Overview

URL https://t.co/TGO2kPSJWx
IP199.16.156.75
ASNAS13414 Twitter Inc.
Location United States
Report completed2018-11-08 18:12:51 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 199.16.156.75

Date UQ / IDS / BL URL IP
2018-11-16 08:16:10 +0100
0 - 0 - 0 t.co/AceckE7zkb 199.16.156.75
2018-11-16 03:30:53 +0100
0 - 2 - 3 https://t.co/NrfzRDmyca 199.16.156.75
2018-11-15 19:20:01 +0100
0 - 1 - 4 https://t.co/NrfzRDmyca 199.16.156.75
2018-11-15 12:52:50 +0100
0 - 0 - 0 hxxps://t.co/xnWoOlYndv 199.16.156.75
2018-11-14 12:59:09 +0100
0 - 1 - 0 https://t.co/pXZyuWzJjq 199.16.156.75
2018-11-14 04:05:20 +0100
0 - 0 - 0 199.16.156.75 199.16.156.75
2018-11-13 17:39:55 +0100
0 - 0 - 2 t.co/laj5KNanPv 199.16.156.75
2018-11-13 14:06:05 +0100
0 - 0 - 0 https://t.co/1uMPMnzJQc 199.16.156.75
2018-11-13 13:13:28 +0100
0 - 0 - 0 https://t.co/kpQO2LD453 199.16.156.75
2018-11-13 01:21:46 +0100
0 - 0 - 0 https://t.co/1WF6UjZfkb 199.16.156.75

Last 10 reports on ASN: AS13414 Twitter Inc.

Date UQ / IDS / BL URL IP
2018-11-16 18:19:05 +0100
0 - 0 - 0 https://twitter.com/nflhdtve 104.244.42.65
2018-11-16 17:18:41 +0100
0 - 0 - 0 https://twitter.com/Oktagon10Live/status/1063 (...) 104.244.42.1
2018-11-16 14:59:57 +0100
0 - 0 - 0 https://twitter.com/Fightnews24/status/106236 (...) 104.244.42.65
2018-11-16 09:31:08 +0100
0 - 0 - 0 t.co 199.16.156.11
2018-11-16 09:30:23 +0100
0 - 0 - 0 https://twitter.com/jules_su/status/106186588 (...) 104.244.42.129
2018-11-16 09:09:28 +0100
0 - 0 - 0 t.co/AceckE7zkb 199.16.156.11
2018-11-16 08:16:10 +0100
0 - 0 - 0 t.co/AceckE7zkb 199.16.156.75
2018-11-16 07:38:06 +0100
0 - 0 - 0 https://t.co/AceckE7zkb 199.16.156.11
2018-11-16 03:30:53 +0100
0 - 2 - 3 https://t.co/NrfzRDmyca 199.16.156.75
2018-11-15 19:42:54 +0100
0 - 1 - 4 t.co/NrfzRDmyca 199.16.156.11

Last 10 reports on domain: t.co

Date UQ / IDS / BL URL IP
2018-11-16 09:31:08 +0100
0 - 0 - 0 t.co 199.16.156.11
2018-11-16 09:09:28 +0100
0 - 0 - 0 t.co/AceckE7zkb 199.16.156.11
2018-11-16 08:16:10 +0100
0 - 0 - 0 t.co/AceckE7zkb 199.16.156.75
2018-11-16 07:38:06 +0100
0 - 0 - 0 https://t.co/AceckE7zkb 199.16.156.11
2018-11-16 03:30:53 +0100
0 - 2 - 3 https://t.co/NrfzRDmyca 199.16.156.75
2018-11-15 19:42:54 +0100
0 - 1 - 4 t.co/NrfzRDmyca 199.16.156.11
2018-11-15 19:20:01 +0100
0 - 1 - 4 https://t.co/NrfzRDmyca 199.16.156.75
2018-11-15 12:52:50 +0100
0 - 0 - 0 hxxps://t.co/xnWoOlYndv 199.16.156.75
2018-11-15 00:45:51 +0100
0 - 0 - 0 https://t.co/gzijSBKKca 199.16.156.11
2018-11-14 18:02:07 +0100
0 - 3 - 0 https://t.co/4rmTF2QXaz 199.16.156.11


JavaScript

Executed Scripts (15)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 44, repeated: 1) - SHA256: adaee92714de3cc13afede8329494a8a43c1c485e94aadf139f3548682aade83

                                        < script id = "__gwt_marker_comments" > < /script>
                                    


HTTP Transactions (23)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=160364
Date: Thu, 08 Nov 2018 17:12:16 GMT
Etag: "5be422ed-1d7"
Expires: Sat, 10 Nov 2018 13:45:00 GMT
Last-Modified: Thu, 08 Nov 2018 11:50:05 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    762bae552400c0160156240188387257
Sha1:   969027ef1970d033e20ac871535a3bbdc3a7a963
Sha256: 7aef9008330742aa5597eb7a7a0ec4cad0f7ddbc7f8f259093a8ce96d9984d11
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=167126
Date: Thu, 08 Nov 2018 17:12:16 GMT
Etag: "5be43807-1d7"
Expires: Sat, 10 Nov 2018 15:37:42 GMT
Last-Modified: Thu, 08 Nov 2018 13:20:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e275255a54a69bbb77b695c2143899ea
Sha1:   b6de27e04588f9af82bb8d90c541750613075b5c
Sha256: 6c9ee1669dc00ae71ddf353e30a63fb6e7dc0051afa7fb41e29c8e10a14377ca
                                        
                                            GET /TGO2kPSJWx HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.16.156.75
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private,max-age=300
Content-Encoding: gzip
Content-Length: 228
Date: Thu, 08 Nov 2018 17:12:16 GMT
Expires: Thu, 08 Nov 2018 17:17:16 GMT
Server: tsa_b
Set-Cookie: muc=37848fb2-0c85-43fd-ba15-ed1f8530db1f; Expires=Sat, 07 Nov 2020 17:12:16 GMT; Domain=t.co
strict-transport-security: max-age=0
Vary: Origin
x-connection-hash: b40eda3f10ac13abd56cef47ffe90458
x-response-time: 15
x-xss-protection: 1; mode=block; report=https://twitter.com/i/xss_report


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   228
Md5:    41b63da56c8527b317d06e9b90e489cd
Sha1:   29d8e52c0459f6d9a8b2c7eff9951c3e0aaca462
Sha256: d55e122ebf5831c3164f99c7f2ac91e313bd4943b1c023613fb92e520231a062
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Nov 2018 17:12:17 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
x-xss-protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    8a972b97e8c6a1a493c74ae2fd47321b
Sha1:   94172a253ea3ec75effba65fe5503da2e3602543
Sha256: 34b540b2fee3db80138ae12fda368feffae5a04d3c2345decf0767640858cc66
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Nov 2018 17:12:17 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
x-xss-protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: muc=37848fb2-0c85-43fd-ba15-ed1f8530db1f

                                         
                                         199.16.156.75
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Content-Length: 1150
Date: Thu, 08 Nov 2018 17:12:17 GMT
Server: tsa_b
strict-transport-security: max-age=0
x-connection-hash: b40eda3f10ac13abd56cef47ffe90458
x-response-time: 5


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    630d203cdeba06df4c0e289c8c8094f6
Sha1:   eee14e8a36b0512c12ba26c0516b4553618dea36
Sha256: bbce71345828a27c5572637dbe88a3dd1e065266066600c8a841985588bf2902
                                        
                                            GET /2018/11/access-cloud-document.html HTTP/1.1 
Host: capitaland13893privateequity.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://t.co/TGO2kPSJWx

                                         
                                         172.217.20.33
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Thu, 08 Nov 2018 17:12:17 GMT
Date: Thu, 08 Nov 2018 17:12:17 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 07 Nov 2018 23:41:39 GMT
Etag: W/"f3fae154e02fbf987aed1b6ea3a05ba6ff49367118a0a362e695d09aecbd5f3e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
x-xss-protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   5017
Md5:    286ba40a6237f472ef5174e3ad10e223
Sha1:   c771c292c7966dacd1d4d382c4ffe8fa3d02a584
Sha256: 6f74904947c6a286e1113bc84a65276dfd8b264c9a56e5554ad62743789f4ef6
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Nov 2018 17:12:17 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
x-xss-protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    7a44dfba1f4a4fc5fe5a5483f98fd745
Sha1:   6e30574a08aa0972becb293b4637ffa34e78e9f1
Sha256: e0e40703144af0da9fe3af1f609314fef73a419bedf78a5b0fd116922e199df9
                                        
                                            GET /dynamicviews/a97011514f7a398b/js/thirdparty/jquery.js HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35009
Date: Tue, 06 Nov 2018 03:09:55 GMT
Expires: Tue, 13 Nov 2018 03:09:55 GMT
Last-Modified: Sun, 04 Nov 2018 23:12:34 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 223342
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   35009
Md5:    52341bb7776a88cce3900812061321ee
Sha1:   4e90b31f8cc90dae6afaad4d50b1228eacc40363
Sha256: 36dca5bd8107ccf67fe2c99125a9990eb7612605ff92a06494e9b277d28ee185
                                        
                                            GET /static/v1/widgets/2727757643-css_bundle_v2.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8674
Date: Sun, 04 Nov 2018 09:06:19 GMT
Expires: Mon, 04 Nov 2019 09:06:19 GMT
Last-Modified: Sun, 04 Nov 2018 08:09:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 374758
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   8674
Md5:    043de64904af0a83a4d82cc69257af69
Sha1:   8e162a7dd7c6c28e02d33252328420647db677d5
Sha256: ff59304abef0a84d13a1cd43da3a79a6b713648d572426059c201d0da0122c9a
                                        
                                            GET /dynamicviews/4224c15c4e7c9321/js/comments.js HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 122175
Date: Sun, 04 Nov 2018 08:40:51 GMT
Expires: Sun, 11 Nov 2018 08:40:51 GMT
Last-Modified: Mon, 14 May 2012 20:21:35 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 376286
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   122175
Md5:    ba1b20d16521eb1c8f65273cc18caf66
Sha1:   8ab276e9f2aab9c5e3c917ab08fd466153858a93
Sha256: 842b207a57f51005fde7ef67a49da099209014fa5e911101610588c3ac6d6fdc
                                        
                                            GET /dynamicviews/a97011514f7a398b/js/thirdparty/jquery-mousewheel.js HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1289
Date: Tue, 06 Nov 2018 03:09:55 GMT
Expires: Tue, 13 Nov 2018 03:09:55 GMT
Last-Modified: Sun, 04 Nov 2018 23:12:34 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 223342
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   1289
Md5:    448713e4bba7b7fa8203cf99f0440eb3
Sha1:   668206de7c4554ef77e6cd20d63b8add9bdd0b31
Sha256: 318d2781c92355fe2dabda240dd1c3ce24421bd7d97dda8d49ab274abfd64fe9
                                        
                                            GET /static/v1/widgets/1171408283-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 52259
Date: Tue, 06 Nov 2018 18:52:37 GMT
Expires: Wed, 06 Nov 2019 18:52:37 GMT
Last-Modified: Mon, 05 Nov 2018 23:20:14 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 166780
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   52259
Md5:    e95ee32c51b047cf760c430ee627c508
Sha1:   04cde67e606a14657f4f5c159179af63594f9ba9
Sha256: f34082105b1875d2d5d6fa0e398e603c26a64b74bd832dbf7943635c60213478
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 08 Nov 2018 17:12:17 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
x-xss-protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    3695a50d359b2fdcad6caa8733642f9a
Sha1:   50aa700b0f2284f8bdd3b6f5159fdcd3ef6d8479
Sha256: abd84855b87b9a9e6f770aa20874a78c1d802ebac621cf495cba0fb4fa282dc8
                                        
                                            GET /dynamicviews/a97011514f7a398b/js/common.js HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 90765
Date: Tue, 06 Nov 2018 03:09:55 GMT
Expires: Tue, 13 Nov 2018 03:09:55 GMT
Last-Modified: Sun, 04 Nov 2018 23:12:34 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 223342
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   90765
Md5:    de0ad5fbafeae03a57a31c3b3462f9e9
Sha1:   c849a79f9baf47953f621084ed9ac1bf6e5f348d
Sha256: fa1aea94c69a2680439111a20916e9895ec65ebf15441df7345171cac613a88d
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: capitaland13893privateequity.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.20.33
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2026
Date: Wed, 07 Nov 2018 21:53:26 GMT
Expires: Wed, 14 Nov 2018 21:53:26 GMT
Last-Modified: Wed, 07 Nov 2018 19:25:06 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 69531
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
                                        
                                            GET /dynamicviews/a97011514f7a398b/js/classic.js HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 43317
Date: Tue, 06 Nov 2018 03:28:02 GMT
Expires: Tue, 13 Nov 2018 03:28:02 GMT
Last-Modified: Sun, 04 Nov 2018 23:12:34 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 222255
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   43317
Md5:    f640ccba7581c2750324512c4e325a9b
Sha1:   9f7a922ecffd6990c999dee087f9e6e3ebf7835f
Sha256: e4be03b6be9dafebf59f17cb43d180aeab3105b2f96106259915e6fdf02e063a
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "ddebb2451fbe61f7d904aa8095f3c3e3"
Expires: Thu, 08 Nov 2018 17:12:17 GMT
Date: Thu, 08 Nov 2018 17:12:17 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
Content-Encoding: gzip
Server: ESF
x-xss-protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=146=Pyq2-_j2SvtWHyWm7uWy463l-y29QUuMlq33pgzELIOvO5F-PsjyLQ3DI3X73qLoPJ2sfo3-4AST_lf5HCKq5PozQPAAd6Csw4j7AGYsyyAUmlPLoywABqZeOqOPhK96nZdP0hiBk39dIxqGTS4IFb3IR-nKfSrNFehuggSHvGo;Domain=.google.com;Path=/;Expires=Fri, 10-May-2019 17:12:17 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16817
Md5:    ef4a457fc4a1c38ceaefb678d9788ee2
Sha1:   96cfb1d315e62a2cffd1e7df705d4eb26f013481
Sha256: fdc5eeb0012a223be6a8ee5b6f0a905b524a005f41fd7a4926a9e7c5d7272ff3
                                        
                                            GET /dynamicviews/a97011514f7a398b/js/gadgets.js HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 22262
Date: Tue, 06 Nov 2018 03:09:55 GMT
Expires: Tue, 13 Nov 2018 03:09:55 GMT
Last-Modified: Sun, 04 Nov 2018 23:12:34 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 223342
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   22262
Md5:    d6bcecab299758b304ffbdc463359102
Sha1:   6eefd307ff7c349db6e4153af25e5549904cc530
Sha256: daf77d465af30eefcea7c954cbd49540303fbb3f620c02dacfafaef678b4d8ad
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: capitaland13893privateequity.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.20.33
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                        
Content-Security-Policy: upgrade-insecure-requests
Content-Security-Policy-Report-Only: default-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; report-uri https://www.blogger.com/cspreport
Expires: Thu, 08 Nov 2018 17:12:18 GMT
Date: Thu, 08 Nov 2018 17:12:18 GMT
Cache-Control: private, max-age=86400
Last-Modified: Wed, 07 Nov 2018 23:41:39 GMT
Etag: W/"f3fae154e02fbf987aed1b6ea3a05ba6ff49367118a0a362e695d09aecbd5f3e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
x-xss-protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   412
Md5:    23e5eb1119a7f4d2ab629ccd77a5f84b
Sha1:   f7a5a792e41005ba918551e4416c4bf639ec80ec
Sha256: a0c8d4831f453c316840a502432719f7f7d833bea4a9b59f548e4a1bc2bf0c8a
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=852286883757809387&zx=8f2abe97-a442-4853-be01-9c53e15edf4c HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html

                                         
                                         172.217.21.169
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 08 Nov 2018 17:12:18 GMT
Last-Modified: Thu, 08 Nov 2018 17:12:18 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.Xw0pqcgIesM.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=QQ/rs=AGLTcCPaNTjxj8Bhrwj_BgR3cN8dv7y7qQ/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://capitaland13893privateequity.blogspot.com/2018/11/access-cloud-document.html
Cookie: NID=146=Pyq2-_j2SvtWHyWm7uWy463l-y29QUuMlq33pgzELIOvO5F-PsjyLQ3DI3X73qLoPJ2sfo3-4AST_lf5HCKq5PozQPAAd6Csw4j7AGYsyyAUmlPLoywABqZeOqOPhK96nZdP0hiBk39dIxqGTS4IFb3IR-nKfSrNFehuggSHvGo

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46712
Date: Tue, 06 Nov 2018 21:28:59 GMT
Expires: Wed, 06 Nov 2019 21:28:59 GMT
Last-Modified: Mon, 05 Nov 2018 03:37:55 GMT
X-Content-Type-Options: nosniff
Server: sffe
x-xss-protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 157399
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   46712
Md5:    0296bfbf46e22049fc4c2bca84c99edd
Sha1:   d315f9f65d95330648862881afc83f28b7a5190d
Sha256: e16a064256528a07ef1d956b055ad890f224dea04b6d46e93fe3ff8f8d21df8a
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: muc=37848fb2-0c85-43fd-ba15-ed1f8530db1f

                                         
                                         199.16.156.75
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Content-Length: 1150
Date: Thu, 08 Nov 2018 17:12:20 GMT
Server: tsa_b
strict-transport-security: max-age=0
x-connection-hash: b40eda3f10ac13abd56cef47ffe90458
x-response-time: 7


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    630d203cdeba06df4c0e289c8c8094f6
Sha1:   eee14e8a36b0512c12ba26c0516b4553618dea36
Sha256: bbce71345828a27c5572637dbe88a3dd1e065266066600c8a841985588bf2902