Overview

URL aflam-uk.blogspot.com/search/label/Photo
IP216.58.211.1
ASNAS15169 Google Inc.
Location United States
Report completed2018-10-12 14:28:05 CEST
StatusLoading report..
urlQuery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-10-12 2 aflam-uk.blogspot.com/search/label/Photo Malware
2018-10-12 2 coinhive.com/lib/coinhive.min.js Malware
2018-10-12 2 aflam-uk.blogspot.com/search/label/Photo Malware
2018-10-12 2 aflam-uk.blogspot.com/search/label/%3C!--Can%27t%20find%20substitution%20fo (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 216.58.211.1

Date UQ / IDS / BL URL IP
2018-10-21 06:53:15 +0200
2 - 0 - 0 votanuestraschicas.blogspot.com/search/label/ (...) 216.58.211.1
2018-10-21 06:51:21 +0200
2 - 0 - 0 haimayfriend.blogspot.com/2013/12/amigo-marid (...) 216.58.211.1
2018-10-21 05:10:09 +0200
0 - 1 - 0 indahjiwadanrupa.blogspot.com/2013/09/gadis-b (...) 216.58.211.1
2018-10-21 05:08:58 +0200
2 - 0 - 0 loadsex.blogspot.de/2010/12/italiana-brincand (...) 216.58.211.1
2018-10-21 03:08:56 +0200
2 - 0 - 0 brazilian-pictures.blogspot.com/2015/02/have- (...) 216.58.211.1
2018-10-21 02:07:17 +0200
1 - 0 - 0 highblood-pressure-risk-factors.blogspot.com/ (...) 216.58.211.1
2018-10-21 02:07:25 +0200
2 - 1 - 0 brazilian-pictures.blogspot.com/search/label/ (...) 216.58.211.1
2018-10-21 01:16:12 +0200
3 - 0 - 0 super-pelis-online.blogspot.com/2017/09/ver-p (...) 216.58.211.1
2018-10-20 21:11:22 +0200
2 - 1 - 0 katwvolta.blogspot.com/search/label/London 216.58.211.1
2018-10-20 18:11:38 +0200
2 - 1 - 0 katwvolta.blogspot.mx/2010/12/jade-ewen-sugab (...) 216.58.211.1

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2018-10-21 08:51:48 +0200
0 - 0 - 0 https://watchbeast.blogspot.com/2018/10/eng-s (...) 172.217.22.161
2018-10-21 08:50:30 +0200
0 - 1 - 0 luruhwangsit.blogspot.com/2016/10/tau-gak-sih (...) 216.58.207.193
2018-10-21 08:49:59 +0200
0 - 0 - 0 https://watchbeast.blogspot.com/2018/10/my-on (...) 216.58.207.193
2018-10-21 08:41:20 +0200
2 - 0 - 0 peartreedigitaldesigns.blogspot.com/2013/09/c (...) 216.58.207.225
2018-10-21 08:40:37 +0200
2 - 0 - 0 aflam-uk.blogspot.com.tr/search/label/Key 172.217.21.161
2018-10-21 08:23:48 +0200
2 - 0 - 0 baggrunde.blogspot.com/search/label/Vincevouyer 216.58.207.193
2018-10-21 08:23:44 +0200
2 - 0 - 0 poppersandshakers.blogspot.com/2017/10 216.58.207.193
2018-10-21 08:22:11 +0200
2 - 0 - 0 fotosreaisdeesposas.blogspot.com/2012/03/scul (...) 216.58.207.193
2018-10-21 08:21:33 +0200
0 - 1 - 0 x-x-x-blog.blogspot.it/2009/08/screensaver.html 216.58.207.193
2018-10-21 08:21:08 +0200
3 - 0 - 0 super-pelis-online.blogspot.com/2017/10/ver-s (...) 216.58.207.193

Last 10 reports on domain: aflam-uk.blogspot.com

Date UQ / IDS / BL URL IP
2018-10-20 17:15:43 +0200
2 - 1 - 0 aflam-uk.blogspot.com/2015/08/johny-darkgamer (...) 216.58.211.1
2018-10-20 05:08:01 +0200
2 - 0 - 0 aflam-uk.blogspot.com/search/label/Email%20Se (...) 216.58.211.129
2018-10-20 02:56:40 +0200
2 - 0 - 0 aflam-uk.blogspot.com/search/label/Info 216.58.211.1
2018-10-20 02:02:18 +0200
2 - 0 - 0 aflam-uk.blogspot.com/search/label/X%20Rumer% (...) 216.58.209.129
2018-10-19 21:25:39 +0200
2 - 0 - 0 aflam-uk.blogspot.com/search/label/Business 172.217.20.33
2018-10-19 20:21:21 +0200
2 - 0 - 0 aflam-uk.blogspot.com/search/label/VODAFONE 216.58.207.225
2018-10-19 19:43:46 +0200
2 - 0 - 0 aflam-uk.blogspot.com/search/label/Interspire (...) 216.58.207.225
2018-10-19 19:08:00 +0200
2 - 0 - 0 aflam-uk.blogspot.com/2015/01/introduction-to (...) 216.58.207.193
2018-10-19 18:17:13 +0200
2 - 0 - 0 aflam-uk.blogspot.com/search/label/2%20Column (...) 172.217.21.161
2018-10-19 18:14:50 +0200
2 - 0 - 0 aflam-uk.blogspot.com/search/label/DropDown%20Menu 172.217.21.161


JavaScript

Executed Scripts (24)


Executed Evals (0)


Executed Writes (7)

#1 JavaScript::Write (size: 131, repeated: 1) - SHA256: 1435079a9b39e7e7054930095795b8035e4410c97677aab5bae0394bc272ca72

                                        < img src = "<!--Can't find substitution for tag [post.thumbnailUrl]-->"
alt = "Serif PhotoPlus X7 v17.0.2.22 Crack Download Software" / >
                                    

#2 JavaScript::Write (size: 174, repeated: 1) - SHA256: 6af00a5265977b93f11327973cbc8531af55f80e98448f5705e4d806af662409

                                        < img src = "http://1.bp.blogspot.com/-LZgCQhiVp90/URwy7bO0RxI/AAAAAAAABB8/g6QlmiWg33Y/w260/Digital+Anarchy+ToonIt+Photo.jpeg"
alt = "Free Download Digital Anarchy ToonIt Photo" / >
                                    

#3 JavaScript::Write (size: 175, repeated: 1) - SHA256: 53b20448de50881f66422111452757cbc86a81ec681d136a16e9b85367431aef

                                        < img src = "http://2.bp.blogspot.com/-ggt5t_lyAxg/U3w9BkalW8I/AAAAAAAABpY/KI_mVFPNxsE/w260/Perfect-Photo-Suite-8.5.0.672.jpg"
alt = "Perfect Photo Suite 8.5.0.672 Free Download" / >
                                    

#4 JavaScript::Write (size: 161, repeated: 1) - SHA256: 66f6c0af1812d8d027f85a424ce0fb86d314dbdf7ca5c0f646465b8678ea7b7a

                                        < img src = "http://3.bp.blogspot.com/-LpLnPl_875Y/Uvpe02VYHPI/AAAAAAAABlg/DQkT2F6T49s/w260/Photo+Recovery.jpg"
alt = "Stellar Phoenix Photo Recovery Free Download" / >
                                    

#5 JavaScript::Write (size: 167, repeated: 1) - SHA256: 0ac8fd9f380c2b2fb153331dbedc0395ddfe0faf2d6d42eaf4b92835a1f296a8

                                        < img src = "http://3.bp.blogspot.com/-dmikNtUJl68/VKuVIw7fGYI/AAAAAAAAACQ/1q8OrQZimZY/w260/Capture-One-Pro.png"
alt = "Capture One Pro v8.1.0.145 Free Download Software" / >
                                    

#6 JavaScript::Write (size: 182, repeated: 1) - SHA256: 4a1113a22e2850f0d9ebd35c2a480714ec3eeb4530957e03d5371626c10f1a4b

                                        < img src = "http://3.bp.blogspot.com/-z4sjly-KJbw/Ua8JpaP9kjI/AAAAAAAAAsk/gPizAZJU84Y/w260/MAGIX+PhotoStory+on+DVD.jpeg"
alt = "MAGIX PhotoStory on DVD 2013 Free Download Full Version" / >
                                    

#7 JavaScript::Write (size: 161, repeated: 1) - SHA256: bd59170fc89d66fc9a6d5203801e2328138b382a3a05356082c010ca37f1bb22

                                        < img src = "http://4.bp.blogspot.com/-IXCaBKyFv-8/VKuaHfjNZOI/AAAAAAAAADE/ycF3Smk2wTw/w260/Acdsee-18.jpg"
alt = "Acdsee v18.1.233 (x86/x64) Free Software Download" / >
                                    


HTTP Transactions (40)


Request Response
                                        
                                            GET /search/label/Photo HTTP/1.1 
Host: aflam-uk.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.211.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Fri, 12 Oct 2018 12:27:32 GMT
Date: Fri, 12 Oct 2018 12:27:32 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 01 Aug 2018 11:17:00 GMT
Etag: W/"54ec9ba5b69e8206140d9f9726c293ffe695e41c4d1b0ed5bd354ffb4347c02b"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 27844
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   27844
Md5:    5c1373da8dcb68c4b8944a36698da4f8
Sha1:   6f0a4ca4f1f77d35bf2f3150ab0d06971f51aa4d
Sha256: 5049c41f77a39003ddb704567a97abc8565fc58edd390a3e089aabf12005155a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css?family=PT+Sans+Narrow HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 12 Oct 2018 12:27:32 GMT
Date: Fri, 12 Oct 2018 12:27:32 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   203
Md5:    7a31f6c0754ee2d17b9bdb3328720497
Sha1:   26b185e39027ce8614d687d29b36b42041c3a293
Sha256: 44b552076172da0cfca6edbc0daa6103ed341e535500fa5fecddcb1e0218fa20
                                        
                                            GET /css?family=Oswald HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 12 Oct 2018 12:27:32 GMT
Date: Fri, 12 Oct 2018 12:27:32 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   190
Md5:    29c6cb9691eba33ad930680d66313307
Sha1:   63eb8bfc15c24ead7df44a7a8582b931a1b4be6e
Sha256: a0cf8335cad6ef633f85ab1b4ad03d637c0b33559da1ac9e8f8d5062ca975970
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 12 Oct 2018 12:27:32 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    9043fd75b69b70c6a8e67a09834b7146
Sha1:   90ca265385c13bd67bb19d870f5c4cb882e8424c
Sha256: 7a6ba752fa5a19350dfdfa904e088e05f6069596aac8c7e6dadd926d783917b1
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 12 Oct 2018 12:27:32 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 07 Oct 2018 01:21:31 GMT
Etag: EB50C806959B9568C8D682E5B68E87320AB669B0
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=132183
Expires: Sun, 14 Oct 2018 01:10:35 GMT
Date: Fri, 12 Oct 2018 12:27:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    54cdf1ee222e89442d5cb163a14ac732
Sha1:   eb50c806959b9568c8d682e5b68e87320ab669b0
Sha256: 4479274fbd14eb22f09401da01d08d64afc45f49034ccf3e66123eda1b7616d3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Mon, 08 Oct 2018 09:27:34 GMT
Etag: 99401F8BD467D90F886179C64493E78DA9B8E4C5
X-OCSP-Responder-ID: rmdccaocsp13
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=247770
Expires: Mon, 15 Oct 2018 09:17:02 GMT
Date: Fri, 12 Oct 2018 12:27:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    d9b08f335c6577b244c88529169de9ed
Sha1:   99401f8bd467d90f886179c64493e78da9b8e4c5
Sha256: 9fb86e028f68b7b471041d512b8351fae7184d1c6d11d41eaa0a1dda673ff62a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Mon, 08 Oct 2018 09:27:34 GMT
Etag: 090C34B232998ED0CB442389A283D60A7212687C
X-OCSP-Responder-ID: rmdccaocsp19
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=247849
Expires: Mon, 15 Oct 2018 09:18:21 GMT
Date: Fri, 12 Oct 2018 12:27:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    918e7ad6efba9cd193ede3de6438f9b1
Sha1:   090c34b232998ed0cb442389a283d60a7212687c
Sha256: ff1641777dd048546458ac7b135f68cda235fd5d2e4dc8b9cb1c9bfa51ef30ec
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         104.20.208.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 12 Oct 2018 12:27:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d02083aba7f280a52038a5369c6a7a3241539347252; expires=Sat, 12-Oct-19 12:27:32 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Wed, 11 Apr 2018 09:51:50 GMT
Etag: W/"5acddab6-40063"
Expires: Fri, 12 Oct 2018 20:27:32 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 46898fa9c8374273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   68258
Md5:    aace5e5a34519cdd9c971d57f21e5d82
Sha1:   ceecd09dbe85c771648f2ce6942fe9707c6f31f4
Sha256: ef2f23c272fb07e8e93f26cf6051bd2c3d377cf54e2431f9fdd6666852749e62

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /static/v1/widgets/254310735-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7524
Date: Tue, 02 Oct 2018 16:47:29 GMT
Expires: Wed, 02 Oct 2019 16:47:29 GMT
Last-Modified: Mon, 01 Oct 2018 23:44:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 848403
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   7524
Md5:    5edaca0b90aa2022a9f8cdbdc49e6f4a
Sha1:   42fecf342d6ff79b5f8e206eecb6d54a513188af
Sha256: a8232fd6d263c26f195cb04abf7e127dd3829a510070baf64264314bb47da932
                                        
                                            GET /-Es4rPAZpSEA/VO-9j025emI/AAAAAAAAAA8/v0-_VsrrI3I/s930/sun%2Blogo.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v10"
Expires: Wed, 03 Oct 2018 17:23:13 GMT
Content-Disposition: inline;filename="sun logo.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 09:54:57 GMT
Server: fife
Content-Length: 5023
X-XSS-Protection: 1; mode=block
Age: 9155
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 50 x 50, 8-bit/color RGBA, non-interlaced
Size:   5023
Md5:    274bc928779def1365610c0e51789195
Sha1:   8d1b2e05bba12b0ac52b46cfa7e37e95cd6a02b5
Sha256: 998e30a5e683847ca81cb1063fd8465f6d2dd3a0473979d830c9f73165a5ac3f
                                        
                                            GET /-Ky4Ck7_8OvE/UIIjn60cW6I/AAAAAAAAC-s/gO_Jtne4lBs/s72-c/Hacker.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v1a60"
Expires: Tue, 09 Oct 2018 23:02:19 GMT
Content-Disposition: inline;filename="Hacker.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:32 GMT
Server: fife
Content-Length: 2539
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2539
Md5:    e83aae167d82e38a1cc08f6aa5dfd670
Sha1:   6187b4ca584bd06e0e39705568e934a31f125365
Sha256: 8f51a5911b9d1c381fec2624cc1106c9423dcc96a3e613e9e470efcef453e5ff
                                        
                                            GET /-M4o4zNWtqS4/UQhzBfhxnJI/AAAAAAAAAxk/l1U-ouPb7oQ/s72-c/The+KMPlayer.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v319"
Expires: Wed, 03 Oct 2018 21:47:29 GMT
Content-Disposition: inline;filename="The KMPlayer.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:32 GMT
Server: fife
Content-Length: 2483
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2483
Md5:    6b5ebd74a2fceb6425e04a45d5a3afb6
Sha1:   d741ae47bde5e6f7e285608be94010608f30176c
Sha256: 2d17301bc377e777c497db702c64fe4777f43c87bc8eca7ee50f35ee22d537d1
                                        
                                            GET /-dhqPJ81yDbc/UoU2oARm9fI/AAAAAAAABdI/kS7TpkxzsPM/s72-c/Red+Giant+Magic+Bullet+Suite.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v5d3"
Expires: Wed, 03 Oct 2018 17:21:27 GMT
Content-Disposition: inline;filename="Red Giant Magic Bullet Suite.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:32 GMT
Server: fife
Content-Length: 2946
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2946
Md5:    216474de5d292290dd208acbf744f00a
Sha1:   4db670ccf7de64a38f7a8d9ba25485ed01b69bb5
Sha256: 669cfcbc739887e0ee233a1626db89343a1d4e10878635225b1f047dc2476841
                                        
                                            GET /-2lQ5w_cnMrs/US5n4ZPd4rI/AAAAAAAABgU/Qs61ZU-c1RI/s72-c/Windows+7+Ultimate+SP1+x86+OEM+Activated.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v605"
Expires: Wed, 03 Oct 2018 21:47:29 GMT
Content-Disposition: inline;filename="Windows 7 Ultimate SP1 x86 OEM Activated.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:32 GMT
Server: fife
Content-Length: 2521
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2521
Md5:    efe47e35b17a8237a91f093d57a141e3
Sha1:   dbb8c666a6bd3a2f5a8290ee09e6a4fbadea10f0
Sha256: 1b15ce84bf8a4dbb43ea10caca5a1e9e0a3a730e8b4c0278a923617ad505b80e
                                        
                                            GET /-He5pF4SO7X8/VK0SVabhNEI/AAAAAAAAAFs/bTvAyGBM1n8/s72-c/BestCrypt-Volume-Encryption-download.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v5c"
Expires: Wed, 03 Oct 2018 17:21:27 GMT
Content-Disposition: inline;filename="BestCrypt-Volume-Encryption-download.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:32 GMT
Server: fife
Content-Length: 3386
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3386
Md5:    ca91e29ce3fa5df00dbcc59a55ee9488
Sha1:   70b59671992409c56ebf3f8bd33d072c2a46a799
Sha256: 48615f4c0a16f60abecb4f22a2457a1632541912dad3a723ed3b6c6e819b0339
                                        
                                            GET /-zZ_ZS1geYZ4/UDmTZMREJuI/AAAAAAAAA9g/gvUsM0fQEJY/s72-c/capture-20120818-120921.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v1a6f"
Expires: Tue, 09 Oct 2018 23:02:19 GMT
Content-Disposition: inline;filename="capture-20120818-120921.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:32 GMT
Server: fife
Content-Length: 4624
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   4624
Md5:    40a7bfd80bc8978976db7db0a15e790e
Sha1:   1324fb1095fe88d95a550cb3c2e157b26b440cde
Sha256: 5106a73b023c8152155b32221041ab349bc2c6f8115145cc44d004053adee1fa
                                        
                                            GET /-0298i_A5P18/UbepSWCgiQI/AAAAAAAAAvQ/n-G8avatPRk/s72-c/jetAudio+Plus.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v2f5"
Expires: Tue, 09 Oct 2018 23:02:19 GMT
Content-Disposition: inline;filename="jetAudio Plus.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:32 GMT
Server: fife
Content-Length: 3098
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3098
Md5:    9ae144c05218c81dc04d03527828999c
Sha1:   dd14f0eaadbebfb66453142a1805c6f3640dcd8b
Sha256: 34d2a825eae7184b2e2b9cd132a9f996552b2f3e894c6885eb48dafd2095bc96
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "F3F0E6F58BC62AB0ECF561BC78F40A5F990B8C65478E4AA1B5C4B651BE1B8652"
Last-Modified: Wed, 10 Oct 2018 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9469
Expires: Fri, 12 Oct 2018 15:05:21 GMT
Date: Fri, 12 Oct 2018 12:27:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    b89315b018985a39c235f157b361cfd0
Sha1:   c8dd4555237660bc878fdef970b71b29a6c79ef5
Sha256: f3f0e6f58bc62ab0ecf561bc78f40a5f990b8c65478e4aa1b5c4b651be1b8652
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.113
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Wed, 10 Oct 2018 05:40:06 GMT
Etag: "b89e56ad6e79124bb6b39c1a6e8cefd3b0974bd8"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=15335
Expires: Fri, 12 Oct 2018 16:43:07 GMT
Date: Fri, 12 Oct 2018 12:27:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    ddc92f756acc7ff6c226f4a2338bb31a
Sha1:   b89e56ad6e79124bb6b39c1a6e8cefd3b0974bd8
Sha256: 109ad596efa997a95f4924658f50c00e3404b2869cedb878f1599796a0401fd2
                                        
                                            GET /img/icon18_wrench_allbkg.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 475
Date: Tue, 09 Oct 2018 16:46:47 GMT
Expires: Tue, 16 Oct 2018 16:46:47 GMT
Last-Modified: Mon, 08 Oct 2018 23:51:23 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 243645
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  PNG image, 18 x 18, 8-bit colormap, non-interlaced
Size:   475
Md5:    f617effe6d96c15acfea8b2e8aae551f
Sha1:   6d676af11ad2e84b620cce4d5992b657cb2d8ab6
Sha256: d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b
                                        
                                            GET /jquery-3.3.1.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         205.185.208.52
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 12 Oct 2018 12:27:33 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 30288
Last-Modified: Sat, 20 Jan 2018 17:26:44 GMT
Server: nginx
Etag: W/"5a637bd4-1538f"
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1539347252.dop012.sk1.t,1539347253.cds039.sk1.shn,1539347253.dop012.sk1.t,1539347253.cds008.sk1.c


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   30288
Md5:    d549b312f7a7d228b4ec229a6547dfdc
Sha1:   0766794582ad530ec0f8c2595f741086afffa312
Sha256: f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
                                        
                                            GET /-DvIrCT8u9sI/VMZVdGCDvvI/AAAAAAAAAy4/171F7joH408/s72-c/campaign.750x0n.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 404 Not Found
Content-Type: image/png
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:33 GMT
Server: fife
Content-Length: 1492
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit colormap, non-interlaced
Size:   1492
Md5:    0ab7003470d2d94819e2753862179908
Sha1:   f06883e25c7c46a951bcce527fcb590dde1154c2
Sha256: ad6d3a7546fb711e4d1574d37cd922b7a5b875d61cd23e0f10326172fdcb5413
                                        
                                            GET /-GPmUFX1yOkY/VLfK5xZo6FI/AAAAAAAAAdM/9PcWazz4ogI/s72-c/b9e4f877d0d865e089eee2b90d49b952.jpeg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 404 Not Found
Content-Type: image/png
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:33 GMT
Server: fife
Content-Length: 1492
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit colormap, non-interlaced
Size:   1492
Md5:    0ab7003470d2d94819e2753862179908
Sha1:   f06883e25c7c46a951bcce527fcb590dde1154c2
Sha256: ad6d3a7546fb711e4d1574d37cd922b7a5b875d61cd23e0f10326172fdcb5413
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=7926864290202772076&zx=642ebed1-b34a-4d25-a1f4-61b39e9eec4a HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 12 Oct 2018 12:27:33 GMT
Last-Modified: Fri, 12 Oct 2018 12:27:33 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /-wqzYVSTa638/UQrc7C0UP3I/AAAAAAAABgU/TgbAOmzXLAs/s1600/home.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "va2f"
Expires: Sat, 13 Oct 2018 08:53:01 GMT
Content-Disposition: inline;filename="home.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 08:53:01 GMT
Server: fife
Content-Length: 1157
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 12872


--- Additional Info ---
Magic:  GIF image data, version 89a, 21 x 21
Size:   1157
Md5:    4c4d5a137d02ca4414dfe2e76084c7a0
Sha1:   f5b0e9627a211af31faeb95b74f85471c07cc8e5
Sha256: ff33e9e45ece6b5b9099f38e8e0a246865d21330f4f6300f2f9dc6498c7441d6
                                        
                                            GET /-AIW512aa4Ms/URJ2uXZh45I/AAAAAAAAB9c/QMul0JdxpNs/s1600/outerpic.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7d7"
Expires: Mon, 08 Oct 2018 19:14:30 GMT
Content-Disposition: inline;filename="outerpic.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 10:38:23 GMT
Server: fife
Content-Length: 340
X-XSS-Protection: 1; mode=block
Age: 6550
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 3 x 360, 8-bit/color RGB, non-interlaced
Size:   340
Md5:    80668175cbb798c380dd6b82f67db3c3
Sha1:   938f47d35c8f01aa839fb0f292dcba9f09a0aa31
Sha256: a6aea32e729e6d2b4f39f96e813d2841148a5f03badc23ccffe304cfde547c12
                                        
                                            GET /-UzQSVqe350A/URJhGaHsGqI/AAAAAAAAB7s/UVJaEnVxtc8/s1600/body.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "va1c"
Expires: Fri, 12 Oct 2018 06:44:39 GMT
Content-Disposition: inline;filename="body.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:11:53 GMT
Server: fife
Content-Length: 23343
X-XSS-Protection: 1; mode=block
Age: 940
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200
Size:   23343
Md5:    6f52f16e0c8869759029f92150fac68f
Sha1:   d7171b0111ecbc51953fb6a6a0fcb639c9aacdb2
Sha256: 0ba65009d2629977348e7cc30414a518b21b8fe7f50351fcead70764219b9bb2
                                        
                                            GET /-K4hNJ9YcB7I/URKRQe-RbaI/AAAAAAAAB_c/bGaB_wyqaoA/s1600/dotted.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7f7"
Expires: Sat, 13 Oct 2018 10:32:42 GMT
Content-Disposition: inline;filename="dotted.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 10:32:42 GMT
Server: fife
Content-Length: 196
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 6891


--- Additional Info ---
Magic:  PNG image, 3 x 3, 8-bit/color RGBA, non-interlaced
Size:   196
Md5:    b22e8d3271b6ef77912ce1d52e3a75e2
Sha1:   18c57d175904e093e46622cf11d40a032b5da366
Sha256: bf06b15d3e82be3040e11d303834b7102e3f2c1c737cea9b1fee4f097d537772
                                        
                                            GET /s/oswald/v16/TK3iWkUHHAIjg752GT8A.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Oswald
Origin: http://aflam-uk.blogspot.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18936
Date: Thu, 27 Sep 2018 18:42:22 GMT
Expires: Fri, 27 Sep 2019 18:42:22 GMT
Last-Modified: Tue, 07 Nov 2017 15:18:46 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1273511


--- Additional Info ---
Magic:  data
Size:   18936
Md5:    ca70f49a133f08485bd05d5cb28ef8b7
Sha1:   9029570f276ed6b7d2895ced7175f958fb6c1c5f
Sha256: a7a4038c6fbb19ba522819188aed0ff204d80e19223b1cab388a290a8d5e47fe
                                        
                                            GET /search/label/Photo HTTP/1.1 
Host: aflam-uk.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo
If-Modified-Since: Wed, 01 Aug 2018 11:17:00 GMT
If-None-Match: W/"54ec9ba5b69e8206140d9f9726c293ffe695e41c4d1b0ed5bd354ffb4347c02b"

                                         
                                         216.58.211.1
HTTP/1.1 304 Not Modified
                                        
Expires: Fri, 12 Oct 2018 12:27:33 GMT
Date: Fri, 12 Oct 2018 12:27:33 GMT
Cache-Control: private, max-age=0
Etag: W/"54ec9ba5b69e8206140d9f9726c293ffe695e41c4d1b0ed5bd354ffb4347c02b"
Server: GSE


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /-IXCaBKyFv-8/VKuaHfjNZOI/AAAAAAAAADE/ycF3Smk2wTw/w260/Acdsee-18.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v32"
Expires: Sat, 06 Oct 2018 02:14:39 GMT
Content-Disposition: inline;filename="Acdsee-18.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:34 GMT
Server: fife
Content-Length: 21314
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21314
Md5:    ecf1431c98e88b90c2785184d4bf4bcb
Sha1:   c40c7905b62a9f258b4de477fb9b1196d04a3afc
Sha256: 28222379c468e247d54e2c5e930dca5361ec3e46d5f3f77297690455c56f4dc6
                                        
                                            GET /-dmikNtUJl68/VKuVIw7fGYI/AAAAAAAAACQ/1q8OrQZimZY/w260/Capture-One-Pro.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v25"
Expires: Sat, 13 Oct 2018 12:27:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Capture-One-Pro.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:34 GMT
Server: fife
Content-Length: 46072
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 260 x 147, 8-bit/color RGB, non-interlaced
Size:   46072
Md5:    bf336a6f2206a86b240a834cdcb9c800
Sha1:   e4d585b1c1f452cf54934e663f9a4a7389865db5
Sha256: 804a4026c6af96ab1477eef43834fc600d89d47f96cec9a9b94939c014150407
                                        
                                            GET /-LpLnPl_875Y/Uvpe02VYHPI/AAAAAAAABlg/DQkT2F6T49s/w260/Photo+Recovery.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v659"
Expires: Sat, 06 Oct 2018 02:33:56 GMT
Content-Disposition: inline;filename="Photo Recovery.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:34 GMT
Server: fife
Content-Length: 7978
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   7978
Md5:    71f180575d50d1e7676bf0e06aeca4ce
Sha1:   9acfc0392562b127d68c69a91a6022256b9d17e0
Sha256: 6065c2569592625a97322e61f3b54c642068cf1ca2be5b01f7941d265b019e3c
                                        
                                            GET /-LZgCQhiVp90/URwy7bO0RxI/AAAAAAAABB8/g6QlmiWg33Y/w260/Digital+Anarchy+ToonIt+Photo.jpeg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v41f"
Expires: Sat, 13 Oct 2018 12:27:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Digital Anarchy ToonIt Photo.jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:34 GMT
Server: fife
Content-Length: 20502
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   20502
Md5:    aea91211c332061f90fc0d59de00ee36
Sha1:   5990d63365334d9902a410d28a9f2cc260559627
Sha256: b5392b0ca980b06808996a2d7d1026f693b13b34ff11ce8c4f86e99d5e6da9f7
                                        
                                            GET /-6p_AqXL70hQ/UQWPHMObw9I/AAAAAAAABZ0/f2UWIvjFkSQ/s1600/footerli.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v59d"
Expires: Fri, 12 Oct 2018 06:44:39 GMT
Content-Disposition: inline;filename="footerli.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 11:09:17 GMT
Server: fife
Content-Length: 223
X-XSS-Protection: 1; mode=block
Age: 4697
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 4 x 7, 8-bit/color RGBA, non-interlaced
Size:   223
Md5:    04b7dfa97e05f4622e2d9a08719a7b07
Sha1:   a15042ab03db6f3d5e822ec3de37dde74c96f920
Sha256: 3e5a716afd9759cd1759126af6e50af605f0e135fedfed0a3c39ceba7c653ffc
                                        
                                            GET /s/ptsansnarrow/v9/BngRUXNadjH0qYEzV7ab-oWlsbCGwRs.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=PT+Sans+Narrow
Origin: http://aflam-uk.blogspot.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 43724
Date: Mon, 08 Oct 2018 23:13:14 GMT
Expires: Tue, 08 Oct 2019 23:13:14 GMT
Last-Modified: Mon, 08 Oct 2018 20:49:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 306860


--- Additional Info ---
Magic:  data
Size:   43724
Md5:    b7ed38087559d9362d906b1a18330dfc
Sha1:   f2dd0afd08a4b405e72c6ecab85e9338e4617441
Sha256: 0798171a4c2f57e9ba49e415b15d02db6df7807a6043066344f30806a8ad9fb4
                                        
                                            GET /-ggt5t_lyAxg/U3w9BkalW8I/AAAAAAAABpY/KI_mVFPNxsE/w260/Perfect-Photo-Suite-8.5.0.672.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v697"
Expires: Sat, 13 Oct 2018 12:27:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Perfect-Photo-Suite-8.5.0.672.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:34 GMT
Server: fife
Content-Length: 14307
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14307
Md5:    e90fab5531b5f34605c44c1523078e48
Sha1:   10f36345dad202746e387e55c03c96bfcb1e0f14
Sha256: 3dd63b3da62d88d9020c12b3dc2fd5e498b2655d5de6055bfbe1128d5dc07078
                                        
                                            GET /-z4sjly-KJbw/Ua8JpaP9kjI/AAAAAAAAAsk/gPizAZJU84Y/w260/MAGIX+PhotoStory+on+DVD.jpeg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v2c9"
Expires: Sat, 13 Oct 2018 12:27:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="MAGIX PhotoStory on DVD.jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 12 Oct 2018 12:27:34 GMT
Server: fife
Content-Length: 15395
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15395
Md5:    ff0fe26e58650a9ea36b9d7dcd196366
Sha1:   cff24b4e992dea934c79c531a5312f1f785f0292
Sha256: 2318d3d4ab248cbada2c73e493c9db7aa72187e09a293df998fedeca2723e176
                                        
                                            GET /search/label/%3C!--Can%27t%20find%20substitution%20for%20tag%20%5Bpost.thumbnailUrl%5D--%3E HTTP/1.1 
Host: aflam-uk.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://aflam-uk.blogspot.com/search/label/Photo

                                         
                                         216.58.211.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Fri, 12 Oct 2018 12:27:34 GMT
Date: Fri, 12 Oct 2018 12:27:34 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 01 Aug 2018 11:17:00 GMT
Etag: W/"54ec9ba5b69e8206140d9f9726c293ffe695e41c4d1b0ed5bd354ffb4347c02b"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 25863
Server: GSE


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware