Overview

URL giantxxx-tube.blogspot.de/search/label/Kartel
IP216.58.211.129
ASNAS15169 Google Inc.
Location United States
Report completed2017-08-13 08:56:27 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-08-13 2 giantxxx-tube.blogspot.de/search/label/Kartel Malware
2017-08-13 2 giantxxx-tube.blogspot.no/search/label/Kartel Malware
2017-08-13 2 giantxxx-tube.blogspot.no/search/label/Kartel Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 216.58.211.129

Date UQ / IDS / BL URL IP
2017-08-22 18:34:33 +0200
0 - 0 - 3 eltablerofinanzaseimpuestos.blogspot.com.co/2 (...) 216.58.211.129
2017-08-22 18:32:38 +0200
0 - 0 - 0 hdstreamlive24.blogspot.com/2017/08/real-madr (...) 216.58.211.129
2017-08-22 18:28:58 +0200
0 - 1 - 0 eclairedesign.blogspot.com/ 216.58.211.129
2017-08-22 18:26:24 +0200
0 - 0 - 0 hdstreamlive24.blogspot.com/2017/08/real-madr (...) 216.58.211.129
2017-08-22 18:25:38 +0200
0 - 1 - 0 diegodesenho.blogspot.com.br/ 216.58.211.129
2017-08-22 18:25:06 +0200
0 - 2 - 0 https://trendingtopnewmusic.blogspot.com/2016 (...) 216.58.211.129
2017-08-22 18:23:57 +0200
0 - 0 - 3 ekariza10.blogspot.com/2012/10/bentuk-interak (...) 216.58.211.129
2017-08-22 18:23:53 +0200
0 - 0 - 3 lenguayliteratura4tolgfd.blogspot.com.es/2014 (...) 216.58.211.129
2017-08-22 18:19:18 +0200
0 - 0 - 3 contosoufatossurreais.blogspot.pt/2016/12/ple (...) 216.58.211.129
2017-08-22 18:19:18 +0200
0 - 0 - 3 circlesof13.blogspot.de/search/label/reluctant 216.58.211.129

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2017-08-22 18:34:33 +0200
0 - 0 - 3 eltablerofinanzaseimpuestos.blogspot.com.co/2 (...) 216.58.211.129
2017-08-22 18:32:38 +0200
0 - 0 - 0 hdstreamlive24.blogspot.com/2017/08/real-madr (...) 216.58.211.129
2017-08-22 18:28:58 +0200
0 - 1 - 0 eclairedesign.blogspot.com/ 216.58.211.129
2017-08-22 18:28:18 +0200
0 - 0 - 0 https://pubads.g.doubleclick.net/gampad/ads?s (...) 216.58.211.130
2017-08-22 18:26:24 +0200
0 - 0 - 0 hdstreamlive24.blogspot.com/2017/08/real-madr (...) 216.58.211.129
2017-08-22 18:26:15 +0200
0 - 0 - 0 helpdesk-uky.myfreesites.net 104.154.95.49
2017-08-22 18:25:38 +0200
0 - 1 - 0 diegodesenho.blogspot.com.br/ 216.58.211.129
2017-08-22 18:25:06 +0200
0 - 2 - 0 https://trendingtopnewmusic.blogspot.com/2016 (...) 216.58.211.129
2017-08-22 18:23:57 +0200
0 - 0 - 3 ekariza10.blogspot.com/2012/10/bentuk-interak (...) 216.58.211.129
2017-08-22 18:23:53 +0200
0 - 0 - 3 lenguayliteratura4tolgfd.blogspot.com.es/2014 (...) 216.58.211.129

No other reports on domain: .



JavaScript

Executed Scripts (51)


Executed Evals (0)


Executed Writes (4)

#1 JavaScript::Write (size: 5, repeated: 2) - SHA256: 508bd334b02db127e7733b7eeb9c01b098adaccaa099135f85339598261dd03c

                                         2017
                                    

#2 JavaScript::Write (size: 2, repeated: 2) - SHA256: 4523540f1504cd17100c4835e85b7eefd49911580f8efff0599a8f283be6b9e3

                                        17
                                    

#3 JavaScript::Write (size: 152, repeated: 1) - SHA256: 1aca8492d13dd92cb336c3db84eed200612cf0e5a4632ece9b302890ca91e538

                                        < script src = "/feeds/posts/summary/-/http://giantxxx-tube.blogspot.no/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1" > < /script>
                                    

#4 JavaScript::Write (size: 3, repeated: 2) - SHA256: 617531b4fec3488c34f60417bf571d1c30e7e2cd8fec9fb06206815345f1df74

                                        Apr
                                    


HTTP Transactions (76)


Request Response
                                        
                                            GET /search/label/Kartel HTTP/1.1 
Host: giantxxx-tube.blogspot.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.211.129
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Location: http://giantxxx-tube.blogspot.no/search/label/Kartel
Content-Encoding: gzip
Date: Sun, 13 Aug 2017 06:55:42 GMT
Expires: Sun, 13 Aug 2017 06:55:42 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 193
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   193
Md5:    707f259ba01323e99ca969aefc2f32db
Sha1:   80f2b99c0803d4dcbf3882d53c3b0c09c590b4e4
Sha256: 74c4788740b387a919e2484a6c6f8b1f66ac90a4fba38d522e48dbe079cf5886

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /search/label/Kartel HTTP/1.1 
Host: giantxxx-tube.blogspot.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 13 Aug 2017 06:55:42 GMT
Date: Sun, 13 Aug 2017 06:55:42 GMT
Cache-Control: private, max-age=0
Last-Modified: Sun, 23 Jul 2017 08:09:41 GMT
Etag: W/"6155e35eadbfa9228ee2aaa813b6828446ff944955a7d7dd16fff767f5eaa0e9"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 41988
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   41988
Md5:    a3b078cc5ad073f9a877940b620f99bd
Sha1:   2df04123312c058ffc375f155db751123f96440f
Sha256: 6f539a47b58b9fddd2ab09b6d40a6e818a407f5f1e3d32e3d89a615a726b7ca9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css/graddit.css HTTP/1.1 
Host: static.graddit.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         104.28.8.76
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 13 Aug 2017 06:55:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=df4cd2606fda47835a299cd3611ea055a1502607343; expires=Mon, 13-Aug-18 06:55:43 GMT; path=/; domain=.graddit.com; HttpOnly
Last-Modified: Sat, 25 Apr 2015 17:20:22 GMT
Etag: W/"553bccd6-314b"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sun, 13 Aug 2017 08:55:43 GMT
Cache-Control: public, max-age=7200
Server: cloudflare-nginx
CF-RAY: 38d9c538529b4255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2337
Md5:    dfa0daa25e78200e40f9571312ec9ae5
Sha1:   568ffde7fb25a6263e31bfa58df1dab40cf8833b
Sha256: 803a55513376be5fab56f6faa9eb38fb8dae0bc428867b15fd59c6c95fedf2e7
                                        
                                            GET /css?family=PT+Sans+Narrow HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 13 Aug 2017 06:55:43 GMT
Date: Sun, 13 Aug 2017 06:55:43 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   212
Md5:    00f3d723193cf265644d7435222efbf6
Sha1:   7eb59ba35851938811fad10ca4c135d6001103a2
Sha256: f8b720a35e804790b3436f6611432007dde2da6bee95b94b1306b74642382267
                                        
                                            GET /css?family=Oswald HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 13 Aug 2017 06:55:43 GMT
Date: Sun, 13 Aug 2017 06:55:43 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   190
Md5:    32e1eea4c1b428f40572fa2a8e54317b
Sha1:   b436223090a443f588d8830da7b2b88fece1e19f
Sha256: 95692d6b07c607d5f0d74c51ce2b82ba54a834b48981d107f37c9d51d8a75602
                                        
                                            GET /24211643151/jquery.easing.js HTTP/1.1 
Host: yourjavascript.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         80.241.212.33
HTTP/1.1 502 Bad Gateway
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx
Date: Sun, 13 Aug 2017 06:55:43 GMT
Content-Length: 0
Connection: keep-alive
Etag: "51abb742-0"


--- Additional Info ---
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:44 GMT
Expires: Thu, 17 Aug 2017 06:55:44 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    690d4e950aabcc1ce6ccaff7622cbb0e
Sha1:   94507398aac6f045332e508e0b0fa621758dab09
Sha256: ff8180fa9dcf71fc32f770d6630a914224c7e281e48e71c03efda843aa729272
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=439838, public, no-transform, must-revalidate
Last-Modified: Fri, 11 Aug 2017 09:05:56 GMT
Expires: Fri, 18 Aug 2017 09:05:56 GMT
Date: Sun, 13 Aug 2017 06:55:44 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    6e41d8ae633c12ff014b571741af0fe1
Sha1:   b83f29a7f1d6c0cf9fb0b92adf8b42d085e0c43a
Sha256: 4f40467a73a3f4f41b3750ff9414f5bc4cc834b4dd7ea1f2627f30f45b21f84f
                                        
                                            GET /static/v1/widgets/763856997-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8423
Date: Fri, 04 Aug 2017 13:23:07 GMT
Expires: Sat, 04 Aug 2018 13:23:07 GMT
Last-Modified: Fri, 04 Aug 2017 12:28:43 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 754357
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   8423
Md5:    ccf9e71f344b4f1f0270ce64b1f130fc
Sha1:   bc5162e327adfa3ac930655be968a9370be7dfef
Sha256: 7c1e756bfdcb858e6d38ff5d970f6fdb2889fb5ac38c6f95be0bf40da271f188
                                        
                                            GET /jquery-1.8.3.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         94.31.29.54
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 13 Aug 2017 06:55:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Oct 2014 00:16:07 GMT
Vary: Accept-Encoding
Etag: W/"54499a47-40f49"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   96625
Md5:    fc345cc666e4723a9d03b2621b12dfb1
Sha1:   a4b0d132bef1430dde86dbf1059670e3074a4439
Sha256: d80cae0232bd6ffe42be7f1559c0f25294b1d3905d1ee4268373ddc79175e320
                                        
                                            GET /24211643151/jquery.easing.js HTTP/1.1 
Host: yourjavascript.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel
If-None-Match: "51abb742-0"

                                         
                                         80.241.212.33
HTTP/1.1 502 Bad Gateway
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx
Date: Sun, 13 Aug 2017 06:55:47 GMT
Content-Length: 0
Connection: keep-alive
Etag: "51abb742-0"


--- Additional Info ---
                                        
                                            GET /-wqzYVSTa638/UQrc7C0UP3I/AAAAAAAABgU/TgbAOmzXLAs/s1600/home.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "va2f"
Expires: Mon, 14 Aug 2017 05:57:07 GMT
Content-Disposition: inline;filename="home.gif"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 05:57:07 GMT
Server: fife
Content-Length: 1157
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 3520


--- Additional Info ---
Magic:  GIF image data, version 89a, 21 x 21
Size:   1157
Md5:    4c4d5a137d02ca4414dfe2e76084c7a0
Sha1:   f5b0e9627a211af31faeb95b74f85471c07cc8e5
Sha256: ff33e9e45ece6b5b9099f38e8e0a246865d21330f4f6300f2f9dc6498c7441d6
                                        
                                            GET /218437119/halamanav.js HTTP/1.1 
Host: yourjavascript.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         80.241.212.33
HTTP/1.1 200 OK
Content-Type: text/javascript; charset: UTF-8
                                        
Server: nginx
Date: Sun, 13 Aug 2017 06:55:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF line terminators
Size:   5361
Md5:    0b26ad0b1f8e8c99dd6377b77a6606e2
Sha1:   9423d1bb932af7237412b2d39e02a1e55eb23fcf
Sha256: c5c2a9a025bfb657e029f79941deca6f66878ecb129672f20cc774590cb84d81
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:47 GMT
Expires: Thu, 17 Aug 2017 06:55:47 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    2f4c7ffb743ab01440a193055af39ea2
Sha1:   0895c4183174833873a27a9415d8a5289dc3869a
Sha256: d9ea2f41eeab8de59167123615085c8f8f921ec692c66f6cb2806e2502c14144
                                        
                                            GET /img/icon18_wrench_allbkg.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 475
Date: Wed, 09 Aug 2017 19:36:19 GMT
Expires: Wed, 16 Aug 2017 19:36:19 GMT
Last-Modified: Wed, 09 Aug 2017 02:17:39 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 299968
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  PNG image, 18 x 18, 8-bit colormap, non-interlaced
Size:   475
Md5:    f617effe6d96c15acfea8b2e8aae551f
Sha1:   6d676af11ad2e84b620cce4d5992b657cb2d8ab6
Sha256: d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=1486440074319405536&zx=ac321136-9818-484f-a5d7-7c7918427075 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: private, max-age=1800
Pragma: no-cache
Expires: Sun, 13 Aug 2017 06:55:47 GMT
Date: Sun, 13 Aug 2017 06:55:47 GMT
Last-Modified: Sun, 13 Aug 2017 06:55:47 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /ajax/libs/jquery/1.6.2/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.209.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 32245
Date: Fri, 04 Aug 2017 00:50:36 GMT
Expires: Sat, 04 Aug 2018 00:50:36 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 799511
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   32245
Md5:    68ab59808bd9d610989e90a6a72de1c9
Sha1:   37e30026185877bbe73d9794a9b30083ae0709fe
Sha256: e730036ff9a2dea35ee12350105dca51535e909c854f51fe0e131a8292f73f6b
                                        
                                            GET /jquery-2.1.1.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         94.31.29.54
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 13 Aug 2017 06:55:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Oct 2014 00:16:07 GMT
Vary: Accept-Encoding
Etag: W/"54499a47-3c637"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   89265
Md5:    8eda8f2e67f0b05454b9737205d2f334
Sha1:   abc4f5d34a8923bedc92cb6d455165b683636913
Sha256: d86a75d4eae0cf75d997facaa2278440804f14e9f4313f2b99ea4e6415bc0592
                                        
                                            GET /-Es4rPAZpSEA/VO-9j025emI/AAAAAAAAAA8/v0-_VsrrI3I/s930/sun%2Blogo.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v10"
Expires: Fri, 11 Aug 2017 11:30:17 GMT
Content-Disposition: inline;filename="sun logo.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 4937
X-XSS-Protection: 1; mode=block
Age: 145
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 50 x 50, 8-bit/color RGBA, non-interlaced
Size:   4937
Md5:    ec96de9adb433356cd5275b700162ca8
Sha1:   129635c9d3a7c80cc6a31fa529720bae1a19ed55
Sha256: c2f14ee0930eb95756034a91fa5e7e27eb22f2201d9de9f0a420a0b967df6a39
                                        
                                            GET /-IeHXc7J7dZs/URLRwVeKocI/AAAAAAAACFA/OepYPORtIII/s1600/menuh.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v850"
Expires: Mon, 14 Aug 2017 06:53:23 GMT
Content-Disposition: inline;filename="menuh.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 196
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 145


--- Additional Info ---
Magic:  PNG image, 5 x 60, 8-bit/color RGBA, non-interlaced
Size:   196
Md5:    af8a1d93aa40aadbf1f260df21bc2f80
Sha1:   7b1f56fffb743cf880bcd946851a873fe44855e8
Sha256: 55fb946d0c7e56072bb1855932f6df8583a5c4fa4e78a2ec49f3a352dd4d25c5
                                        
                                            GET /-AIW512aa4Ms/URJ2uXZh45I/AAAAAAAAB9c/QMul0JdxpNs/s1600/outerpic.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7d7"
Expires: Sun, 13 Aug 2017 18:07:24 GMT
Content-Disposition: inline;filename="outerpic.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 573
X-XSS-Protection: 1; mode=block
Age: 145
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 3 x 360, 8-bit/color RGBA, non-interlaced
Size:   573
Md5:    9d6d0849e0f88f04ba6044729a7bf332
Sha1:   91194bb1f839c4ab78e48367084ffb6ca7da5a28
Sha256: 20559eee8ae65c5a706e7c348960d7fad2a08b02e75f4861f6c66b4bf2c452cc
                                        
                                            GET /-K4hNJ9YcB7I/URKRQe-RbaI/AAAAAAAAB_c/bGaB_wyqaoA/s1600/dotted.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v7f7"
Expires: Mon, 14 Aug 2017 06:44:30 GMT
Content-Disposition: inline;filename="dotted.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:44:30 GMT
Server: fife
Content-Length: 155
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 678


--- Additional Info ---
Magic:  PNG image, 3 x 3, 8-bit/color RGBA, non-interlaced
Size:   155
Md5:    068bd1f856006d35692c1bdfae79b6a6
Sha1:   b5904975c385f3623cc9d5cf90b555b8e5e9ce7c
Sha256: 68545da4030bd7eac3700eb6c90475da521a97655bae6c755960a66a1b1649cc
                                        
                                            GET /search/label/Kartel HTTP/1.1 
Host: giantxxx-tube.blogspot.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel
If-Modified-Since: Sun, 23 Jul 2017 08:09:41 GMT
If-None-Match: W/"6155e35eadbfa9228ee2aaa813b6828446ff944955a7d7dd16fff767f5eaa0e9"

                                         
                                         216.58.211.129
HTTP/1.1 304 Not Modified
                                        
Expires: Sun, 13 Aug 2017 06:55:48 GMT
Date: Sun, 13 Aug 2017 06:55:48 GMT
Cache-Control: private, max-age=0
Etag: W/"6155e35eadbfa9228ee2aaa813b6828446ff944955a7d7dd16fff767f5eaa0e9"
Server: GSE


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /-UzQSVqe350A/URJhGaHsGqI/AAAAAAAAB7s/UVJaEnVxtc8/s1600/body.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "va1c"
Expires: Mon, 14 Aug 2017 05:47:00 GMT
Content-Disposition: inline;filename="body.gif"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 23343
X-XSS-Protection: 1; mode=block
Age: 145
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200
Size:   23343
Md5:    6f52f16e0c8869759029f92150fac68f
Sha1:   d7171b0111ecbc51953fb6a6a0fcb639c9aacdb2
Sha256: 0ba65009d2629977348e7cc30414a518b21b8fe7f50351fcead70764219b9bb2
                                        
                                            GET /s/oswald/v14/-g5pDUSRgvxvOl5u-a_WHw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Oswald
Origin: http://giantxxx-tube.blogspot.no

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19256
Date: Fri, 04 Aug 2017 14:14:07 GMT
Expires: Sat, 04 Aug 2018 14:14:07 GMT
Last-Modified: Wed, 02 Aug 2017 22:45:08 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 751301


--- Additional Info ---
Magic:  data
Size:   19256
Md5:    c7b96bb40a63c91659cd45c6e7640a4e
Sha1:   3081c20b7905c25d37b70d0a4d2fa953c6bd4844
Sha256: 1018f6c6e463db9125b987b08593399c5bc4f4b9c49aa6217a15d20dc09f2b1f
                                        
                                            GET /feeds/posts/summary/-/http://giantxxx-tube.blogspot.no/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1 HTTP/1.1 
Host: giantxxx-tube.blogspot.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.129
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 13 Aug 2017 06:55:49 GMT
Server: Blogger Render Server 1.0
Content-Length: 193
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text
Size:   193
Md5:    83b482393f028e6de91b032e7fae746b
Sha1:   50bad14cd7b4602d7b9f1ef6d769288588594fc8
Sha256: 031cbc91f964c96aa1975380c3bd66f5fe254439f3281bf0e06bc385c3912aa2
                                        
                                            GET /-6p_AqXL70hQ/UQWPHMObw9I/AAAAAAAABZ0/f2UWIvjFkSQ/s1600/footerli.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v59d"
Expires: Sat, 12 Aug 2017 22:37:22 GMT
Content-Disposition: inline;filename="footerli.png"
Vary: Origin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 13 Aug 2017 06:53:23 GMT
Server: fife
Content-Length: 3569
X-XSS-Protection: 1; mode=block
Age: 146
Cache-Control: public, max-age=86400, no-transform


--- Additional Info ---
Magic:  PNG image, 4 x 7, 8-bit/color RGBA, interlaced
Size:   3569
Md5:    280d0cd69675c12bf752cceabb1502f7
Sha1:   931dd6d7487c744e2daaa36b565e14775775e4ea
Sha256: a71cc9c7f45d47492b0bf18a95262af257a63a5e5b16bc28dd55e78d686714af
                                        
                                            GET /s/ptsansnarrow/v7/UyYrYy3ltEffJV9QueSi4RdbPw3QSf9R-kE0EsQUn2A.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=PT+Sans+Narrow
Origin: http://giantxxx-tube.blogspot.no

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 44404
Date: Fri, 04 Aug 2017 13:23:26 GMT
Expires: Sat, 04 Aug 2018 13:23:26 GMT
Last-Modified: Wed, 27 Aug 2014 23:49:31 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 754342


--- Additional Info ---
Magic:  data
Size:   44404
Md5:    9b1d9a502946fed5ebfa817b53d4eb74
Sha1:   530b23c453a2b246a327de3c5bcf22a1088bd071
Sha256: a1417f819c2764846fba6bf6a2bbac4b4486c8996f64a6dd08a277f59b554401
                                        
                                            GET / HTTP/1.1 
Host: www.cebr.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         52.0.7.30
HTTP/1.1 302 Moved Temporarily
                                        
Date: Sun, 13 Aug 2017 6:55:49 GMT
Connection: Keep-Alive
Content-Length: 0
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: http://www.apict.top


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.cebr.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         52.0.7.30
HTTP/1.1 302 Moved Temporarily
                                        
Date: Sun, 13 Aug 2017 6:55:49 GMT
Connection: Keep-Alive
Content-Length: 0
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: http://www.apict.top


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.apict.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel

                                         
                                         216.58.211.147
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 13 Aug 2017 06:55:51 GMT
Date: Sun, 13 Aug 2017 06:55:51 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 29 Jul 2017 09:18:26 GMT
Etag: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 6483
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   6483
Md5:    3b88cdf5490b8af17ac3aeb53fa9ce0b
Sha1:   35e6094fbc5f28318c8c75a65323db0aa32f81fe
Sha256: 4cf3ae340e5e08814801e2791483b7bd8c3e0f9bad632748a544f07adecadacb
                                        
                                            GET /css?family=Carter+One HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 13 Aug 2017 06:55:51 GMT
Date: Sun, 13 Aug 2017 06:55:51 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   206
Md5:    58c4036766d6e657dd337a0ed2575321
Sha1:   6b2bc1a59e1e60c4e6210e723fb782e89dac434e
Sha256: b4cfc2b3b4ec436c97fc6e1c336fa42239a6c297e5a580feb23643f8b02be08e
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:55:51 GMT
Expires: Thu, 17 Aug 2017 06:55:51 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    596a29e252577a2d8031b342e42361cf
Sha1:   59d830e03307eea34c70224fdd40dc91ce5e7ed1
Sha256: a876127088860f61d6beb031ddf2c6ac593a0e9be3b58e67037e1fd7aa0586c3
                                        
                                            GET /static/v1/widgets/2582377541-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 42897
Date: Fri, 11 Aug 2017 17:35:33 GMT
Expires: Sat, 11 Aug 2018 17:35:33 GMT
Last-Modified: Fri, 11 Aug 2017 16:41:54 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 134418
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   42897
Md5:    b38bf92a0c9bb6cb738e3716dcd4e051
Sha1:   3ef3568edf184dd64cc58ded50393b12ef7d887a
Sha256: 506ea2e8c73328d4339ed68ffe7a91851475636a78d0bbec42d1ff4989f3cba6
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=7347293982142901478&zx=a2c471d2-836c-462b-accf-6359614dc14b HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: private, max-age=1800
Pragma: no-cache
Expires: Sun, 13 Aug 2017 06:55:52 GMT
Date: Sun, 13 Aug 2017 06:55:52 GMT
Last-Modified: Sun, 13 Aug 2017 06:55:52 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "6cecf206908d58fdc0a655ebc3b28890"
Expires: Sun, 13 Aug 2017 06:55:52 GMT
Date: Sun, 13 Aug 2017 06:55:52 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
Strict-Transport-Security: max-age=31536000
P3P: CP="This is not a P3P policy! See https://support.google.com/accounts/answer/151657?hl=en for more info."
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=109=DFtStls-pSDzBcJXAXDul2ptDBkbyAtImVWHyBHMnNivKR7LxrPgKCvQ6lSR8hSSBeh3fA-pYauKMYo_5wd5EFO7kQjb4W6APkyp7ua_uwoIzfhGF5bQUDzN2yiKKEXL;Domain=.google.com;Path=/;Expires=Mon, 12-Feb-2018 06:55:52 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16669
Md5:    c1d3d2e3d2eb88e4bf20c57f65158975
Sha1:   b10ca2c4c20efa3684da9000bb6e88bd67adfb45
Sha256: f3c9bb7ce540596af42014587beb87e52309411bd73a0653a0310b0f4ee33acb
                                        
                                            GET / HTTP/1.1 
Host: www.apict.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giantxxx-tube.blogspot.no/search/label/Kartel
If-Modified-Since: Sat, 29 Jul 2017 09:18:26 GMT
If-None-Match: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"

                                         
                                         216.58.211.147
HTTP/1.1 304 Not Modified
                                        
Expires: Sun, 13 Aug 2017 06:55:52 GMT
Date: Sun, 13 Aug 2017 06:55:52 GMT
Cache-Control: private, max-age=0
Etag: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"
Server: GSE


--- Additional Info ---
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.no.fJ20OopUCoY.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AQ/rs=AGLTcCOYV-uGeKKMIsXry9dQXBbTYS-T9g/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/
Cookie: NID=109=DFtStls-pSDzBcJXAXDul2ptDBkbyAtImVWHyBHMnNivKR7LxrPgKCvQ6lSR8hSSBeh3fA-pYauKMYo_5wd5EFO7kQjb4W6APkyp7ua_uwoIzfhGF5bQUDzN2yiKKEXL

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46130
Date: Fri, 11 Aug 2017 18:44:51 GMT
Expires: Sat, 11 Aug 2018 18:44:51 GMT
Last-Modified: Fri, 11 Aug 2017 00:45:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 130261
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   46130
Md5:    349f3ad9d1367e5138ba7de61a66c3e1
Sha1:   67bad6019e47f1535234ae38a74455822d34cbcd
Sha256: ec0d99c82071766495ad1c4ed7d9c14b58f8840cba7520e8832e7b7c6fcc2641
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=7347293982142901478&zx=a2c471d2-836c-462b-accf-6359614dc14b HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/
If-Modified-Since: Sun, 13 Aug 2017 06:55:52 GMT

                                         
                                         216.58.211.137
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: private, max-age=1800
Pragma: no-cache
Expires: Sun, 13 Aug 2017 06:55:52 GMT
Date: Sun, 13 Aug 2017 06:55:52 GMT
Last-Modified: Sun, 13 Aug 2017 06:55:52 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET / HTTP/1.1 
Host: www.apict.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.apict.top/
If-Modified-Since: Sat, 29 Jul 2017 09:18:26 GMT
If-None-Match: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"

                                         
                                         216.58.211.147
HTTP/1.1 304 Not Modified
                                        
Expires: Sun, 13 Aug 2017 06:55:52 GMT
Date: Sun, 13 Aug 2017 06:55:52 GMT
Cache-Control: private, max-age=0
Etag: W/"2ac60df8bb8ef8490d0d0217d1d58a4766cb5ca9923ec0956c45e910c0d9cbe2"
Server: GSE


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         198.41.214.184
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:56:00 GMT
Content-Length: 1831
Connection: keep-alive
Set-Cookie: __cfduid=d0263ca85500ded7e8e16d42a7287ecd91502607360; expires=Mon, 13-Aug-18 06:56:00 GMT; path=/; domain=.msocsp.com; HttpOnly
Last-Modified: Sun, 13 Aug 2017 02:08:27 GMT
Expires: Thu, 17 Aug 2017 02:08:27 GMT
Etag: "5d753b9ff9955b4d7766c192030f6a1bf380a258"
Cache-Control: max-age=10800,public,no-transform,must-revalidate
X-Cache: HIT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38d9c5a2a1c04291-OSL


--- Additional Info ---
Magic:  data
Size:   1831
Md5:    90cceab3221ae15bc0f5ad156494de77
Sha1:   5d753b9ff9955b4d7766c192030f6a1bf380a258
Sha256: 523701c00e8ca50c9456718e40bfa2b5e804afad65f4fc7481e3474a2b116423
                                        
                                            GET / HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private, max-age=0
Content-Length: 31269
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
Set-Cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 13-Aug-2019 06:56:00 GMT; path=/ SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; domain=.bing.com; expires=Tue, 13-Aug-2019 06:56:00 GMT; path=/ SRCHUSR=DOB=20170813; domain=.bing.com; expires=Tue, 13-Aug-2019 06:56:00 GMT; path=/ _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; domain=.bing.com; path=/ _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; path=/; httponly; domain=bing.com _EDGE_V=1; path=/; httponly; expires=Tue, 13-Aug-2019 06:56:00 GMT; domain=bing.com MUID=2711A4E561C768B03E7FAE38602369E5; path=/; expires=Tue, 13-Aug-2019 06:56:00 GMT; domain=bing.com MUIDB=2711A4E561C768B03E7FAE38602369E5; path=/; httponly; expires=Tue, 13-Aug-2019 06:56:00 GMT
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-MSEdge-Ref: Ref A: ACB5305D0BDB420BBDEBF117F90E905B Ref B: STOSCHEDGE0413 Ref C: 2017-08-13T06:56:00Z
Date: Sun, 13 Aug 2017 06:56:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:56:00 2017
Size:   31269
Md5:    df37c9f46c69f53d3e578c6af4d89552
Sha1:   247330a4b42c20a4723585fbd382180357ce978f
Sha256: 101af0d3a025f2c30d2333a783f58fa28a93435bd86396ca47e0946b4ca22301
                                        
                                            GET /s/a/hpc20.png HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=15552000
Last-Modified: Fri, 21 Oct 2016 16:54:36 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:55:59 GMT
Content-Length: 6327


--- Additional Info ---
Magic:  PNG image, 241 x 224, 8-bit/color RGBA, non-interlaced
Size:   6327
Md5:    300663d738a47589db19f6e84a713988
Sha1:   10fe8bdc5af87e02cb3acc1903362efae8b40ae1
Sha256: a7e293eaa02430979d2efe756a99839519e069b2dba79596850a55fd81ef8582
                                        
                                            GET /fd/ls/l?IG=3049EAD56CAF4A768B796D4D523F46C5&CID=2711A4E561C768B03E7FAE38602369E5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:-1,%22BC%22:-1,%22SE%22:-1,%22TC%22:-1,%22H%22:121,%22BP%22:200,%22CT%22:250,%22IL%22:1},%22ad%22:[-1,-1,20,20,20,20,1]}&P=SERP&DA=DB5 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: FA3117FAF6F24671B9B3A3B8C98F8D4A Ref B: STOSCHEDGE0413 Ref C: 2017-08-13T06:56:00Z
Date: Sun, 13 Aug 2017 06:56:00 GMT


--- Additional Info ---
                                        
                                            GET /rms/BingCore.Bundle/cj,nj/0b5cf849/1a2f5baa.js?bu=rms+answers+Shared+BingCore%24ClientInstV2%24DuplicateXlsDefaultConfig%2cBingCore%24ClientInstV2%24SharedLocalStorageConfigDefault%2cBingCore%24shared%2cBingCore%24env.override%2cEmpty%2cBingCore%24event.custom.fix%2cBingCore%24event.native%2cBingCore%24onHTML%2cBingCore%24dom%2cBingCore%24cookies%2cBingCore%24rmsajax%2cBingCore%24ClientInstV2%24LogUploadCapFeatureDisabled%2cBingCore%24ClientInstV2%24ClientInstConfigSeparateOfflineQueue%2cBingCore%24clientinst%2cBingCore%24replay%2cBingCore%24Animation%2cBingCore%24fadeAnimation%2cBingCore%24framework HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Sat, 12 Aug 2017 14:13:36 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:00 GMT
Content-Length: 4976


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:31:22 2017
Size:   4976
Md5:    8431caada9023c391ecda908c403fbf7
Sha1:   be01d7a620316a9a1cefeb2d533b1c0ad2367403
Sha256: 44e8ff2045dbc4bbb1526337515c70908cbe855e0c74a20a1f2ee5f6b65b57f9
                                        
                                            GET /rms/rms%20answers%20Identity%20Blue$BlueIdentityDropdownBootStrap/cj,nj/c0fac2c5/89faaefc.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Thu, 10 Aug 2017 11:38:35 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:00 GMT
Content-Length: 617


--- Additional Info ---
Magic:  gzip compressed data, last modified: Thu Aug 10 20:53:06 2017
Size:   617
Md5:    4d50fd2208ee0c83845c982030b5ac01
Sha1:   74a0e08499f1f53ef6e900e84171a876e92d94e3
Sha256: 85adc0f89e2d591d5b937b2564bc6fdbe40dcc1c9b4f16942403f7dad73e71ec
                                        
                                            GET /rms/rms%20answers%20Identity%20Blue$BlueIdentityHeader/cj,nj/0ba28337/c68d5c19.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Sat, 12 Aug 2017 14:14:38 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:00 GMT
Content-Length: 801


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:32:09 2017
Size:   801
Md5:    26ad3df8a427228d44b2dfed9e197550
Sha1:   eecc7d59135110c104de7980208bfaeb19850209
Sha256: dab34f1bd2f23e023a9346c78ccf7bc8e42e32af855edbe894d808a01078f579
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request
Cookie: __cfduid=d0263ca85500ded7e8e16d42a7287ecd91502607360

                                         
                                         198.41.214.184
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:56:00 GMT
Content-Length: 1820
Connection: keep-alive
Last-Modified: Sun, 13 Aug 2017 01:27:52 GMT
Expires: Thu, 17 Aug 2017 01:27:52 GMT
Etag: "7eeaae89815db36bf1121bf61111008ae9fb283d"
Cache-Control: max-age=10800,public,no-transform,must-revalidate
X-Cache: EXPIRED
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38d9c5a5e2bb4291-OSL


--- Additional Info ---
Magic:  data
Size:   1820
Md5:    f02ba83721754b4dfe2555617d98f8e3
Sha1:   7eeaae89815db36bf1121bf61111008ae9fb283d
Sha256: 980bf0e8e6efa9fb8a583fb4b0fed93d25fd99174fe2795141d5782808a9de60
                                        
                                            GET /rms/Framework/cj,nj/f0fe13d0/9101d3f2.js?bu=rms+answers+BoxModel+config.instant%2ccore%2ccore%24viewport%2ccore%24layout%2ccore%24metrics%2cmodules%24mutation%2cmodules%24error%2cmodules%24network%2cmodules%24cursor%2cmodules%24keyboard%2cmodules%24bot HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Fri, 04 Aug 2017 16:46:39 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:00 GMT
Content-Length: 7696


--- Additional Info ---
Magic:  gzip compressed data, last modified: Tue Aug 08 06:10:36 2017
Size:   7696
Md5:    804fe1dbfdfba90adbc6cbfa1af49f86
Sha1:   f7d6db74dcc51b009699129d56dffea585dd6363
Sha256: a147c494a18e1abe860d2c79d71de786a70c49ca31d33a3cff2e4533a9800cc5
                                        
                                            GET /rms/rms%20answers%20Identity%20SnrWindowsLiveConnectBootstrap/cj,nj/bf587ad6/f1d86b5a.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Thu, 10 Aug 2017 11:38:22 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:00 GMT
Content-Length: 181


--- Additional Info ---
Magic:  gzip compressed data, last modified: Fri Aug 11 00:27:42 2017
Size:   181
Md5:    bd0baab24d3ff39e256d2288bc45c39f
Sha1:   efb72f6f09cac901b64a73e2ac55afd7152594ca
Sha256: 5b885d426e0bdfad9674c22dd74632eee11c0f44a86fbec0186d883c6299deb2
                                        
                                            GET / HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private, max-age=0
Content-Length: 31230
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-MSEdge-Ref: Ref A: 92926D4992E147899DE68432B5257AFE Ref B: STOSCHEDGE0413 Ref C: 2017-08-13T06:56:01Z
Date: Sun, 13 Aug 2017 06:56:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:56:01 2017
Size:   31230
Md5:    befaaafd5f4bf642169018d16c29a4cd
Sha1:   3cfeece14ecd9aabafbe866de40398d938819a85
Sha256: 48a670b2aa5425e19d1993d6c91b87d4d37ff6da705b0423bec979cce44412b8
                                        
                                            GET /fd/ls/l?IG=ACCE2A6F347C4F8D9EAD6160ABA05839&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:-1,%22BC%22:-1,%22SE%22:-1,%22TC%22:-1,%22H%22:96,%22BP%22:101,%22CT%22:156,%22IL%22:1},%22ad%22:[-1,-1,0,0,0,0,1]}&P=SERP&DA=DB5 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: E5B75213D48E47ADB7CAA5C129BCD9FD Ref B: STOSCHEDGE0211 Ref C: 2017-08-13T06:56:01Z
Date: Sun, 13 Aug 2017 06:56:00 GMT


--- Additional Info ---
                                        
                                            GET /rms/LanguageSwitch/cj,nj/f28dadef/aea7e831.js?bu=rms+answers+VisualSystem+LanguageSwitch HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Thu, 10 Aug 2017 11:37:39 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:01 GMT
Content-Length: 174


--- Additional Info ---
Magic:  gzip compressed data, last modified: Thu Aug 10 20:48:11 2017
Size:   174
Md5:    89db66628ff61d688f46c5d1bf4da8b4
Sha1:   c734b4ad13b9a82dc2636a6ced6080b4672927a2
Sha256: cfa17b110c5d3bfea168f81b744108f77f52b06a4ef87ee3c3967cae2542ee81
                                        
                                            GET /rms/AutoSug/cj,nj/e5d71383/77450e65.js?bu=rms+answers+AutoSuggest+Service%2cWeb%24Utils%2cWeb%24EventRegisterer%2cWeb%24EventRegistration%2cEmpty%2cEmpty%2cEmpty%2cWeb%24WebCore%2cWeb%24DataProvider%2cEmpty%2cEmpty%2cWeb%24Canvas%2cWeb%24Layout%2cWeb%24SearchForm%2cWeb%24Ghosting%2cEmpty%2cWeb%24PrefixThrottling%2cEmpty%2cEmpty%2cEmpty%2cWeb%24Init HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=20&CH=20&UTC=120

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=15552000
Content-Encoding: gzip
Last-Modified: Sat, 12 Aug 2017 14:14:01 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:01 GMT
Content-Length: 11672


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sat Aug 12 22:48:20 2017
Size:   11672
Md5:    44c9be7fc7b9392669fef06de920c31f
Sha1:   3717602af39361a73f960d3098acae9e6b50850e
Sha256: a3cb426216d729417974bf828449fded5697882a898e2ed8921105c0bcfd6399
                                        
                                            POST /fd/ls/lsp.aspx? HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: text/xml; charset=UTF-8
Referer: https://www.bing.com/
Content-Length: 311
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         204.79.197.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 2959255B33E24DA0B5ED8524DCC4BCA2 Ref B: STOSCHEDGE0413 Ref C: 2017-08-13T06:56:01Z
Date: Sun, 13 Aug 2017 06:56:01 GMT


--- Additional Info ---
                                        
                                            POST /fd/ls/lsp.aspx? HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: text/xml; charset=UTF-8
Referer: https://www.bing.com/
Content-Length: 311
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204160
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         204.79.197.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 3CAE4CD5A2DF45ABADC653352A7C6654 Ref B: STOSCHEDGE0306 Ref C: 2017-08-13T06:56:01Z
Date: Sun, 13 Aug 2017 06:56:01 GMT


--- Additional Info ---
                                        
                                            GET /sa/8_01_0_000000/homepageImgViewer_c.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 12442
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: 737AFD909DB045079215132294CD7D5A Ref B: STOSCHEDGE0211 Ref C: 2017-08-13T06:56:01Z
Date: Sun, 13 Aug 2017 06:56:01 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   12442
Md5:    fbbc4d0f94ac0c2c6be73badc60af5f4
Sha1:   f08be11b9d458c44b9c3c17319117b07bb94954f
Sha256: 3d7e390118252f4dfcfeb21b077f2bd8c9da24b95451a34e2733ac372f61a03c
                                        
                                            GET /sa/8_01_0_000000/homepageImgViewer_c.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204160

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 12442
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: 8E1C2CD860FA4CFEA2F01FD6FED99BFA Ref B: STOSCHEDGE0214 Ref C: 2017-08-13T06:56:02Z
Date: Sun, 13 Aug 2017 06:56:01 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   12442
Md5:    fbbc4d0f94ac0c2c6be73badc60af5f4
Sha1:   f08be11b9d458c44b9c3c17319117b07bb94954f
Sha256: 3d7e390118252f4dfcfeb21b077f2bd8c9da24b95451a34e2733ac372f61a03c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request
Cookie: __cfduid=d0263ca85500ded7e8e16d42a7287ecd91502607360

                                         
                                         198.41.214.184
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 13 Aug 2017 06:56:02 GMT
Content-Length: 1820
Connection: keep-alive
Last-Modified: Sun, 13 Aug 2017 03:25:41 GMT
Expires: Thu, 17 Aug 2017 03:25:41 GMT
Etag: "c6896d1c1e745328291ae8e2adef85e0fb87e094"
Cache-Control: max-age=10800,public,no-transform,must-revalidate
X-Cache: HIT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38d9c5ad55be4291-OSL


--- Additional Info ---
Magic:  data
Size:   1820
Md5:    e138513ccceaa81322a09615b79b6dd6
Sha1:   c6896d1c1e745328291ae8e2adef85e0fb87e094
Sha256: 6fd2f80aa4904202413646c65a58d8bfc078cc506a0f7a9df345243844db2dbf
                                        
                                            GET /login.srf?wa=wsignin1.0&rpsnv=11&ct=1502607361&rver=6.0.5286.0&wp=MBI&wreply=https:%2F%2fwww.bing.com%2Fsecure%2FPassport.aspx%3Fpopup%3D1%26ssl%3D1&lc=1044&id=264960&checkda=1 HTTP/1.1 
Host: login.live.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/

                                         
                                         131.253.61.84
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 0
Expires: Sun, 13 Aug 2017 06:55:02 GMT
Location: https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1
Server: Microsoft-IIS/8.5
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Set-Cookie: uaid=6f8d4811f667487a8587dd27d5943952; domain=login.live.com;secure= ;path=/;HTTPOnly= ;version=1 MSPRequ=lt=1502607362&co=1&id=264960; secure= ;path=/;HTTPOnly=;version=1
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Sun, 13 Aug 2017 06:56:02 GMT
Connection: close


--- Additional Info ---
                                        
                                            GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Length: 230
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
X-MSEdge-Ref: Ref A: 23087D99F38B489B9A41640602AAC0BE Ref B: STOSCHEDGE0413 Ref C: 2017-08-13T06:56:02Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:56:02 2017
Size:   230
Md5:    34b3a8df2f002ac303a9683fd639de59
Sha1:   9613a4137c25181ccc9e603e0c535e27f028928e
Sha256: db407c83150da9d08ebb624295bdea65a8c08b658692c5dd056bb88cc60bd20d
                                        
                                            GET /az/hprichbg/rb/LoxodontaAfricana_ROW12071115154_1920x1080.jpg HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:01 GMT
Content-Length: 332500


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   332500
Md5:    a661a6d1c9c973c4af519c5fa8da7c92
Sha1:   1ae5410ff6786d05f37eff1e10a9e96c7a07cf0a
Sha256: 7ea47c8accde39cdb9ed7695c8d2d1e4e51fbad0c7be3eba3015127063f32bfc
                                        
                                            GET /HPImageArchive.aspx?format=js&idx=0&n=1&nc=1502607362810&pid=hp HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Cache-Control: private
Content-Length: 491
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
X-MSEdge-Ref: Ref A: 049AF2E378A04D59AD0ECE71DB79876F Ref B: STOSCHEDGE0211 Ref C: 2017-08-13T06:56:02Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:56:02 2017
Size:   491
Md5:    6a0235604217ed4500e480b19d1d3b4b
Sha1:   c1d505b6c138895e4ba8c904da2a69a3e206ce61
Sha256: 2a1b7b3af5935be58c086770c089745525e7ab9872aead47fe3937ee60f982e8
                                        
                                            GET /HPImageArchive.aspx?format=js&idx=0&n=1&nc=1502607362816&pid=hp HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Cache-Control: private
Content-Length: 491
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
X-MSEdge-Ref: Ref A: 93D7C8A895B542398E0F4F9ADE4D6C50 Ref B: STOSCHEDGE0413 Ref C: 2017-08-13T06:56:02Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:56:02 2017
Size:   491
Md5:    6a0235604217ed4500e480b19d1d3b4b
Sha1:   c1d505b6c138895e4ba8c904da2a69a3e206ce61
Sha256: 2a1b7b3af5935be58c086770c089745525e7ab9872aead47fe3937ee60f982e8
                                        
                                            GET /notifications/render?bnptrigger=%7B%22PartnerId%22%3A%22HomePage%22%2C%22IID%22%3A%22SERP.2000%22%2C%22Attributes%22%3A%7B%22RawRequestURL%22%3A%22%2F%22%7D%7D&IG=3049EAD56CAF4A768B796D4D523F46C5&IID=SERP.2000 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 3129
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: 475F1FA1B6794F78A10D02CD5A4B31D0 Ref B: STOSCHEDGE0306 Ref C: 2017-08-13T06:56:02Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:56:02 2017
Size:   3129
Md5:    ddd39a985dab08c9537ecb834f2a8aac
Sha1:   3e23e255e210c8e0762c145dbcc4876749948b72
Sha256: f465c83ac4a8a927925fdf76bf30cb842dcffccd135428412b8f9af4a31c5f82
                                        
                                            GET /notifications/render?bnptrigger=%7B%22PartnerId%22%3A%22HomePage%22%2C%22IID%22%3A%22SERP.2000%22%2C%22Attributes%22%3A%7B%22RawRequestURL%22%3A%22%2F%22%7D%7D&IG=ACCE2A6F347C4F8D9EAD6160ABA05839&IID=SERP.2000 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 3129
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: 114F519797CD4873BF2333F98C0CC56C Ref B: STOSCHEDGE0214 Ref C: 2017-08-13T06:56:02Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:56:02 2017
Size:   3129
Md5:    ddd39a985dab08c9537ecb834f2a8aac
Sha1:   3e23e255e210c8e0762c145dbcc4876749948b72
Sha256: f465c83ac4a8a927925fdf76bf30cb842dcffccd135428412b8f9af4a31c5f82
                                        
                                            GET /rms/rms%20answers%20Notifications%20close-hvr/ic/a5eb578c/409a194b.png HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=15552000
Last-Modified: Sat, 12 Aug 2017 14:13:59 GMT
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:02 GMT
Content-Length: 260


--- Additional Info ---
Magic:  PNG image, 21 x 21, 8-bit/color RGBA, non-interlaced
Size:   260
Md5:    38ce43d90c859c30050142fc1068a4ac
Sha1:   1ea79ee0bf8a54053144db88d35fd8cc666dd2de
Sha256: 8d138a7b906943bcefdf5b2cdadd804751ced6147cba3c140ae276c0ad2387d3
                                        
                                            GET /login.srf?wa=wsignin1.0&rpsnv=11&ct=1502607361&rver=6.0.5286.0&wp=MBI&wreply=https:%2F%2fwww.bing.com%2Fsecure%2FPassport.aspx%3Fpopup%3D1%26ssl%3D1&lc=1044&id=264960&checkda=1 HTTP/1.1 
Host: login.live.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/

                                         
                                         131.253.61.84
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 0
Expires: Sun, 13 Aug 2017 06:55:02 GMT
Location: https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1
Server: Microsoft-IIS/8.5
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Set-Cookie: uaid=89fc3f11a6fa414c8b857653403523cf; domain=login.live.com;secure= ;path=/;HTTPOnly= ;version=1 MSPRequ=lt=1502607362&co=1&id=264960; secure= ;path=/;HTTPOnly=;version=1
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Sun, 13 Aug 2017 06:56:01 GMT
Connection: close


--- Additional Info ---
                                        
                                            GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Length: 230
Content-Encoding: gzip
Vary: Accept-Encoding
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
X-MSEdge-Ref: Ref A: FC161B7959E2486E9052911517EA36BD Ref B: STOSCHEDGE0211 Ref C: 2017-08-13T06:56:03Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
Magic:  gzip compressed data, last modified: Sun Aug 13 01:56:03 2017
Size:   230
Md5:    2a30018419a83a8f479d22eb29036f23
Sha1:   ee7acb6f35296c4f54a5fd1ddc25df5049d2062e
Sha256: a41bf8336bb06010ab2b62a24440941d7813dd993941218269534d10ae57ac04
                                        
                                            GET /sa/8_01_0_000000/HpbHeaderPopup.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 4452
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: 572F0E39C59944DB94FC66D8835FED8D Ref B: STOSCHEDGE0413 Ref C: 2017-08-13T06:56:03Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   4452
Md5:    c15eb3418c0871f6de7ecfd7b7c6f6f2
Sha1:   1f824026e7cd0085986b5c37c34a98f3ea94bc20
Sha256: d11a335b12c9aa8cfbb2a5a13da945a50310d776a4f4a3c6d027bf077d97beee
                                        
                                            GET /fd/ls/l?IG=3049EAD56CAF4A768B796D4D523F46C5&CID=2711A4E561C768B03E7FAE38602369E5&Type=Event.PPT&DATA={%22S%22:103,%22E%22:2899,%22T%22:0,%22I%22:0,%22N%22:{%22H%22:{%22S%22:1212,%22E%22:2886,%22T%22:3}},%22M%22:{}}&P=SERP&DA=DB5 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: B4AE0C3FD2F545F8B814C9A6F04C65F3 Ref B: STOSCHEDGE0210 Ref C: 2017-08-13T06:56:03Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
                                        
                                            GET /sa/8_01_0_000000/HpbHeaderPopup.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 4452
Expires: -1
Vary: Accept-Encoding
X-MSEdge-Ref: Ref A: 11564529DBBA4E8090C7AE71C7437878 Ref B: STOSCHEDGE0214 Ref C: 2017-08-13T06:56:03Z
Date: Sun, 13 Aug 2017 06:56:03 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   4452
Md5:    c15eb3418c0871f6de7ecfd7b7c6f6f2
Sha1:   1f824026e7cd0085986b5c37c34a98f3ea94bc20
Sha256: d11a335b12c9aa8cfbb2a5a13da945a50310d776a4f4a3c6d027bf077d97beee
                                        
                                            GET /fd/ls/l?IG=ACCE2A6F347C4F8D9EAD6160ABA05839&Type=Event.PPT&DATA={%22S%22:80,%22E%22:2371,%22T%22:0,%22I%22:0,%22N%22:{%22H%22:{%22S%22:619,%22E%22:2356,%22T%22:2}},%22M%22:{}}&P=SERP&DA=DB5 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 571E3E9D90474E5290A9C3B79DE62BD4 Ref B: STOSCHEDGE0211 Ref C: 2017-08-13T06:56:03Z
Date: Sun, 13 Aug 2017 06:56:02 GMT


--- Additional Info ---
                                        
                                            GET /az/hprichbg/rb/Kitesurfing_ROW13331642700_1366x768.jpg HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=155; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Vary: Accept-Encoding
Date: Sun, 13 Aug 2017 06:56:03 GMT
Content-Length: 178430


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   178430
Md5:    926b8d22ab6cd248921ee68c12d26835
Sha1:   52ea2b4579f35259d0ce0392655cb8d839ba2e7c
Sha256: be6b4f834dfacf3ada3b0953eaba2117cab79b4c5fec793a930526b5826c2ae2
                                        
                                            GET /fd/ls/l?IG=3049EAD56CAF4A768B796D4D523F46C5&CID=2711A4E561C768B03E7FAE38602369E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22FID%22%3A%22CI%22%2C%22Name%22%3A%22Base%22%2C%22TS%22%3A1502607362805%7D%2C%7B%22Time%22%3A1036%2C%22T%22%3A%22CI.Latency%22%2C%22FID%22%3A%22HP%22%2C%22Name%22%3A%22Image%22%2C%22TS%22%3A1502607362806%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=700700; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 52E418A7D8BA480B941C87870882A086 Ref B: STOSCHEDGE0413 Ref C: 2017-08-13T06:56:04Z
Date: Sun, 13 Aug 2017 06:56:04 GMT


--- Additional Info ---
                                        
                                            GET /fd/ls/l?IG=ACCE2A6F347C4F8D9EAD6160ABA05839&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22FID%22%3A%22CI%22%2C%22Name%22%3A%22Base%22%2C%22TS%22%3A1502607362811%7D%2C%7B%22Time%22%3A1012%2C%22T%22%3A%22CI.Latency%22%2C%22FID%22%3A%22HP%22%2C%22Name%22%3A%22Image%22%2C%22TS%22%3A1502607362812%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F3A9658D9B10425D8D07E2A297F2F6E4&dmnchg=1; SRCHUSR=DOB=20170813; _SS=SID=215C402FD7CD6F4C05754AF2D6296E29&bIm=700700; _EDGE_S=F=1&SID=215C402FD7CD6F4C05754AF2D6296E29; _EDGE_V=1; MUID=2711A4E561C768B03E7FAE38602369E5; MUIDB=2711A4E561C768B03E7FAE38602369E5; SRCHHPGUSR=CW=0&CH=0&UTC=120&WTS=63638204161

                                         
                                         204.79.197.200
HTTP/1.1 204 OK
                                        
Cache-Control: no-store
X-MSEdge-Ref: Ref A: 953F2FB6F8F14E4C8C01EA000161153F Ref B: STOSCHEDGE0210 Ref C: 2017-08-13T06:56:04Z
Date: Sun, 13 Aug 2017 06:56:04 GMT


--- Additional Info ---