---
Magic:  GIF image data, version 89a, 21 x 21
Size:   1157
Md5:    4c4d5a137d02ca4414dfe2e76084c7a0
Sha1:   f5b0e9627a211af31faeb95b74f85471c07cc8e5
Sha256: ff33e9e45ece6b5b9099f38e8e0a246865d21330f4f6300f2f9dc6498c7441d6
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    d93602139e978e6b94d653202b3ddc01
Sha1:   2d7eb395df8728a672412d23b09e7d224ce31de7
Sha256: 073e0db62eb51cadc8ccc6a079c35d2f463d70fcf80f069b1038a7c0f6bc50fc
                                        
                                            GET /-OoSMWhfADig/T5cMXyovkjI/AAAAAAAAM7A/s3Sg993kQqY/s320/SHO45780910.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v33b0"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SHO45780910.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 25327
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   25327
Md5:    f3aec8e091da12c6b497b307e2afb558
Sha1:   2786ba812e1d893b162bc10f67f6c28229773bf4
Sha256: 9900eaca53f93d61e133aa48bb54bac13b1039770e60bf48218351934f19685b
                                        
                                            GET /-7NkJmhGFJyg/T5cNc6n1vyI/AAAAAAAAM7I/mq-CtggctVA/s320/00DGT7834.08.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v33b4"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="00DGT7834.08.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 25403
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   25403
Md5:    643d88dbff1fd9286a84a9e6f84cd45b
Sha1:   3376275c1f099fa986aed922a294af5f219dfc28
Sha256: 7cc19e0c086a159eec9cdb5c426aaf427217aa76b28e2e0906fccd519e2a33f2
                                        
                                            GET /-byizVI6MW7c/T5cJMgqUhEI/AAAAAAAAM6k/icKbqaCnQAM/s400/SHOW748470674303.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v33ab"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SHOW748470674303.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 27504
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   27504
Md5:    d217ebe4d2c40c0862df7bacd87ca943
Sha1:   11bea4b70c1f0be1598857b2546de2bdc768c0fa
Sha256: c2be4e421e843b4c2c87163419cabfca34cc9d2dca3d3ef595e38eb3ab09c0d3
                                        
                                            GET /-4grYtHohMzI/T5cMWlMdvaI/AAAAAAAAM64/YMI8nekK9kw/s320/SHO01_600.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v33ae"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SHO01_600.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 23025
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   23025
Md5:    d7a9ea27ea406d5fccf666e5730d8244
Sha1:   bfc9547f79f8584bc6c02fa844f7426353cc6437
Sha256: e135fd9e2304477031b7171f604230b8994884618861fb4f75733064c5b638e5
                                        
                                            GET /-EecITFwSyvM/T5cJJ96RpAI/AAAAAAAAM6c/vQn3fvKNMGk/s400/SHOW43710.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v33a7"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SHOW43710.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 35102
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   35102
Md5:    732d09f3d6bcb289c80b2247f77cf696
Sha1:   711d9ba55241770670e84743a289b2b281efd880
Sha256: 5d1e98fb254fef2a70da81ca10d99f1969f7420c561c87383e3554ecad109653
                                        
                                            GET /-qfWuAo1HdpI/T5cK6KkGwwI/AAAAAAAAM6w/PYiaDXXBEns/s320/000DUC637808.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v33ac"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="000DUC637808.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 29506
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   29506
Md5:    2721c5b4a132bf5aac9ea4bca4e36a38
Sha1:   12a9ee3fde7afcc8b77b6854ed18e355ed7d3558
Sha256: b4f9f7a0677a1a5722aaaf44270ae8f04af9b7a8cb678e032af4a17c8be3d864
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 07 Nov 2018 13:21:29 GMT
Etag: 88BF443A9E3F620FB89842E1EA5496D383780935
X-OCSP-Responder-ID: rmdccaocsp15
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=254888
Expires: Wed, 14 Nov 2018 13:12:17 GMT
Date: Sun, 11 Nov 2018 14:24:09 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    471d881647dfbd55a615fdfeb222a217
Sha1:   88bf443a9e3f620fb89842e1ea5496d383780935
Sha256: c9cf3c6b96e9bc02fd522cdd8e590cfd2c2588a5ab2577b53c12792c4812db7e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Mon, 05 Nov 2018 09:27:34 GMT
Etag: F39B2270F941D5546998728E717E21E44102FDE7
X-OCSP-Responder-ID: rmdccaocsp16
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=68005
Expires: Mon, 12 Nov 2018 09:17:34 GMT
Date: Sun, 11 Nov 2018 14:24:09 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    f33d11bb3516dfe9131b3f7b2ded93d9
Sha1:   f39b2270f941d5546998728e717e21e44102fde7
Sha256: 4724060b7fbbcd068c0c818ddcd1e5ed8b30b6d403d4893cc0e9fd43129f355c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Mon, 05 Nov 2018 09:27:34 GMT
Etag: E996CA4E8F395CBDD143B7F450F12B5C2577A315
X-OCSP-Responder-ID: rmdccaocsp28
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=68025
Expires: Mon, 12 Nov 2018 09:17:54 GMT
Date: Sun, 11 Nov 2018 14:24:09 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d5ad0cdca1daf4ee01f26fac9656846a
Sha1:   e996ca4e8f395cbdd143b7f450f12b5c2577a315
Sha256: 122ba43fb270c723f54d40877fa7bde5bbe7ae02fccda8f0295f7984bd457a21
                                        
                                            GET /static/v1/widgets/254310735-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.209.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7524
Date: Sat, 10 Nov 2018 02:26:54 GMT
Expires: Sun, 10 Nov 2019 02:26:54 GMT
Last-Modified: Fri, 09 Nov 2018 10:16:02 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 129435
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   7524
Md5:    5edaca0b90aa2022a9f8cdbdc49e6f4a
Sha1:   42fecf342d6ff79b5f8e206eecb6d54a513188af
Sha256: a8232fd6d263c26f195cb04abf7e127dd3829a510070baf64264314bb47da932
                                        
                                            GET /_vKFzlDslUMs/S7f5BGrXRPI/AAAAAAAABGE/CaHr6f94pHo/s72-c/yo+1.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v461"
Expires: Sun, 11 Nov 2018 23:46:56 GMT
Content-Disposition: inline;filename="yo 1.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 2996
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2996
Md5:    cb41fb1b378f22cd8c8e95fdd46afa90
Sha1:   379bf0485e5b1674da8a33dfdc6e879d38d1e410
Sha256: 73f4c69924ebcb7f8bbffa9882aa67b0c9325a6f54b8ac91d9e6b6dc16fdf173
                                        
                                            GET /-_VypoowsDKc/UlI_kfgTveI/AAAAAAAAdRc/eRp72ivpF3I/s72-c/highfliers_q001.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7518"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="highfliers_q001.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 3714
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3714
Md5:    ef752150eacf99248ea9429845559313
Sha1:   9403cc7a734bb5e9bbc0b53e82bc31c7231607e9
Sha256: 084dfc0d6213e4bff2495be3541cacd268fcbf062919dffafd295258c72f24cf
                                        
                                            GET /_vKFzlDslUMs/SUJ5N7Ke8mI/AAAAAAAAAUI/G7EyEUzoJ7A/s72-c/zapatos.jpeg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v142"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="zapatos.jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 3205
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3205
Md5:    8a3c25fed7426218a4e124846f04e1ec
Sha1:   a0de16ac14f5253e1e9188801379becb89c86119
Sha256: 084ec07c6e3962a98045ac7fe45d3623f9c7ad5b7f154c86da7c1a1590ff55ab
                                        
                                            GET /-JRRbHGKImsA/UdXAnqomt_I/AAAAAAAAEfk/trnDWXut6RQ/s72-c/8.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v11fa"
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="8.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 3062
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3062
Md5:    a591cf0c4eb76d6b45ec3b9e7f1d833a
Sha1:   6dd95da35938ef4f06955d00b96eeceba2be65a7
Sha256: a5b6f72ac0a9e6fdd23a91038c9ba91a67f557bb23ef67985673ac12b2b91aaa
                                        
                                            GET /-N-OGMjuo60Y/UljrVSwHtHI/AAAAAAAAdZQ/JsJNucqQAWg/s72-c/npp4086006.JPG HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7595"
Expires: Sun, 11 Nov 2018 23:46:56 GMT
Content-Disposition: inline;filename="npp4086006.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 3428
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3428
Md5:    41c709bdae8a3f6bd4b92dac28e17b09
Sha1:   3845bbe8b62c2840ef8b358167de142fd260b8ad
Sha256: 82593e9b82cf03d009393e96efe47d9b7e64be6d07beff06c1fdbfc04a614b37
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         104.20.209.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 11 Nov 2018 14:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d96763916e81700ece3bce472ab96ca9e1541946249; expires=Mon, 11-Nov-19 14:24:09 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Mon, 15 Oct 2018 11:58:03 GMT
Etag: W/"5bc480cb-423b4"
Expires: Sun, 11 Nov 2018 22:24:09 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 47816bbb1a1242a3-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   70162
Md5:    b6bb44f95a22a27e8b92d2ccbc591524
Sha1:   b5f4bf87301fb5291d70f392758d9c56ae374cc3
Sha256: e32b7829c99619bfa2c1de9e1ed9e9e515863b2d094e86c629c67c7350e8c96d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /_vKFzlDslUMs/SUFXdsjxyFI/AAAAAAAAATo/lBBH9uO846Q/s72-c/EROSPIC+(21).JPG HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v13a"
Expires: Sat, 10 Nov 2018 11:56:50 GMT
Content-Disposition: inline;filename="EROSPIC (21).JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 2328
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2328
Md5:    b0baddd3be80d7a931e50eb0392ab287
Sha1:   45097f08b5697fcabdbe05c7e4abf4053f2ddcfb
Sha256: bce819f2661f5c7e35abbc23bffbafe9969955bdc04f84a3d7ad5fd3799c9b25
                                        
                                            GET /_vKFzlDslUMs/SSXhGI1YM2I/AAAAAAAAARY/E9sBbLA5zaE/s72-c/surrender_by_petitioner.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v116"
Expires: Mon, 05 Nov 2018 10:35:30 GMT
Content-Disposition: inline;filename="surrender_by_petitioner.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 2199
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2199
Md5:    ea6d60b4e9831f36ee8bc4940f6794b0
Sha1:   aec45fb55861335b29a5af9f75c3b1f2527e1950
Sha256: aeb8a6af821572436159941d9433638ce843ec51d52ea6f1ffbdf5519db6a569
                                        
                                            GET /-Es4rPAZpSEA/VO-9j025emI/AAAAAAAAAA8/v0-_VsrrI3I/s930/sun%2Blogo.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v10"
Expires: Mon, 12 Nov 2018 02:15:52 GMT
Content-Disposition: inline;filename="sun logo.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 11:43:12 GMT
Server: fife
Content-Length: 5023
X-XSS-Protection: 1; mode=block
Age: 9657
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 50 x 50, 8-bit/color RGBA, non-interlaced
Size:   5023
Md5:    274bc928779def1365610c0e51789195
Sha1:   8d1b2e05bba12b0ac52b46cfa7e37e95cd6a02b5
Sha256: 998e30a5e683847ca81cb1063fd8465f6d2dd3a0473979d830c9f73165a5ac3f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 08 Nov 2018 03:52:17 GMT
Etag: 8BE454DA248A4953E9720B8954BA3811BF8B2379
X-OCSP-Responder-ID: rmdccaocsp23
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=307068
Expires: Thu, 15 Nov 2018 03:41:57 GMT
Date: Sun, 11 Nov 2018 14:24:09 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    cca834b44b0ce80665392ae21d0f967a
Sha1:   8be454da248a4953e9720b8954ba3811bf8b2379
Sha256: 3a24e639664eaa3d1809e39b68ebbd9c9a36126e15b585139a71b0ce356b597d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Mon, 05 Nov 2018 09:27:34 GMT
Etag: DDF3290C7B7E2A2C4325D99E8AE5AFB7DF4F76D6
X-OCSP-Responder-ID: rmdccaocsp26
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=68018
Expires: Mon, 12 Nov 2018 09:17:47 GMT
Date: Sun, 11 Nov 2018 14:24:09 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    77c748838b09ae9cfd392334f9e1f009
Sha1:   ddf3290c7b7e2a2c4325d99e8ae5afb7df4f76d6
Sha256: 456d7b7b2412ac6704faf92634bd6bf91cb4ef84f4f4c5b206d9617732818350
                                        
                                            GET /static/v1/v-css/2982899471-interstitial_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.209.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1037
Date: Wed, 07 Nov 2018 06:32:43 GMT
Expires: Thu, 07 Nov 2019 06:32:43 GMT
Last-Modified: Tue, 06 Nov 2018 12:19:48 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 373886
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   1037
Md5:    0f847241b227facee21bba9ff0ba163a
Sha1:   e225a1e10866dec6fbd6ed900c6a9f5ed60fda95
Sha256: 7fd8224fadbd58000c1957ce80d70a68f2498ebbbad8ca57fe05c0d89261b44f
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    0c04600af4ef491011e763875d433240
Sha1:   ebd796f3fd30de1d7a0520f09a8d8d146cf3e94a
Sha256: 76961164a2b366560d1c476cd32fcadb76bfb1e5879670d52684aadc0d4fe063
                                        
                                            GET /jquery-3.3.1.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         205.185.208.52
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 11 Nov 2018 14:24:09 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 30288
Last-Modified: Sat, 20 Jan 2018 17:26:44 GMT
Server: nginx
Etag: W/"5a637bd4-1538f"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1541946249.dop009.sk1.t,1541946249.cds032.sk1.shn,1541946249.cds032.sk1.c


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   30288
Md5:    d549b312f7a7d228b4ec229a6547dfdc
Sha1:   0766794582ad530ec0f8c2595f741086afffa312
Sha256: f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=3453890495690003610&zx=99815f8e-bfc4-4c9a-8b0a-9a8148ce328d HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.209.137
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 11 Nov 2018 14:24:09 GMT
Last-Modified: Sun, 11 Nov 2018 14:24:09 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /proxy/LgrYG3F_Nzjti0a3QAB5CFq5gSCikqRdAlYHtNV9rQ_Eh--ZfSTV4c8KbR-MmqcshKr_F4fc8NmTLvD7gHBqYmpE HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.207.193
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Expires: Mon, 12 Nov 2018 14:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="unnamed.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 3239
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3239
Md5:    7540edac39498afb3db7090b57feb3da
Sha1:   e991ffed17435e3b7af8f23c0d0b253addf58004
Sha256: 7e6e172f9039d7dec8b0db05f2b83045f94814c7eb4770016a20705c9263bc20
                                        
                                            GET /-UzQSVqe350A/URJhGaHsGqI/AAAAAAAAB7s/UVJaEnVxtc8/s1600/body.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "va1c"
Expires: Mon, 12 Nov 2018 01:36:25 GMT
Content-Disposition: inline;filename="body.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 23343
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200
Size:   23343
Md5:    6f52f16e0c8869759029f92150fac68f
Sha1:   d7171b0111ecbc51953fb6a6a0fcb639c9aacdb2
Sha256: 0ba65009d2629977348e7cc30414a518b21b8fe7f50351fcead70764219b9bb2
                                        
                                            GET /-K4hNJ9YcB7I/URKRQe-RbaI/AAAAAAAAB_c/bGaB_wyqaoA/s1600/dotted.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7f7"
Expires: Mon, 12 Nov 2018 02:13:28 GMT
Content-Disposition: inline;filename="dotted.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 10:50:50 GMT
Server: fife
Content-Length: 196
X-XSS-Protection: 1; mode=block
Age: 12799
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 3 x 3, 8-bit/color RGBA, non-interlaced
Size:   196
Md5:    b22e8d3271b6ef77912ce1d52e3a75e2
Sha1:   18c57d175904e093e46622cf11d40a032b5da366
Sha256: bf06b15d3e82be3040e11d303834b7102e3f2c1c737cea9b1fee4f097d537772
                                        
                                            GET /s/oswald/v16/TK3iWkUHHAIjg752GT8A.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Oswald
Origin: http://amosdelacama.blogspot.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18936
Date: Wed, 07 Nov 2018 06:15:17 GMT
Expires: Thu, 07 Nov 2019 06:15:17 GMT
Last-Modified: Tue, 07 Nov 2017 15:18:46 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 374932


--- Additional Info ---
Magic:  data
Size:   18936
Md5:    ca70f49a133f08485bd05d5cb28ef8b7
Sha1:   9029570f276ed6b7d2895ced7175f958fb6c1c5f
Sha256: a7a4038c6fbb19ba522819188aed0ff204d80e19223b1cab388a290a8d5e47fe
                                        
                                            GET /-AIW512aa4Ms/URJ2uXZh45I/AAAAAAAAB9c/QMul0JdxpNs/s1600/outerpic.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7d7"
Expires: Mon, 12 Nov 2018 02:13:24 GMT
Content-Disposition: inline;filename="outerpic.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:09 GMT
Server: fife
Content-Length: 340
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  PNG image, 3 x 360, 8-bit/color RGB, non-interlaced
Size:   340
Md5:    80668175cbb798c380dd6b82f67db3c3
Sha1:   938f47d35c8f01aa839fb0f292dcba9f09a0aa31
Sha256: a6aea32e729e6d2b4f39f96e813d2841148a5f03badc23ccffe304cfde547c12
                                        
                                            GET /blogin.g?blogspotURL=http://amosdelacama.blogspot.com/search/label/shower HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.209.137
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://accounts.google.com/ServiceLogin?continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttp://amosdelacama.blogspot.com/search/label/shower%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttp://amosdelacama.blogspot.com/search/label/shower%26bpli%3D1&passive=true&go=true
Content-Encoding: gzip
Date: Sun, 11 Nov 2018 14:24:09 GMT
Expires: Sun, 11 Nov 2018 14:24:09 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   286
Md5:    6634cf97df639632a936a4644961b1de
Sha1:   f41ad4b9e2d88809ba2662d00d945c1a99a55eef
Sha256: 4346c7a3ad31adc4b1eec30d2d839687b72ea63bf566efdca7ac9a33716bdd56
                                        
                                            GET /img/icon18_wrench_allbkg.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.209.137
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 475
Date: Mon, 05 Nov 2018 21:51:30 GMT
Expires: Mon, 12 Nov 2018 21:51:30 GMT
Last-Modified: Mon, 05 Nov 2018 10:18:15 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 491559
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  PNG image, 18 x 18, 8-bit colormap, non-interlaced
Size:   475
Md5:    f617effe6d96c15acfea8b2e8aae551f
Sha1:   6d676af11ad2e84b620cce4d5992b657cb2d8ab6
Sha256: d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:10 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    b9d8c8918d8a16c29ff98ad86ef5c9f4
Sha1:   704a841d2c45e8520e46f7b8d10faa0f8d98bbd7
Sha256: 46d3abdd7647d7bba20070eb3450d48ebd2c0f06c19fdf823dbba0f7e8640252
                                        
                                            GET /search/label/shower HTTP/1.1 
Host: amosdelacama.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower
If-Modified-Since: Mon, 30 Jul 2018 11:10:05 GMT
If-None-Match: W/"6654746834d91255e992ced7469d7fbeeeddd9eedb17fc1342b196a87bcc0578"

                                         
                                         172.217.21.129
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 11 Nov 2018 14:24:10 GMT
Date: Sun, 11 Nov 2018 14:24:10 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 30 Jul 2018 11:10:05 GMT
Etag: W/"6654746834d91255e992ced7469d7fbeeeddd9eedb17fc1342b196a87bcc0578"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 23592
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   23592
Md5:    8a329b114b4b502782372f04b752dc7b
Sha1:   86883e01d60c0fcc6c1ace2d84a4a6a737e883a9
Sha256: 26a8cf8a0123dc7cca9771107c6febf92bd48253d93e7867989406fb8e1eb1a9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /-6p_AqXL70hQ/UQWPHMObw9I/AAAAAAAABZ0/f2UWIvjFkSQ/s1600/footerli.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.21.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v59d"
Expires: Mon, 12 Nov 2018 02:13:25 GMT
Content-Disposition: inline;filename="footerli.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Nov 2018 14:24:10 GMT
Server: fife
Content-Length: 223
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  PNG image, 4 x 7, 8-bit/color RGBA, non-interlaced
Size:   223
Md5:    04b7dfa97e05f4622e2d9a08719a7b07
Sha1:   a15042ab03db6f3d5e822ec3de37dde74c96f920
Sha256: 3e5a716afd9759cd1759126af6e50af605f0e135fedfed0a3c39ceba7c653ffc
                                        
                                            GET /s/ptsansnarrow/v9/BngRUXNadjH0qYEzV7ab-oWlsbCGwRs.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=PT+Sans+Narrow
Origin: http://amosdelacama.blogspot.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 43724
Date: Sun, 11 Nov 2018 14:23:12 GMT
Expires: Mon, 11 Nov 2019 14:23:12 GMT
Last-Modified: Mon, 08 Oct 2018 20:49:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 58


--- Additional Info ---
Magic:  data
Size:   43724
Md5:    b7ed38087559d9362d906b1a18330dfc
Sha1:   f2dd0afd08a4b405e72c6ecab85e9338e4617441
Sha256: 0798171a4c2f57e9ba49e415b15d02db6df7807a6043066344f30806a8ad9fb4
                                        
                                            GET /blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         216.58.209.137
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 11 Nov 2018 14:24:10 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   41255
Md5:    d8c03e1d241dc1f85494bd3cc1c2e098
Sha1:   4d68dcbf81f3180c78b73c68c3e2b00223b2546c
Sha256: ed46e24bda31a929ea873c83cd1e98961acc00bafa092396c8d9a4c901d60177
                                        
                                            GET /static/v1/v-css/281434096-static_pages.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.209.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1374
Date: Sun, 11 Nov 2018 14:21:26 GMT
Expires: Mon, 11 Nov 2019 14:21:26 GMT
Last-Modified: Sat, 10 Nov 2018 22:15:18 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 164
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   1374
Md5:    49fea0412dd2b3a36f11f28335b1acbc
Sha1:   061e4fc40c4a98e1d350ee4699fd7f8df92f3d17
Sha256: ad9029fcd2bc7cfdd8fca53e1316793b7693274cb6e502f3abbae411d7a78648
                                        
                                            GET /static/v1/jsbin/3101730221-analytics_autotrack.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.209.137
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8412
Date: Sun, 11 Nov 2018 14:18:37 GMT
Expires: Mon, 11 Nov 2019 14:18:37 GMT
Last-Modified: Sat, 10 Nov 2018 22:15:18 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 333
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   8412
Md5:    739f1b15eee23787051d56b33e822c8b
Sha1:   711bac2e42885c5944e2fc672b6d3e2677b58e1f
Sha256: 1321e6c3f622d3cf3b98c8553308ecbd5be2b234e6c50c1271b90a6e8de6d300
                                        
                                            GET /img/blogger-logotype-color-black-1x.png HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.209.137
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 1155
Date: Mon, 05 Nov 2018 18:54:21 GMT
Expires: Mon, 12 Nov 2018 18:54:21 GMT
Last-Modified: Sun, 04 Nov 2018 23:12:34 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 502189
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  PNG image, 112 x 27, 8-bit colormap, non-interlaced
Size:   1155
Md5:    a9d652846aeacdf8da5401f6e4d4a409
Sha1:   6127321cafe0be999bc0c9d952715ede2b9dd83d
Sha256: cbad27c35fbc84e2da4280476adeb197566db2750b8b4a79eb7e872db8d8acb7
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:10 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    9db6a5b35657dd3f1327540a11c2084e
Sha1:   ae6cb0ba102816ffd10a2f1de4a7843ddb09eb3e
Sha256: dbc0ad465641ffc5e9e628400879c28bfe0e9b220b202a4cb911bc3ba9e42ae9
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:10 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    0880b1ca9894a5a2e7f017f887f7a37a
Sha1:   3102480a65a0cf938e2c25d134ce2d8f522e189e
Sha256: 205d021942230cc8d9663b04f2f387416406bef08fdaa65355996cfb28a38ec6
                                        
                                            GET /css/maia.css HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.211.132
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 11 Nov 2018 14:24:10 GMT
Expires: Sun, 11 Nov 2018 14:24:10 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 26 Feb 2018 16:30:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   12181
Md5:    bbb96f1e62e3f84502664d603d4ecbfc
Sha1:   684db7b7626d997e41d11716107d25824f322983
Sha256: fcb969338fcac7f4d33a5f51945c6756d58881b82572604863fd8c0f3b1840c7
                                        
                                            GET /css?family=Open+Sans:300 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.207.202
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 11 Nov 2018 14:24:10 GMT
Date: Sun, 11 Nov 2018 14:24:10 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   201
Md5:    15cf80a4e8f280f780a0fdc257dd3950
Sha1:   957113e52dc8fc0bbd849d39d8e243e3abd68bb1
Sha256: 1cb7c017ab0b138bf945f4f1f12f4cbbcc29ec319d5b19a9ca6feba433702cd5
                                        
                                            GET /css?lang=no&family=Product+Sans|Roboto:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.207.202
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 11 Nov 2018 14:24:11 GMT
Date: Sun, 11 Nov 2018 14:24:11 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   311
Md5:    6c5e587b4f70c3630a164196a8241bb7
Sha1:   431b05bb16693facbbe516b0ae25b6aff764e7a0
Sha256: a490453de5343c8fd36053e2b0990f509b0d3b88d6f7c5ab4b59cb0ab1c9b7dc
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:11 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    55fc7138e5c5ed230a49078198789cd8
Sha1:   ebcf360d5970ebd4f8e70cfe04c0e898f90ca856
Sha256: 81c73ac1ece4dcb5b3623e763e5ee05a85015dbe8cc1279035c395320832af25
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Sun, 11 Nov 2018 13:23:13 GMT
Expires: Sun, 11 Nov 2018 15:23:13 GMT
Last-Modified: Mon, 05 Nov 2018 21:10:09 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17404
Cache-Control: public, max-age=7200
Age: 3658
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17404
Md5:    33586531225d561faadda61de818c510
Sha1:   9a3b5ffbdc4071557def3d9609eee6ad3c52d1e1
Sha256: 521d2fb506ca60463e914fd138e092f935579d31436dcff3cc6a1d216d06ef82
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:11 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    07cbf86577ee91a9fbcb5de58339494d
Sha1:   4bd960c7c5ab09c142434f98483ea034387d83ad
Sha256: 05f4ea09e4613a3ed49451f0c0b9feb35ba288da9a0bd22abd926edc62717aa4
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UN_r8OUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300
Origin: https://www.blogger.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18280
Date: Sat, 10 Nov 2018 02:49:31 GMT
Expires: Sun, 10 Nov 2019 02:49:31 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:35 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 128080
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   18280
Md5:    521d17bc9f3526c690e8ada6eee55bec
Sha1:   0c74bab4a4ebdafe080c8a35bd61d38f1b692358
Sha256: 624b3c987e1731e2871567be1451a257be8ebcaa2abebaa45651d3d95fa99492
                                        
                                            GET /images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Length: 738
Date: Sun, 04 Nov 2018 08:35:57 GMT
Expires: Mon, 04 Nov 2019 08:35:57 GMT
Last-Modified: Thu, 21 Apr 2016 03:17:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 625695
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   738
Md5:    d28c52ab9d8055c95c3cdeb36cc2f0c8
Sha1:   5d504625b0d7e828ff158191fc652013191a7f94
Sha256: 1dfae9e473f50336f37866b279547919bb22db2122cca954af55fe6b24edb17d
                                        
                                            GET /og/_/ss/k=og.qtm.onahii5aksvz.L.F4.O/m=q_d,qawd,qmd/excm=qaaw,qabr,qadd,qaid,qalo,qano,qebr,qein,qhaw,qhbr,qhch,qhga,qhid,qhin,qhlo,qhmn,qhno,qhpc,qhpr,qhsf,qhtb,qhtt/d=1/ed=1/rs=AA2YrTvYvQ2eKJWWZx0sywmImAVATuM0aQ HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Length: 2464
Date: Wed, 07 Nov 2018 08:09:50 GMT
Expires: Thu, 07 Nov 2019 08:09:50 GMT
Last-Modified: Mon, 05 Nov 2018 15:19:05 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 368062
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   2464
Md5:    81b9ac20e97c18f5ab145fb6c4dec60d
Sha1:   286b370492199ff093bd6e6262ace33101f3e2b2
Sha256: 0a377a1f90c43ea8abd496228e1190b26957cb39000b21201ffb6aef83a4ddd3
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?lang=no&family=Product+Sans|Roboto:400,700
Origin: https://www.blogger.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19888
Date: Wed, 24 Oct 2018 22:31:05 GMT
Expires: Thu, 24 Oct 2019 22:31:05 GMT
Last-Modified: Mon, 16 Oct 2017 17:33:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1525987
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   19888
Md5:    cf6613d1adf490972c557a8e318e0868
Sha1:   b2198c3fc1c72646d372f63e135e70ba2c9fed8e
Sha256: 468e579fe1210fa55525b1c470ed2d1958404512a2dd4fb972cac5ce0ff00b1f
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?lang=no&family=Product+Sans|Roboto:400,700
Origin: https://www.blogger.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19824
Date: Mon, 05 Nov 2018 20:12:30 GMT
Expires: Tue, 05 Nov 2019 20:12:30 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:56 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 497502
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   19824
Md5:    bafb105baeb22d965c70fe52ba6b49d9
Sha1:   934014cc9bbe5883542be756b3146c05844b254f
Sha256: 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
                                        
                                            GET /og/_/js/k=og.qtm.en_US.1dcU9OUCq8s.O/rt=j/m=q_d,q_pc,qawd,qmd,qsd,qmutsd,qbg/exm=qaaw,qabr,qadd,qaid,qalo,qano,qebr,qein,qhaw,qhbr,qhch,qhga,qhid,qhin,qhlo,qhmn,qhno,qhpc,qhpr,qhsf,qhtb,qhtt/d=1/ed=1/rs=AA2YrTvIE9gfRiHNzqS2ScM3RMga31LwmA HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Length: 42804
Date: Wed, 07 Nov 2018 07:44:42 GMT
Expires: Thu, 07 Nov 2019 07:44:42 GMT
Last-Modified: Mon, 05 Nov 2018 15:19:05 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 369570
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   42804
Md5:    66ea0b653f0103b3feac02a8d9cda18f
Sha1:   026e08704d9820a37a458e37e444baf37ff1b97d
Sha256: 5c83b75b89f0adaaf4a7ab81b63138b1e58dcaf04e3dee6419b3f8ff73e0ad27
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Nov 2018 14:24:12 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    3a65a94c8be18bd7fba43e5992fd38fd
Sha1:   f74d94139500b37161322095271f4d7c7501cb87
Sha256: e15bec7d61687895d0c4e1ce62caad95e44242f72c8cbb2b5a38c14dacb5a8bd
                                        
                                            GET /_/scs/abc-static/_/js/k=gapi.gapi.en.CUp85wbT4DI.O/m=gapi_iframes,googleapis_client,plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo-XBQda2DFvo9hxbj_dGnCV84SJMA/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 48166
Date: Wed, 07 Nov 2018 09:24:27 GMT
Expires: Thu, 07 Nov 2019 09:24:27 GMT
Last-Modified: Mon, 29 Oct 2018 15:22:08 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 363585
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   48166
Md5:    53eea982d7ad1ad35b35fc3edd48e8a7
Sha1:   b499c475ba422abd98f154163fc85126203bc692
Sha256: 949ad5b24488206810f318d1a973ef081b6296b8ec0b89e86102dd18b9b7f092
                                        
                                            GET /ServiceLogin?continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttp://amosdelacama.blogspot.com/search/label/shower%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttp://amosdelacama.blogspot.com/search/label/shower%26bpli%3D1&passive=true&go=true HTTP/1.1 
Host: accounts.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://amosdelacama.blogspot.com/search/label/shower

                                         
                                         172.217.20.45
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
X-Frame-Options: DENY
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 11 Nov 2018 14:24:10 GMT
Location: https://www.blogger.com/blogin.g?blogspotURL=http%3A%2F%2Famosdelacama.blogspot.com%2Fsearch%2Flabel%2Fshower&bpli=1
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Set-Cookie: GAPS=1:ePkOvukNB6_W5jsVhQnlfCPgKrPVlQ:_3PgL4PyB-EInlvL;Path=/;Expires=Tue, 10-Nov-2020 14:24:10 GMT;Secure;HttpOnly;Priority=HIGH
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---