southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
192.124.249.61301 Moved Permanently 162 B URL HTTP/1.1 southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
IP 192.124.249.61:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2013/03/diy-z-palette-depotting.html HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Thu, 22 Sep 2022 14:42:04 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
X-Sucuri-ID: 19011
Location: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4382
Expires: Thu, 22 Sep 2022 15:55:06 GMT
Date: Thu, 22 Sep 2022 14:42:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 14:04:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uboSe8xidWeNMGQSpTFsOu3aWiwYYcybVfzzOhuptopJdFcq6xRy4g==
Age: 2263
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TwgUV50R7UPXoJW1ruoCwbyOCuhdvxbMxHgFW5ahbJssYe-UPDETtQ==
age: 36410
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 22 Sep 2022 14:03:22 GMT
Cache-Control: max-age=3600
Expires: Thu, 22 Sep 2022 14:05:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kQLa7Kg6WyfnlLQv5kU-7h7EQUz38zW8ul_DCNnIjgsdZpelcRyFCw==
Age: 2322
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3334
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:04 GMT
Last-Modified: Thu, 22 Sep 2022 13:46:30 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.89.17.198101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.17.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2D0mJBGPjeZUVUv08eLtdQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IuhbDW4Y7sxm9aiSlIKF7f0ZF8s=
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash de424c85b225196c5a35219b9e3ebd8e
85607bc7f8cd550eceab6a6c236b403ca91662f5
29fe2614f1d16a5e8c89f055ce08a45ea0d89e31f91b014e6cea52411a7902d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3959
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:05 GMT
Last-Modified: Thu, 22 Sep 2022 13:36:06 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 280
c0.wp.com/c/6.0.2/wp-includes/js/thickbox/thickbox.css
192.0.77.37200 OK 1.3 kB URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/thickbox/thickbox.css
IP 192.0.77.37:0
Hash 3e64608ff880b0fe64896f417b9a9c0e
e6e485d0856a977ce887395de718b17c2bf906e8
2b9cfa146cf1b32ce1bd789b7c2c6281adecc5e4496f2f5e110c0d27f1cc1462
GET /c/6.0.2/wp-includes/js/thickbox/thickbox.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 26 Oct 2020 02:25:09 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
secure.gravatar.com/js/gprofiles.js?ver=202238
192.0.73.2200 OK 7.7 kB URL HTTP/2 secure.gravatar.com/js/gprofiles.js?ver=202238
IP 192.0.73.2:0
File type ASCII text, with very long lines (24043), with no line terminators
Hash c396e2d1bb47f42d5554c86759384d8d
9cf5e22b002f0be7e05a6812bf94a3de3f83e11d
8037bb0b9856c04978c6d94f6f42179f22d4f3f01e2ee8a446c0301c3ef24cd6
GET /js/gprofiles.js?ver=202238 HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 11:48:47 GMT
etag: W/"6323111f-5deb"
content-encoding: br
expires: Thu, 29 Sep 2022 14:42:06 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2
i0.wp.com/southernbeautyguide.com/wp-content/uploads/2015/03/02_04_AF_Banners_SigmaPink2.jpg?fit=300%2C250&ssl=1
192.0.77.2200 OK 14 kB URL HTTP/2 i0.wp.com/southernbeautyguide.com/wp-content/uploads/2015/03/02_04_AF_Banners_SigmaPink2.jpg?fit=300%2C250&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b73c6531a4c8c548dae59e9289993cab
a8de0ac3b3998be8efcbe8e9eecab56241cc6bc8
ab485938a261b98d602900c65808eaf318b3f7900633464ac3a0619bdbe62753
GET /southernbeautyguide.com/wp-content/uploads/2015/03/02_04_AF_Banners_SigmaPink2.jpg?fit=300%2C250&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: image/webp
content-length: 14108
last-modified: Tue, 20 Sep 2022 17:40:03 GMT
expires: Fri, 20 Sep 2024 05:40:03 GMT
cache-control: public, max-age=63115200
link: <https://southernbeautyguide.com/wp-content/uploads/2015/03/02_04_AF_Banners_SigmaPink2.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ce011f212bafc94c"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/1.bp.blogspot.com/-EFRH1Glwf7s/UVLvJnimS6I/AAAAAAAABxw/XEQ1gn8eiSM/s400/2013-03-26_19-05-58_928.jpg?resize=225%2C400
192.0.77.2302 Found 138 B URL HTTP/2 i0.wp.com/1.bp.blogspot.com/-EFRH1Glwf7s/UVLvJnimS6I/AAAAAAAABxw/XEQ1gn8eiSM/s400/2013-03-26_19-05-58_928.jpg?resize=225%2C400
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /1.bp.blogspot.com/-EFRH1Glwf7s/UVLvJnimS6I/AAAAAAAABxw/XEQ1gn8eiSM/s400/2013-03-26_19-05-58_928.jpg?resize=225%2C400 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/html
content-length: 138
location: https://1.bp.blogspot.com/-EFRH1Glwf7s/UVLvJnimS6I/AAAAAAAABxw/XEQ1gn8eiSM/s400/2013-03-26_19-05-58_928.jpg
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/southernbeautyguide.com/wp-content/uploads/2015/03/NuMe-Banner2.jpg?w=300&ssl=1
192.0.77.2200 OK 6.6 kB URL HTTP/2 i0.wp.com/southernbeautyguide.com/wp-content/uploads/2015/03/NuMe-Banner2.jpg?w=300&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 256469c290cbda526ead8088acd6dd1d
b6b4fd9a7ef41a337e84d9a586ea5842d4a15a30
42a5b5f9577b66829d8983647e215606383ded8c63cc3e86d47e5562bf1a22ab
GET /southernbeautyguide.com/wp-content/uploads/2015/03/NuMe-Banner2.jpg?w=300&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: image/webp
content-length: 6570
last-modified: Tue, 20 Sep 2022 17:40:02 GMT
expires: Fri, 20 Sep 2024 05:40:02 GMT
cache-control: public, max-age=63115200
link: <https://southernbeautyguide.com/wp-content/uploads/2015/03/NuMe-Banner2.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8246af2c653676d4"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/southernbeautyguide.com/wp-content/uploads/2015/07/button.png?w=1100
192.0.77.2200 OK 93 kB URL HTTP/2 i0.wp.com/southernbeautyguide.com/wp-content/uploads/2015/07/button.png?w=1100
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a55b38d6777ecdf2d3bf77e3f0c106dd
e9e1a47b75714021afbb43d91507602d53165a4c
53b5bd3eb9875ec5318d867efcafa115e9f61aa1300aab8953c7ba27e6166aed
GET /southernbeautyguide.com/wp-content/uploads/2015/07/button.png?w=1100 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: image/webp
content-length: 92848
last-modified: Tue, 20 Sep 2022 17:40:03 GMT
expires: Fri, 20 Sep 2024 05:40:03 GMT
cache-control: public, max-age=63115200
link: <http://southernbeautyguide.com/wp-content/uploads/2015/07/button.png>; rel="canonical"
x-content-type-options: nosniff
etag: "f458347ae0263886"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/southernbeautyguide.com/wp-content/uploads/2020/10/E9D2EE21-F5CC-4756-B4AF-0F4BA4E191B3.png?w=1100
192.0.77.2200 OK 217 kB URL HTTP/2 i0.wp.com/southernbeautyguide.com/wp-content/uploads/2020/10/E9D2EE21-F5CC-4756-B4AF-0F4BA4E191B3.png?w=1100
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 217 kB (216632 bytes)
Hash 65b4441c6bdb97c552dff6a31d923895
b28fe1f1055033074ff8e5b6f7c7c83239d87685
5a19ec99284eb1c968001d67eaeb895776cd36d2445ada01fdbdd10c43683cdb
GET /southernbeautyguide.com/wp-content/uploads/2020/10/E9D2EE21-F5CC-4756-B4AF-0F4BA4E191B3.png?w=1100 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: image/webp
content-length: 216632
last-modified: Tue, 20 Sep 2022 17:40:02 GMT
expires: Fri, 20 Sep 2024 05:40:02 GMT
cache-control: public, max-age=63115200
link: <http://southernbeautyguide.com/wp-content/uploads/2020/10/E9D2EE21-F5CC-4756-B4AF-0F4BA4E191B3.png>; rel="canonical"
x-content-type-options: nosniff
etag: "3a6618057a71d3ac"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.wp.com/e-202238.js
192.0.76.3200 OK 3.5 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash f16141467389f90edfc300d4f998855d
a0b8698001fb71381ada374969890830032f12b8
dae3e34c3b6e4d2a11f24fb891572b38f3e9bb854bdd76b9132e74c1fe6ec120
GET /e-202238.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 11 Sep 2023 07:31:45 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
192.124.249.61200 OK 3.2 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
IP 192.124.249.61:0
File type ASCII text, with very long lines (24504)
Hash 7500aa891fde99769b9ad08f92333b56
d67e0f4b55581137d629cf6fb9f97e7a9bb89a6e
c8d2a4397020d5ef0bf9f4b9f5212825c1f40df4cfa1722412614f173dd8ffb0
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 3200
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Aug 2022 19:58:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/genesis-simple-share/assets/css/share.min.css?ver=0.1.0
192.124.249.61200 OK 1.5 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/genesis-simple-share/assets/css/share.min.css?ver=0.1.0
IP 192.124.249.61:0
File type Unicode text, UTF-8 text, with very long lines (10161)
Hash 806e0021ad1dfcd453d3401316a3ee22
580b7024141f7092d62928470ccaf4ec4ae1ea5e
de7483402fca892e850a5778385a35126939a27f6ff5ef99f1e3eb66369d204a
GET /wp-content/plugins/genesis-simple-share/assets/css/share.min.css?ver=0.1.0 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 1518
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:33:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/meal-planner-pro/Lato.css?ver=6.0.2
192.124.249.61200 OK 306 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/meal-planner-pro/Lato.css?ver=6.0.2
IP 192.124.249.61:0
Hash 6c4406f6bb76943dc93838497ed49625
3ccce0332a133393726cf679a719e4b64eb1cda8
5b366e6a1086dd037a103dcdd14af5279701e213a8f21e22dbcd41c46a2cf33f
GET /wp-content/plugins/meal-planner-pro/Lato.css?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 306
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 01 Aug 2019 13:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/genesis-simple-share/assets/css/genericons.min.css?ver=0.1.0
192.124.249.61200 OK 11 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/genesis-simple-share/assets/css/genericons.min.css?ver=0.1.0
IP 192.124.249.61:0
File type ASCII text, with very long lines (15127)
Hash 079a2786c7e97e81e6a68300878e4544
9b6a482512736137a6d868ccbdbde1c527c758a5
ed78a725c67b404bb46a3bac0b6f28a487e1c639594d463c280138db93b27d48
GET /wp-content/plugins/genesis-simple-share/assets/css/genericons.min.css?ver=0.1.0 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 11260
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:33:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/tweetthis/assets/css/public-main.css?ver=6.0.2
192.124.249.61200 OK 534 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/tweetthis/assets/css/public-main.css?ver=6.0.2
IP 192.124.249.61:0
File type ASCII text, with CRLF line terminators
Hash f8add84c514fd502133362a794740f45
203053b817aa19f9a3a946519123c2410185416c
3fdf4ad40d589317a4d36495e4bb77e5e324544b8e2edbba600551900d7b83b0
GET /wp-content/plugins/tweetthis/assets/css/public-main.css?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 534
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 27 Oct 2015 13:51:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.2/_inc/build/sharedaddy/sharing.min.js
192.0.77.37200 OK 3.1 kB URL HTTP/2 c0.wp.com/p/jetpack/11.2/_inc/build/sharedaddy/sharing.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (8517), with no line terminators
Hash c5dff7aa96ba618b36b966a90e8da9c9
6d5837cd5f81cab6b9a47c96edb99885941be2bd
8f5c6171530f4400c883964ae7bcf3e11f4bc293e3f6382b95101323b4bbfd96
GET /p/jetpack/11.2/_inc/build/sharedaddy/sharing.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 10:02:49 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 7bc4d6a3ccad08c83d0f84aa32562f60
ac908443eea33b5ceeddf58196b4a3ca2e7c15a5
d801df05afd461f42537bf7ca50f40a27db4abaf1f9431e11ebd210104f56fda
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 14:42:06 GMT
Last-Modified: Thu, 22 Sep 2022 14:32:43 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wFE4CT4XNQB0gKSQNlTQIhljdDc345oYPFuBa1eKFaizyuInq1fb6w==
Age: 564
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 3298c9d0f91ce5f263a4288f2f5eaf34
e81662bc7ff8c1640f5979374d3d08d3106dc240
a31e538b97cf3534b1fd41d3fa463838ba1b13b1f0f7f0ea44fbde8a989e6894
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 14:42:06 GMT
Last-Modified: Thu, 22 Sep 2022 13:14:50 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WKB5y_sf4uk-RQLkL6CbXJ5IV8no9eCkTN0gRuSkjogweA8QecnEeQ==
Age: 5236
southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/style.css?ver=1.0.0
192.124.249.61200 OK 15 kB URL HTTP/2 southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/style.css?ver=1.0.0
IP 192.124.249.61:0
Hash 0169212037104b029fdfc565083d1250
02ca6673c267c8b0bd82e1338a3791d4e33f0391
d69b6db03f6e8a593634d0ed695ff19ca6b96760e5a35adb7c2c00091060dbfd
GET /wp-content/themes/vivienne.2.2.0/style.css?ver=1.0.0 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 14882
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:27:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/widget-countdown/includes/gutenberg/style.css?ver=6.0.2
192.124.249.61200 OK 1.2 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/widget-countdown/includes/gutenberg/style.css?ver=6.0.2
IP 192.124.249.61:0
File type ASCII text, with CRLF line terminators
Hash 84b666a09a98179b543022703cba16c6
e731af2626ad7c80fb8adc4548d9fbd18fbfed64
c0f439100fe48ab1e59653f64e7eee2560093d04179419d564b5f67da84d44f7
GET /wp-content/plugins/widget-countdown/includes/gutenberg/style.css?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 1198
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 01 Jun 2022 01:10:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe-std.css?ver=6.0.2
192.124.249.61200 OK 1.3 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe-std.css?ver=6.0.2
IP 192.124.249.61:0
Hash 9959a20a7f8f1deb64be84c11457cce8
1d24abcf57ffaf5643d0f8ea154d95459a36cb0d
199d6052aa8d0bd54c24f3fa55cc582049355b87d45ee184ce3513d7260f3f33
GET /wp-content/plugins/meal-planner-pro/mpprecipe-std.css?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 1349
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 01 Aug 2019 13:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe-common.css?v=20180607&ver=6.0.2
192.124.249.61200 OK 4.5 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe-common.css?v=20180607&ver=6.0.2
IP 192.124.249.61:0
File type assembler source, ASCII text
Hash 3587a3f6b529bd0d7d64c975e01d2557
36ef7737643046ab014f4e031d0bed53b3755dbf
c50b0d0f903538d529548d6bdfbe51774038e338cb24f9ce1158c0bc022c4505
GET /wp-content/plugins/meal-planner-pro/mpprecipe-common.css?v=20180607&ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 4469
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 01 Aug 2019 13:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe-minimal-nutrition.css?ver=6.0.2
192.124.249.61200 OK 710 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe-minimal-nutrition.css?ver=6.0.2
IP 192.124.249.61:0
Hash 13119e143f5a8142c78ff66459ee3816
c4ad03d2cf6dda0aa6714757e80af310c57cc7e4
ec96c7feb4973240d6dde9b38f5ab4bdc5aae76ec2875f14f738280362321487
GET /wp-content/plugins/meal-planner-pro/mpprecipe-minimal-nutrition.css?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 710
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 01 Aug 2019 13:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/tweetthis/assets/css/themes/light.css?ver=6.0.2
192.124.249.61200 OK 299 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/tweetthis/assets/css/themes/light.css?ver=6.0.2
IP 192.124.249.61:0
File type ASCII text, with CRLF line terminators
Hash f537f43ffb3b80fc35fff12589f69818
f93cb07c6279738e1fb5a74116a284b40883542f
4430389cc24c689f668c5c3f5076dc5703a6907bf2522e92d5743bea92820493
GET /wp-content/plugins/tweetthis/assets/css/themes/light.css?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 299
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 27 Oct 2015 13:51:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/genesis-responsive-slider/assets/style.css?ver=1.0.1
192.124.249.61200 OK 1.3 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/genesis-responsive-slider/assets/style.css?ver=1.0.1
IP 192.124.249.61:0
Hash ed2c3cc4e4c358f61d81ab11e8b68d23
81a6123086cc988785073d7d7a0341883315e7bf
36efb25f51240a4cc90f781c32a9cdc5b4efa6a7c8e049be45d161e52588bb7a
GET /wp-content/plugins/genesis-responsive-slider/assets/style.css?ver=1.0.1 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 1306
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 14 Aug 2019 12:59:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2
192.124.249.61200 OK 358 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2
IP 192.124.249.61:0
Hash 6df30f43e3e45c727869c3e031a1613a
504120033c0c12f149affd281b86d0133b4dd601
3c8f723cd0df180830d1b634004f7388c9d13aa8e9573c877d1378a736c4119b
GET /wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 358
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Aug 2022 19:58:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/genesis-simple-share/assets/js/sharrre/jquery.sharrre.min.js?ver=0.1.0
192.124.249.61200 OK 4.1 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/genesis-simple-share/assets/js/sharrre/jquery.sharrre.min.js?ver=0.1.0
IP 192.124.249.61:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (16200)
Hash dbe2d6ce39a89c7030f7295c53da8c91
859fef5856b8fb965c0c19890b1ad5c4fd801a4f
5ed2ff1c09d1b9825d13962b5c52bf8241a831256bcb2763538633a428d2ca3b
GET /wp-content/plugins/genesis-simple-share/assets/js/sharrre/jquery.sharrre.min.js?ver=0.1.0 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 4134
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:33:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe_print.js?ver=6.0.2
192.124.249.61200 OK 1.1 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe_print.js?ver=6.0.2
IP 192.124.249.61:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6f0b1f363d02f41795bc457c253c1f06
1e43707eb865114b1aa598cc2d102609125d227f
c7e39bff2937c923cff59530cde90ca4d55921efbd6ddd41fa6e9e2b40de263c
GET /wp-content/plugins/meal-planner-pro/mpprecipe_print.js?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 1069
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 01 Aug 2019 13:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe.js?ver=6.0.2
192.124.249.61200 OK 239 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/meal-planner-pro/mpprecipe.js?ver=6.0.2
IP 192.124.249.61:0
Hash 70e8c6b7680f199d0843624ad724cb0b
0aa9f32343ada23c79473644d8ac56347a1b12c5
fd5ab49887a6c6d28c5e2dfc4efafcc189b1fd2557c2a6d9868ee0bcc9210a4d
GET /wp-content/plugins/meal-planner-pro/mpprecipe.js?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 239
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 01 Aug 2019 13:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be78f43958ca8916278160bede4dcfb8
612e999e61dc5cc822d48b7851bf27028ed19aa7
0004faba03f5c9a9672d68917bded7482cad5f8ab7340c87c7f92ebd8388bb23
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0004FABA03F5C9A9672D68917BDED7482CAD5F8AB7340C87C7F92EBD8388BB23"
Last-Modified: Wed, 21 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6817
Expires: Thu, 22 Sep 2022 16:35:43 GMT
Date: Thu, 22 Sep 2022 14:42:06 GMT
Connection: keep-alive
southernbeautyguide.com/wp-content/plugins/tweetthis/assets/js/tweet-this-box.js?ver=6.0.2
192.124.249.61200 OK 299 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/tweetthis/assets/js/tweet-this-box.js?ver=6.0.2
IP 192.124.249.61:0
File type ASCII text, with CRLF line terminators
Hash 0c0b23297c921fc79a4d0c2a67f69bff
93427c2888af2aa1232cac0b282845625e3e083d
cd14e3c72c770d31891ec1d940343ffba7e2c60ef37b7d859259171763ce5fb2
GET /wp-content/plugins/tweetthis/assets/js/tweet-this-box.js?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 299
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 27 Oct 2015 13:51:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/js/global.js?ver=1.0.0
192.124.249.61200 OK 1.0 kB URL HTTP/2 southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/js/global.js?ver=1.0.0
IP 192.124.249.61:0
Hash ad7c305324d931d9e0ff738b486d5ffb
703780d25c5a73924a9e6742f04583d33817acbc
505437efecd46218793cea7df178aa896aa18140cca7a2db410b31e3a3744370
GET /wp-content/themes/vivienne.2.2.0/js/global.js?ver=1.0.0 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 1032
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:27:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
192.124.249.61200 OK 4.6 kB URL HTTP/2 southernbeautyguide.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 192.124.249.61:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 4619
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 01 Jun 2022 01:18:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/instagram-feed/img/placeholder.png
192.124.249.61200 OK 176 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/instagram-feed/img/placeholder.png
IP 192.124.249.61:0
File type PNG image data, 1000 x 560, 1-bit colormap, non-interlaced\012- data
Hash a5443c5bb9bd40f1b1e6652eedce9925
aefb6c761d953a69c8b7ee7d98cad00545d74364
f623564c53c2e08780c064012cfbdbde0a80ee56816f4d5d3d52c46ed285cb95
GET /wp-content/plugins/instagram-feed/img/placeholder.png HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: image/png
content-length: 176
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Aug 2022 19:58:31 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/widget-countdown/includes/style/style.css?ver=6.0.2
192.124.249.61200 OK 1.2 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/widget-countdown/includes/style/style.css?ver=6.0.2
IP 192.124.249.61:0
File type ASCII text, with CRLF line terminators
Hash 52802777d8fd7e47e16690de50a1b42d
3dc33110cb7f31724650644f1ab1c64636feaa6e
c4a4a062b55678a4c8986e5b93c5e517f7ad6d8e70e59f6ddc15649018809951
GET /wp-content/plugins/widget-countdown/includes/style/style.css?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 1211
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 01 Jun 2022 01:10:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.22
192.124.249.61200 OK 354 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.22
IP 192.124.249.61:0
Hash 263bab39ccd872b5111d66117c619111
45eae172eb3db57ccbc468baf4f79f3e77fe094a
bccea4212d531b1df171240e3e109cbe784e2355620bc7380b19b84cc30aa54c
GET /wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.22 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 354
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 29 May 2021 20:45:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
s3.amazonaws.com/cgc-badge-v2/common.js
52.217.94.214200 OK 0 B URL HTTP/1.1 s3.amazonaws.com/cgc-badge-v2/common.js
IP 52.217.94.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgc-badge-v2/common.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: KpcKmpEJ5jGj1/UvM4kBphXSy0bd191c3GmCMZp98P1cCawr3XeHOqfu+fRTZ+hhJW/T+Uff4PM=
x-amz-request-id: GPKB728XCM3XG577
Date: Thu, 22 Sep 2022 14:42:07 GMT
Last-Modified: Fri, 07 May 2021 06:33:05 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 0
s3.amazonaws.com/cgc-badge-v2/load.min.js
52.217.94.214200 OK 0 B URL HTTP/1.1 s3.amazonaws.com/cgc-badge-v2/load.min.js
IP 52.217.94.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgc-badge-v2/load.min.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: uh/rwEaRASK6KIawhbHcjo28VLUauPg4sEX9l5Eaqke9g7up79zMow4gSjcI+kNPSGi9qmmMUAk=
x-amz-request-id: GPKE3XCGWNGP30MC
Date: Thu, 22 Sep 2022 14:42:07 GMT
Last-Modified: Fri, 07 May 2021 06:33:05 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 0
southernbeautyguide.com/wp-content/plugins/disqus-comment-system/public/js/comment_embed.js?ver=3.0.22
192.124.249.61200 OK 442 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/disqus-comment-system/public/js/comment_embed.js?ver=3.0.22
IP 192.124.249.61:0
Hash 69218108361b555da7085ec054c8841c
6dd3d464357aed6c15430d29c72d55208794130b
da4d46c2332955bb939c042ab4bd207c8788a8a8a14216972e74c6a5485e3417
GET /wp-content/plugins/disqus-comment-system/public/js/comment_embed.js?ver=3.0.22 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 442
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 29 May 2021 20:45:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/js/offscreen.js?ver=1.0.0
192.124.249.61200 OK 432 B URL HTTP/2 southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/js/offscreen.js?ver=1.0.0
IP 192.124.249.61:0
Hash 8e215315414f55df9486d5f331427a3d
bf3aae8b0bf57c1900dc92f438404459328ffcc4
19fd681c2441d4d6bae0e34eba6b90be7209eac0cf67d83b02890431b2c0a2b3
GET /wp-content/themes/vivienne.2.2.0/js/offscreen.js?ver=1.0.0 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 432
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:27:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/js/responsive-menu.js?ver=1.0.0
192.124.249.61200 OK 296 B URL HTTP/2 southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/js/responsive-menu.js?ver=1.0.0
IP 192.124.249.61:0
Hash bf6fd435267dee3f2dee31f46c1a7c9f
b6bfcd69c101e91ba2050a466daf383188f86b89
2da866748565eff4c95c5a2c1b7d4a662da4ffa3266779ba087c3d3173f86010
GET /wp-content/themes/vivienne.2.2.0/js/responsive-menu.js?ver=1.0.0 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 296
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:27:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/genesis-responsive-slider/assets/js/jquery.flexslider.js?ver=1.0.1
192.124.249.61200 OK 5.4 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/genesis-responsive-slider/assets/js/jquery.flexslider.js?ver=1.0.1
IP 192.124.249.61:0
Hash 31d07e13d6efdc678a03397823ebfda1
15db15e3076b22b73271644950670cda613ff298
098e039780ac027f636154a0c1a05ee74eebf0e9574e76f5a3e89407dce5183f
GET /wp-content/plugins/genesis-responsive-slider/assets/js/jquery.flexslider.js?ver=1.0.1 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 5419
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 14 Aug 2019 12:59:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/widget-countdown/includes/javascript/front_end_js.js?ver=6.0.2
192.124.249.61200 OK 616 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/widget-countdown/includes/javascript/front_end_js.js?ver=6.0.2
IP 192.124.249.61:0
File type ASCII text, with CRLF line terminators
Hash 23a7582e060ab7d40d2a6e16428dc3e6
e23732d6424d719f3fcded9cb8b01f4d7c642def
8317748ca7113d76b822cdba5a0dfd99bbf677bf1938bb2b46e3d7ab786c1c15
GET /wp-content/plugins/widget-countdown/includes/javascript/front_end_js.js?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 616
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 01 Jun 2022 01:10:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6
192.124.249.61200 OK 7.3 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6
IP 192.124.249.61:0
File type ASCII text, with very long lines (27481)
Hash 420e43844a306c816e5f51a77b2cb35f
63e58bf7e06f8e01670cac8ce13e76fd62b5c035
94e9f223c99a258955fd78a22168a27cef5fde29574c5ad26ef9609649e9b859
GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 7263
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Aug 2022 19:58:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/feedburner-form/control/fbstyle.css?ver=6.0.2
192.124.249.61200 OK 570 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/feedburner-form/control/fbstyle.css?ver=6.0.2
IP 192.124.249.61:0
File type ASCII text, with CRLF line terminators
Hash dd1aafd416d1c31c1f32266316f5ae32
a5b86b8ecf329e60370cc9d65bd48df2a172b83f
71513c7c97add6a111388822059d500ec7a89d7783e3716747338fde2c7b6f3c
GET /wp-content/plugins/feedburner-form/control/fbstyle.css?ver=6.0.2 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 570
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 17 Nov 2015 13:55:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash aab8c60858c0f7a9d58a4a3571537217
17baa0bbddcbd40094f3c37d527a7beeb84df196
9d2c26c14460383fb1c06675c53d4143ab5d05ac7aa7a9ac2fc19e766463ae92
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 22 Sep 2022 14:42:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 21 Sep 2022 23:35:05 GMT
Expires: Thu, 22 Sep 2022 23:35:05 GMT
ETag: "17baa0bbddcbd40094f3c37d527a7beeb84df196"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7645
Expires: Thu, 22 Sep 2022 16:49:31 GMT
Date: Thu, 22 Sep 2022 14:42:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7645
Expires: Thu, 22 Sep 2022 16:49:31 GMT
Date: Thu, 22 Sep 2022 14:42:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7645
Expires: Thu, 22 Sep 2022 16:49:31 GMT
Date: Thu, 22 Sep 2022 14:42:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7645
Expires: Thu, 22 Sep 2022 16:49:31 GMT
Date: Thu, 22 Sep 2022 14:42:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7645
Expires: Thu, 22 Sep 2022 16:49:31 GMT
Date: Thu, 22 Sep 2022 14:42:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5edcd9aee78a6cacc9241b47cbce598
f95b843029e84dbb188427a8c2ff8c9f32740465
6a56c3d0eb1d641e565d3d7d31b42be03bdad30beb20b994ffc9a6f2aaceee1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5650
x-amzn-requestid: 41ceb886-c038-4ba0-9e3a-a27879cf48ce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwjFVjoAMFWNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84d0-3f4f6a367c893c7a0669dffe;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: d8Kelwi2OY0jt17q80szh8-ErN3ZQM1hhl3HZeNQvlKijygQIJtNww==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:16:00 GMT
etag: "f95b843029e84dbb188427a8c2ff8c9f32740465"
content-type: image/jpeg
age: 59166
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hp-WIGb9M8tEmNGOVjx6UQKx9E4-1oJmka0a6seG7inahqYByPmRAg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 61664
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c92e76-c63f-4c49-a4f1-56d030e97e10.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c92e76-c63f-4c49-a4f1-56d030e97e10.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37687ec8382ef481897d1e65bf14010a
6ce495268093b256875ec1c4d6a05fc1f3d25446
24cc6f8715bb5b0b8a27a3f40831f9fed6cc4c5a882622633e1865dca6e50531
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c92e76-c63f-4c49-a4f1-56d030e97e10.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3372
x-amzn-requestid: 10d24c22-0b3d-402b-9a10-6cbfc9a699a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG5QHJRoAMFaPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab83b-37ba740c7eba56b30e2ea528;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:39 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: HGsqwxMmVX7VxodarcMjEsguuw20r6NIWS76MCixRztKziDsR8rVCA==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 02:13:50 GMT
age: 44896
etag: "6ce495268093b256875ec1c4d6a05fc1f3d25446"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2922a3a3-ae10-495b-ac9a-220b799dc3d4.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2922a3a3-ae10-495b-ac9a-220b799dc3d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29912dedc89a817a56f47d9e4efa9e76
a092fbc76b84bda659d7ae0b0d9aedd476927f9b
090f90c3bdffdd666ff1dca07aadb1147b315d6e37e4d6ac1b320730b772657f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2922a3a3-ae10-495b-ac9a-220b799dc3d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7920
x-amzn-requestid: 9532b1cd-deb5-4886-b57c-acd7bbd83dc9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrODcHgCoAMFtiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6327907c-763d15bb1bc85124029187f9;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:41:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: czfTVKVsVVojtjK5CHmoRkgcJyZ_3l-AomR74mkuLL6LDsy5wabHFw==
via: 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 14:36:12 GMT
age: 354
etag: "a092fbc76b84bda659d7ae0b0d9aedd476927f9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5453bf0-e297-4ace-a174-b28be2bb7e8d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5453bf0-e297-4ace-a174-b28be2bb7e8d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 298be26294efc965abc5707a84df8a0a
5ee6c32afd92810ae61a791c059928e33148bb0c
d9b5fe88c8e03f6a6a64e360015080bca00f7fb147515a137447832bacc2e6e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5453bf0-e297-4ace-a174-b28be2bb7e8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11645
x-amzn-requestid: 0ae5c056-6d78-4c37-8e18-b9abfe1e1f47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG34FKIIAMF6Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab832-59fbd91527ea400d333ddc41;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Q7rg9YqHScSwWXfS96bSI5Mb0mSYQ-jbShb7wddPcG51nhn0_8DIJA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 07:14:13 GMT
age: 26873
etag: "5ee6c32afd92810ae61a791c059928e33148bb0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.2/modules/wpgroho.js
192.0.77.37200 OK 12 kB URL HTTP/2 c0.wp.com/p/jetpack/11.2/modules/wpgroho.js
IP 192.0.77.37:0
Hash 611ffb7ea66d12ed522d4808bfaed8fd
8344853d20ac87cc1967c137936a22cab5ff4baf
9ecf97287c8cb1c261d96176af50537937509306197c3b2b5403f46ceeccf4d3
GET /p/jetpack/11.2/modules/wpgroho.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 28 Jul 2020 17:06:48 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.2/_inc/build/photon/photon.min.js
192.0.77.37200 OK 3.3 kB URL HTTP/2 c0.wp.com/p/jetpack/11.2/_inc/build/photon/photon.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (685), with no line terminators
Hash b827490c416973246429bc76e9d851ad
1d78c1fb8882432af2a3b938c33b87d6a145f13f
5d9f256b5cba136f89bc4ba637dcfaaf6d7582de2b0d0df743d2866dbe129e3b
GET /p/jetpack/11.2/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/2016/08/snapcodes.png
192.124.249.61200 OK 50 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/2016/08/snapcodes.png
IP 192.124.249.61:0
File type PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Hash 976f8490c548850e6b480dbc8843712d
0840a76418c1be745d57da9003476f6f6bd40e09
174f7ac3ec8b2e23fccc8f10bd06f30ab30968dd0267981d4212f0c9426bc8f1
GET /wp-content/uploads/2016/08/snapcodes.png HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: image/png
content-length: 49923
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 31 Aug 2016 12:59:23 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
i0.wp.com/southernbeautyguide.com/wp-content/uploads/2015/07/sig3.png?resize=175%2C57
192.0.77.2200 OK 1.2 kB URL HTTP/2 i0.wp.com/southernbeautyguide.com/wp-content/uploads/2015/07/sig3.png?resize=175%2C57
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bdeff7cc07d6cc402a5b6b29fee8b83e
7ff0facdc42191ae2e2401b4028a1b4763430f3f
2e480aa19e249e2b81084c5997fdb4c8159ff2f17dcf5db4c50a83a8fd6fd956
GET /southernbeautyguide.com/wp-content/uploads/2015/07/sig3.png?resize=175%2C57 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: image/webp
content-length: 1234
last-modified: Thu, 22 Sep 2022 14:42:06 GMT
expires: Sun, 22 Sep 2024 02:42:06 GMT
cache-control: public, max-age=63115200
link: <http://southernbeautyguide.com/wp-content/uploads/2015/07/sig3.png>; rel="canonical"
x-content-type-options: nosniff
etag: "c7139ecb49cfdfad"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/icons.css
192.124.249.61200 OK 13 kB URL HTTP/2 southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/icons.css
IP 192.124.249.61:0
File type Unicode text, UTF-8 text, with very long lines (12039)
Hash 35273f005a64096bf055c2e000c70705
ede991644f0d11fabf035c6b0b2b7c3bd0b5e2aa
83bb96d0347e1bf1988555b8f19bc80d4e1772efe3eb5ef15d34e303a825011d
GET /wp-content/themes/vivienne.2.2.0/icons.css HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/style.css?ver=1.0.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css
content-length: 13057
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:27:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
1.bp.blogspot.com/-EFRH1Glwf7s/UVLvJnimS6I/AAAAAAAABxw/XEQ1gn8eiSM/s400/2013-03-26_19-05-58_928.jpg
142.250.74.161200 OK 46 kB URL HTTP/2 1.bp.blogspot.com/-EFRH1Glwf7s/UVLvJnimS6I/AAAAAAAABxw/XEQ1gn8eiSM/s400/2013-03-26_19-05-58_928.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 226x400, components 3\012- data
Hash 50ce80411b38d5d8919f00fdc86e3017
a2123389997b81d8e483679033aabad7b02f3b52
0d0e84a7ffdeb0edf587c402f818e6654edb323bf0b0d2dc1f5cab8728ff93ab
GET /-EFRH1Glwf7s/UVLvJnimS6I/AAAAAAAABxw/XEQ1gn8eiSM/s400/2013-03-26_19-05-58_928.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://southernbeautyguide.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v71d"
expires: Fri, 23 Sep 2022 14:42:06 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2013-03-26_19-05-58_928.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 22 Sep 2022 14:42:06 GMT
server: fife
content-length: 45452
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15af330272b65861c93c7f989a284e90
e3cf4e4108bc8e68819f82722fb6ca11392cdb34
7ebccd17f3283cfcd086121a089c9de4699284acf5809695d7a364835518ec1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/linqia.ooh.li/badge/8d4191875120/linqia_1.png?w=1100&ssl=1
192.0.77.2200 OK 34 B URL HTTP/2 i0.wp.com/linqia.ooh.li/badge/8d4191875120/linqia_1.png?w=1100&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cda661faf5e60e281e5f56067e7909db
324a0323af79f3142387d4761198f9ace2d78b3d
86be52bdb7547413cafb3ed175a806a798c65de98b40849e0b974c47d187de65
GET /linqia.ooh.li/badge/8d4191875120/linqia_1.png?w=1100&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: image/webp
content-length: 34
last-modified: Thu, 22 Sep 2022 14:42:06 GMT
expires: Sun, 22 Sep 2024 02:42:06 GMT
cache-control: public, max-age=63115200
link: <https://linqia.ooh.li/badge/8d4191875120/linqia_1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "685cf9e3131a4534"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
linqia.ooh.li/badge/8d4191875120/linqia_1.png?jid=2083fbffdb85f2a1cde5b5cafe4b7812
35.153.191.230302 Found 67 B URL HTTP/2 linqia.ooh.li/badge/8d4191875120/linqia_1.png?jid=2083fbffdb85f2a1cde5b5cafe4b7812
IP 35.153.191.230:0
File type ASCII text, with no line terminators
Hash b12e690f9c6c35429f17f0e90ee0ed54
999891a59e9c669c260d64732615393487522a40
c918bfcf54b0c9c24d04d3310ad413dce4864038ae642bebf0e93fd66ef16f26
GET /badge/8d4191875120/linqia_1.png?jid=2083fbffdb85f2a1cde5b5cafe4b7812 HTTP/1.1
Host: linqia.ooh.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/html; charset=UTF-8
content-length: 67
location: https://linqia-frontend-cdn.internal.linqia.com/badges/linqia_1.png
server: Apache/2.4.25 (Debian)
expires: 0
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
set-cookie: lid=2083fbffdb85f2a1cde5b5cafe4b7812; Domain=.ooh.li; expires=Sat, 31 Dec 2050 00:00:00 GMT; Path=/
jid=2083fbffdb85f2a1cde5b5cafe4b7812; Domain=.ooh.li; expires=Sat, 31 Dec 2050 00:00:00 GMT; Path=/
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 76d864cfc049e2aae6e76c6b9938129b
7be00d318e3b4c471a3ff78649c43fb463d74e4d
e1bf1a5d98bed31391e289c0f111aaca5ed5c998a221465f7099f1323bd51c5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
linqia.ooh.li/linqia/8d4191875120?action=load&linqia_id=2083fbffdb85f2a1cde5b5cafe4b7812
35.153.191.230200 OK 91 B URL HTTP/2 linqia.ooh.li/linqia/8d4191875120?action=load&linqia_id=2083fbffdb85f2a1cde5b5cafe4b7812
IP 35.153.191.230:0
File type JSON data\012- , ASCII text
Hash 468f8ab6e9031ffad9eda0fde864d8a6
bb6fb8648a0c343fe1dc0d74d50bd100ef948a7b
ba82799d9020b9047dd6e53bda2d1dcc4459cc3884f185ef673dd97be9d6ab6a
GET /linqia/8d4191875120?action=load&linqia_id=2083fbffdb85f2a1cde5b5cafe4b7812 HTTP/1.1
Host: linqia.ooh.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/json
content-length: 91
server: Apache/2.4.25 (Debian)
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
content-encoding: gzip
expires: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-credentials: True
access-control-allow-origin: https://southernbeautyguide.com
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, withCredentials
X-Firefox-Spdy: h2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Hash b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 19:22:36 GMT
expires: Wed, 20 Sep 2023 19:22:36 GMT
cache-control: public, max-age=31536000
age: 155970
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/tag/js/gpt_mobile.js
142.250.74.98200 OK 28 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt_mobile.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (45174)
Hash 4be9a49019dd464267d562b344ed00d8
23630131b9a5a201283c78f4eb71cc51a828af5a
7b0464dc1d8b38afd6bae235e1e5c3df0ea1c370d231b40a64a80c418624c205
GET /tag/js/gpt_mobile.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27777
date: Thu, 22 Sep 2022 14:42:06 GMT
expires: Thu, 22 Sep 2022 14:42:06 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1341 / 632 of 1000 / last-modified: 1663844945"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/i1298.photobucket.com/albums/ag51/etagurl89/Chelsee_Sig_zps614d1549.png?w=100
192.0.77.2404 Not Found 536 B URL HTTP/2 i0.wp.com/i1298.photobucket.com/albums/ag51/etagurl89/Chelsee_Sig_zps614d1549.png?w=100
IP 192.0.77.2:0
Hash 1a24ca4c531fd2f543004abcf460cbdc
b2dfe825e81d2fea7fa7ecaa31794d1a5dd1ae17
8c8d9081ad64e3bc44454562add111e4b9ad97c9ab9dad8b03bd4d8f6108f0cb
GET /i1298.photobucket.com/albums/ag51/etagurl89/Chelsee_Sig_zps614d1549.png?w=100 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 1
X-Firefox-Spdy: h2
i0.wp.com/4.bp.blogspot.com/-k-KVsitASF8/UVLvKX2pi2I/AAAAAAAABx4/4zY3g3uvv6Y/s400/2013-03-26_19-06-25_620.jpg?resize=223%2C400
192.0.77.2302 Found 138 B URL HTTP/2 i0.wp.com/4.bp.blogspot.com/-k-KVsitASF8/UVLvKX2pi2I/AAAAAAAABx4/4zY3g3uvv6Y/s400/2013-03-26_19-06-25_620.jpg?resize=223%2C400
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /4.bp.blogspot.com/-k-KVsitASF8/UVLvKX2pi2I/AAAAAAAABx4/4zY3g3uvv6Y/s400/2013-03-26_19-06-25_620.jpg?resize=223%2C400 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/html
content-length: 138
location: https://4.bp.blogspot.com/-k-KVsitASF8/UVLvKX2pi2I/AAAAAAAABx4/4zY3g3uvv6Y/s400/2013-03-26_19-06-25_620.jpg
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:40:18 GMT
expires: Fri, 15 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 597708
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/cardo/v19/wlp_gwjKBV1pqhv43IE.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/cardo/v19/wlp_gwjKBV1pqhv43IE.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 14880, version 1.0\012- data
Hash c1570bbb1803261029ee01e99efb78c9
c3f95b0464f08458f80126f4f32201921559c442
f1346360729e77380edf8f17fa421b76452289ae1b5f4be290b19c4d204e9587
GET /s/cardo/v19/wlp_gwjKBV1pqhv43IE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14880
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:02:40 GMT
expires: Tue, 19 Sep 2023 20:02:40 GMT
cache-control: public, max-age=31536000
age: 239966
last-modified: Thu, 21 Apr 2022 17:05:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cardo/v19/wlpxgwjKBV1pqhv97IMx3A.woff2
142.250.74.163200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/cardo/v19/wlpxgwjKBV1pqhv97IMx3A.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18724, version 1.0\012- data
Hash 03846fd1ff535c1abbee5fb624297d50
93489fd28ee961d17301548affffeaef76b98079
845a35b5a38dba27a0ed97ee5044d9e40617809019ff843915a48d69e098b4b0
GET /s/cardo/v19/wlpxgwjKBV1pqhv97IMx3A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 00:08:38 GMT
expires: Sat, 16 Sep 2023 00:08:38 GMT
cache-control: public, max-age=31536000
age: 570808
last-modified: Thu, 21 Apr 2022 16:54:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15af330272b65861c93c7f989a284e90
e3cf4e4108bc8e68819f82722fb6ca11392cdb34
7ebccd17f3283cfcd086121a089c9de4699284acf5809695d7a364835518ec1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0
104.18.10.207200 OK 66 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0
IP 104.18.10.207:0
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash d95d6f5d5ab7cfefd09651800b69bd54
7d65e0227d0d7cdc1718119cd2a7dce0638f151c
199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
GET /font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: font/woff
content-length: 65452
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "d95d6f5d5ab7cfefd09651800b69bd54"
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 08/20/2022 02:30:41
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6d4536f7652ac876811d0ef9075a6656
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74ebce28d8630b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash c56b14302846265563a379425f57009b
5cba4052469f73f7d71578e83afad33696e1b40e
2499539c3a2734339be4b79c1fd1eee04e55ecd52bd3e299d15dc33a3789f212
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 14:42:06 GMT
Server: ECS (dcb/7EC8)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3b5U3D80AG2wvZa5Wy9QqAXGqDUzHRB1UDYTBdKZPGeO_961O8wC3Q==
linqia-frontend-cdn.internal.linqia.com/badges/linqia_1.png
54.230.111.36200 OK 68 B URL HTTP/2 linqia-frontend-cdn.internal.linqia.com/badges/linqia_1.png
IP 54.230.111.36:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /badges/linqia_1.png HTTP/1.1
Host: linqia-frontend-cdn.internal.linqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://southernbeautyguide.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 68
last-modified: Wed, 30 Jun 2021 22:45:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 05:43:18 GMT
etag: "e679fbd466a2d656f194a5da4fa083cd"
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1QcGgG7jr25QlmqsZhw6RKoPXjPK8j0nW4tYGUFsCQ1lsIzNlbRdmw==
age: 32360
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022091501.js
216.58.207.194200 OK 130 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2022091501.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (65439)
Size 130 kB (130101 bytes)
Hash 518502a3cccfc320db37d722fb22a51c
73e03578cf8693b6f4179c9789b9b79f3825a242
07067ac2edc0a0c1c5d0d5988895ba11d2efd6c8034bb287869678c4ef20807d
GET /gpt/pubads_impl_2022091501.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 130101
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 00:16:27 GMT
expires: Fri, 22 Sep 2023 00:16:27 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 15 Sep 2022 08:34:40 GMT
content-type: text/javascript
age: 51940
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
app.passionfruitads.com/a/a4293726fd463eff0c824638426b116c52ce6f9f.js
199.59.243.222200 OK 1.6 kB URL HTTP/2 app.passionfruitads.com/a/a4293726fd463eff0c824638426b116c52ce6f9f.js
IP 199.59.243.222:0
Hash b19de9955e1cc5db983289e53aed5974
89baa4c061c6a4b271b3611b3ce0d1cda2fbfbbf
caf2f80f235f7fbe500edb26b991a5e32136a68e9822e371536d268bfdf323fa
Analyzer Verdict Alert fortinet Malware
GET /a/a4293726fd463eff0c824638426b116c52ce6f9f.js HTTP/1.1
Host: app.passionfruitads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/html; charset=UTF-8
set-cookie: parking_session=2383ef36-96fd-bdc4-0b57-a63e128ca2d5; expires=Thu, 22-Sep-2022 14:57:06 GMT; Max-Age=900; path=/; HttpOnly
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_ao4dSzor7F9L0JMNhcTwLq03Std/ui+uRzb+UzMF0zIbqSe1bGomCax5HLVhfv1Dm21URhfG9C4VB8fHy+sSgg==
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
widget.bloglovin.com/assets/widget/loader.js
194.0.59.32301 Moved Permanently 0 B URL HTTP/1.1 widget.bloglovin.com/assets/widget/loader.js
IP 194.0.59.32:0
ASN #16150 Availo Networks AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/widget/loader.js HTTP/1.1
Host: widget.bloglovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 22 Sep 2022 14:42:12 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=60
X-Varnish: 650767746
Location: https://www.bloglovin.com/widget/js/loader.js
Cache-Control: no-cache, must-revalidate
Expires: Sat, 01 Jan 2001 00:13:37 GMT
www.bloglovin.com/widget/js/loader.js
194.0.59.32200 OK 3.9 kB URL HTTP/1.1 www.bloglovin.com/widget/js/loader.js
IP 194.0.59.32:0
ASN #16150 Availo Networks AB
File type Unicode text, UTF-8 text, with very long lines (311)
Hash bb591fd366625aee3b4595b682a8d1f4
7e6fc5859f16b87ba925f4f413ef29bfa36f68a3
00c4345c14d03a024dc791e2064e548ed19706a646c61d1b19789b6b7e1d0c09
GET /widget/js/loader.js HTTP/1.1
Host: www.bloglovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://southernbeautyguide.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:12 GMT
Content-Type: application/javascript
Content-Length: 3858
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Feb 2016 13:10:34 GMT
ETag: W/"56c7144a-30b0"
Content-Encoding: gzip
Vary: ,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding
Cache-Control: public, max-age=1800
X-Varnish: 651061569 652378794
Age: 1231
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 1196
bl-CDN-Provider: None
Accept-Ranges: bytes
i0.wp.com/i1298.photobucket.com/albums/ag51/etagurl89/Chelsee_Sig_zps614d1549.png?w=100
192.0.77.2404 Not Found 106 kB URL HTTP/2 i0.wp.com/i1298.photobucket.com/albums/ag51/etagurl89/Chelsee_Sig_zps614d1549.png?w=100
IP 192.0.77.2:0
Size 106 kB (106120 bytes)
Hash 5755ae11e0e6c43cef071b548d918e59
95ebcd8a36fd1a296b517f9c79128a69e4a254b2
30327eb1a65e0b1a55d551cbca316c1acc41fc49b6c317622a18f527de90f6e7
GET /i1298.photobucket.com/albums/ag51/etagurl89/Chelsee_Sig_zps614d1549.png?w=100 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/html; charset=utf-8
x-nc: HIT arn 1
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&j=1%3A11.2&blog=86487915&post=600&tz=-4&srv=southernbeautyguide.com&host=southernbeautyguide.com&ref=&fcp=2911&rand=0.4735172834059117
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A11.2&blog=86487915&post=600&tz=-4&srv=southernbeautyguide.com&host=southernbeautyguide.com&ref=&fcp=2911&rand=0.4735172834059117
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A11.2&blog=86487915&post=600&tz=-4&srv=southernbeautyguide.com&host=southernbeautyguide.com&ref=&fcp=2911&rand=0.4735172834059117 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:07 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.bloglovin.com/widget/js/widget-follow.js?v=1663857727157
194.0.59.32200 OK 1.4 kB URL HTTP/1.1 www.bloglovin.com/widget/js/widget-follow.js?v=1663857727157
IP 194.0.59.32:0
ASN #16150 Availo Networks AB
Hash 8350821dc093b7b23a322d757d6a3b58
23100fe4331e7dce15d83e0d135ca6cb265658f2
2ff7d6d5ec5eddc0fa651ed98bd081f32f8f7934342a703a54a0fbae38f278d0
GET /widget/js/widget-follow.js?v=1663857727157 HTTP/1.1
Host: www.bloglovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 30 Sep 2016 08:03:41 GMT
Vary: ,Accept-Encoding
Cache-Control: public, max-age=1800
ETag: W/"57ee1c5d-104b"
Content-Encoding: gzip
X-Varnish: 650767750
Age: 0
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: MISS
bl-CDN-Provider: None
Accept-Ranges: bytes
pixel.wp.com/g.gif?v=wpcom-no-pv&x_sharing-count-request=pinterest&r=0.775674928012596
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=wpcom-no-pv&x_sharing-count-request=pinterest&r=0.775674928012596
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=wpcom-no-pv&x_sharing-count-request=pinterest&r=0.775674928012596 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:07 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8e3f4750ff30d7d7bdfc6918e8d9adee
6fb78a6f7b1d43a96b69a6c8a516b0d2919215d3
76494c951ebe5ba7d9d762c8ea7353321a6d3a21388783727127c9f4cd32f687
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 14:42:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 07:31:17 GMT
Expires: Tue, 27 Sep 2022 07:31:16 GMT
Etag: "6fb78a6f7b1d43a96b69a6c8a516b0d2919215d3"
Cache-Control: max-age=405548,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ebce2d7ebd0b55-OSL
www.bloglovin.com/v2/widget/follow?id=4449141
194.0.59.32200 OK 2.5 kB URL HTTP/1.1 www.bloglovin.com/v2/widget/follow?id=4449141
IP 194.0.59.32:0
ASN #16150 Availo Networks AB
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3171)
Hash cd0efb616c278504e9c74080836062f5
0bc464a643c5432fc8168b43658bb23584505dce
ab2457496d90585ff055035a497023db026c27c7dd058de241dd6d85f59be5f7
GET /v2/widget/follow?id=4449141 HTTP/1.1
Host: www.bloglovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: bloglovin[session]=ses_id632c743fa35297.54183405143e5503350a3b7ae78da8df44ff64fad1bc7fcd8293e776982c40a2d527bc23acfcf5; expires=Thu, 20-Oct-2022 14:42:07 GMT; path=/; domain=.bloglovin.com; httponly
bloglovin-auth=eyJhbGciOiJSUzI1NiJ9.eyJ0eXBlIjoiYXBwIiwidXNlciI6MCwibGV2ZWwiOjAsImlkZW50aWZpZXIiOiI4MGM3OTI3ZjkyNWFlODVkM2I3NzQ4ZTRkNmQxN2IwZSIsInRoaXJkX3BhcnR5X2VtYWlsIjpudWxsLCJpYXQiOjE2NjM4NTc3MjcsImV4cCI6MTY2NjI3NjkyNywiYXBwIjoiaGZoczZ5Z29kZmRzdGFzZjVkZnM2NTVzZHNkZHNkIiwiYWRtaW5fYWNjb3VudCI6bnVsbH0.X5kcK3rS6_nIxuuoabACbxKwYEW9kR__0Jf_3PywJnA_U6J-JdJK9a8EC9Q3AapwY5Q0LhlekscMxTNIxokI_b8x95rpRpn8rXnNtQdRDz-qOd6_0G90I9_CeKj2DOpIF-AdlCxdnlnrT-SNSNSwTR68KIkZIeDKQA8GPqZvYYkb2ehZAI888g6ZYcw0VSGE4iWhBMenHtgYYtLsgH9KCFywnxODYD1VWjmXGYTUNcpkpNn7ztj9bqpHF_S8vi3QbK2wQIAzwmF2FYk4kuGpf5W34uIqj7Fjv-3GbJ8rfQZzZDtwsdIQeVp0xI8002dSw-iWCLriiL8rDANIPD8_Bunz_AQ6gatNb6gOtvjKvIzLEapbu9Ve7tGAArhRKA7dUxw0rgQP3LxnhOH-vd7G-uBmBLS0wKZQVWjFtGlxd5GVZhetUqMUVBoZ3OZPD268ZZT3CuU18nU3nCvo3Rze6RJr_vIsSkQOnDm6v_VgMNGdwTZZzGAH9H2TQ9oyfIzkWwYVGh8-osbnwJi1VDjk2suvENiP8NXc29UMGh6ELGoH_f1DrOYEmRcu-44gLpPZ4LZ0mUSt14mUorWQMsxb5sH2zxMiaqrpPbidLzkr6X-hshgViVSmAOThmIhbNXXjRstVIwxQMemyMhNdywVe4154ebJ4g1IT1SiQbi8jNus; expires=Mon, 17-Oct-2022 14:42:07 GMT; path=/; domain=.bloglovin.com; httponly
bloglovin[data]=%7B%22country%22%3A%22zz%22%2C%22version%22%3A1%7D; expires=Thu, 20-Oct-2022 14:42:07 GMT; path=/; domain=.bloglovin.com; httponly
bloglovin[page_type]=widget; expires=Thu, 20-Oct-2022 14:42:07 GMT; path=/; domain=.bloglovin.com; httponly
bloglovin[referrer_page_type]=unknown; expires=Thu, 20-Oct-2022 14:42:07 GMT; path=/; domain=.bloglovin.com; httponly
Vary: Accept-Encoding,Accept-Encoding
Content-Encoding: gzip
X-Varnish: 652318874
Age: 0
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: MISS
bl-CDN-Provider: None
Accept-Ranges: bytes
www.bloglovin.com/v2/widget/follow-btn?id=4449141
194.0.59.32200 OK 412 B URL HTTP/1.1 www.bloglovin.com/v2/widget/follow-btn?id=4449141
IP 194.0.59.32:0
ASN #16150 Availo Networks AB
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 80e4c25188b5d88628ca498259894bdb
9cf75b772d86fd4beca8117e5ee6e71ceceed28c
2a6b5f666876fa2a9bc4bb1616615ad3c1bc1074caf4e3e3eab9b1fa4d751ca8
GET /v2/widget/follow-btn?id=4449141 HTTP/1.1
Host: www.bloglovin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: bloglovin[session]=ses_id632c74414a92e0.16268083af488ed58fc060c25b1c75b1226a5784d5b19ef5ac402a4bd51f38a00b5dbabfcf4414; expires=Thu, 20-Oct-2022 14:42:09 GMT; path=/; domain=.bloglovin.com; httponly
bloglovin-auth=eyJhbGciOiJSUzI1NiJ9.eyJ0eXBlIjoiYXBwIiwidXNlciI6MCwibGV2ZWwiOjAsImlkZW50aWZpZXIiOiIzZDNmODI3YjJkOWY0NGI0MzY2MzhhMzIzODM5NjVmZSIsInRoaXJkX3BhcnR5X2VtYWlsIjpudWxsLCJpYXQiOjE2NjM4NTc3MjksImV4cCI6MTY2NjI3NjkyOSwiYXBwIjoiaGZoczZ5Z29kZmRzdGFzZjVkZnM2NTVzZHNkZHNkIiwiYWRtaW5fYWNjb3VudCI6bnVsbH0.KL9gVfq9OPkNnZx9TjtQp0QV-gYL6lkpdDMn3JXOlB0Y_sW0__Api73MFT6gwZMEcr50pxNv7pUpKA8tUB7uV4cB7VC8mOgFeyKpgpp_wtJ7Shz4ABDYK4E3_GuEYG4qD9iVFJho2J847Jbm1Tx_ac-3Mwsz-GLG6lfFTaTSQoLWdrUaJgmfZrJTuQTB5HLnMfjhNJlxrZOfKXowScv6Bbewp6o2gWYFHaamyl3BPfw7rHOWZKc7daw7bVfckN6HtSIl7E1KHiFhplkBbP77wIUk0a2fO1wbwDDp7gzTo7qh4vN8f5J9_srMdDi-Xod3B45e0Zgv9rNhCDVdnn5CxbYhSBz75xMwZqBY4q8jyjIqIUNm_8wiSCinjFn1e4ahXWYyqCESuXXhIGSH_B1r7x_aCG3J1mA0tw9ouLn-WVOlp0gwSc-GLUhw1B-xBMTGe4DBL1fnJ3y_pwvkWHWUizF5RJ6IhJ9vvbZhi_3evQgXVQxSof9L5wGN3mVDMwBrEUP9KQR1pnW4UNzeID9s_EhQI2uoRZKPUsv9wQSpzZ0K2-mLGZAIa67gvA2H-69QOl7IJff_Nr-5XzgI5SaefQ0Cx430ai7yHmvIpfWDWsHribuwi1KybkFMR9NycYeedeIsCZ1-OeZl68JvWptkuFC2PoSYH9HYx2A_OMfF3q8; expires=Mon, 17-Oct-2022 14:42:09 GMT; path=/; domain=.bloglovin.com; httponly
bloglovin[data]=%7B%22country%22%3A%22zz%22%2C%22version%22%3A1%7D; expires=Thu, 20-Oct-2022 14:42:09 GMT; path=/; domain=.bloglovin.com; httponly
bloglovin[page_type]=widget; expires=Thu, 20-Oct-2022 14:42:09 GMT; path=/; domain=.bloglovin.com; httponly
bloglovin[referrer_page_type]=unknown; expires=Thu, 20-Oct-2022 14:42:09 GMT; path=/; domain=.bloglovin.com; httponly
Vary: Accept-Encoding,Accept-Encoding
Content-Encoding: gzip
X-Varnish: 638975915
Age: 0
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: MISS
bl-CDN-Provider: None
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d41d5848f033ede1d475f6a19c5bc67
951fa9b619c9e5eb2a69f28f7f44ba68add7c914
7cafcea91b31fb5b00fb0616908369be545b5a3f2917cb3d649a9d379e4b8683
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7CAFCEA91B31FB5B00FB0616908369BE545B5A3F2917CB3D649A9D379E4B8683"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2385
Expires: Thu, 22 Sep 2022 15:21:52 GMT
Date: Thu, 22 Sep 2022 14:42:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d41d5848f033ede1d475f6a19c5bc67
951fa9b619c9e5eb2a69f28f7f44ba68add7c914
7cafcea91b31fb5b00fb0616908369be545b5a3f2917cb3d649a9d379e4b8683
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7CAFCEA91B31FB5B00FB0616908369BE545B5A3F2917CB3D649A9D379E4B8683"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2385
Expires: Thu, 22 Sep 2022 15:21:52 GMT
Date: Thu, 22 Sep 2022 14:42:07 GMT
Connection: keep-alive
static.blovcdn.com/styles/v2/web/widget-follow-4e020e7.css
194.0.59.42200 OK 899 B URL HTTP/1.1 static.blovcdn.com/styles/v2/web/widget-follow-4e020e7.css
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type ASCII text, with very long lines (2336)
Hash ea7176f7acdadfd32ed3372783eca7b4
8f63250e84a0ee3571055a07759aee71971773f4
f9a46ec39760484ea7998f08fc1bf48b80b9a3252707c251b743821c19b3e0f7
GET /styles/v2/web/widget-follow-4e020e7.css HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bloglovin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: text/css
Content-Length: 899
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Aug 2022 11:01:15 GMT
ETag: "62ff6d7b-921"
Expires: Sat, 22 Oct 2022 07:23:57 GMT
Content-Encoding: gzip
Vary: Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding
Cache-Control: public, max-age=86400
X-Varnish: 651380258 646018293
Age: 26290
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 12216
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.blovcdn.com/scripts/v2/web/widget-signup.js?v=bf2906f
194.0.59.42200 OK 2.3 kB URL HTTP/1.1 static.blovcdn.com/scripts/v2/web/widget-signup.js?v=bf2906f
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type ASCII text, with very long lines (6230), with no line terminators
Hash 813fda6a6cc597d1b84e9889c081c31a
e9613f8e7ad0f9a3a78dc5460c3a4676c6deab92
69aa6b3927a17835466920ebfdc3953758956205486de68804a11187191c5dac
GET /scripts/v2/web/widget-signup.js?v=bf2906f HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bloglovin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: application/javascript
Content-Length: 2306
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Aug 2022 11:00:27 GMT
Expires: Sat, 22 Oct 2022 07:24:17 GMT
ETag: W/"62ff6d4b-1856"
Content-Encoding: gzip
Vary: ,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding
Cache-Control: public, max-age=86400
X-Varnish: 650767756 645526691
Age: 26270
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 13146
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.blovcdn.com/styles/v2/web/widget-follow-btn-8d238d3.css
194.0.59.42200 OK 693 B URL HTTP/1.1 static.blovcdn.com/styles/v2/web/widget-follow-btn-8d238d3.css
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type ASCII text, with very long lines (1742)
Hash 7c4acf7dc8e861cd58c1cd7992413b86
cc0447a14735dfcb12263ec71b95d5e8f2f926d3
11646b01d73d25d56d4b70f4949f6dc6de9ffeb0f202778b097dd33ab429aadd
GET /styles/v2/web/widget-follow-btn-8d238d3.css HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bloglovin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: text/css
Content-Length: 693
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Aug 2022 11:01:15 GMT
ETag: "62ff6d7b-6cf"
Expires: Sat, 22 Oct 2022 07:22:49 GMT
Content-Encoding: gzip
Vary: Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding
Cache-Control: public, max-age=86400
X-Varnish: 651380260 633403716
Age: 26358
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 92748
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.blovcdn.com/styles/v2/web/main-381fd7e.css
194.0.59.42200 OK 40 kB URL HTTP/1.1 static.blovcdn.com/styles/v2/web/main-381fd7e.css
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type ASCII text, with very long lines (65536), with no line terminators
Hash aa67f2eb204f62073f81b09b490b01bc
6f5f6265283e4bfff34b7d598aba6965b740e4e2
b1edfea3002aee7a80e70878d9756d1ce75d40b00e9830a2cbab509edccee1a7
GET /styles/v2/web/main-381fd7e.css HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bloglovin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: text/css
Content-Length: 39738
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Aug 2022 11:01:13 GMT
ETag: "62ff6d79-399ea"
Expires: Sat, 22 Oct 2022 07:22:43 GMT
Content-Encoding: gzip
Vary: Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding
Cache-Control: public, max-age=86400
X-Varnish: 650737130 648451237
Age: 26366
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 153044
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.blovcdn.com/scripts/jquery.min.js
194.0.59.42200 OK 30 kB URL HTTP/1.1 static.blovcdn.com/scripts/jquery.min.js
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type ASCII text, with very long lines (32025)
Hash 5bfb51cc101ce337a3b84954b79da240
3e8dc5dcba0a898575c6d3ade704f5ebfca4471e
3281ea484baca1bb243d7e9a991ee88e19c0a9f1c5d9dacfaf9518f9a1919254
GET /scripts/jquery.min.js HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bloglovin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: application/javascript
Content-Length: 29570
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Feb 2016 13:10:34 GMT
Expires: Sat, 22 Oct 2022 07:23:40 GMT
ETag: W/"56c7144a-1497a"
Content-Encoding: gzip
Vary: ,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding,Accept-Encoding
Cache-Control: public, max-age=86400
X-Varnish: 651099741 647665038
Age: 26307
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 13174
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
southernbeautyguide.com/wp-content/plugins/simple-social-icons/symbol-defs.svg
192.124.249.61200 OK 12 kB URL HTTP/2 southernbeautyguide.com/wp-content/plugins/simple-social-icons/symbol-defs.svg
IP 192.124.249.61:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4826)
Hash 18bcfee612c2995112f808ac55e86f79
4f33abd1445fe906610e7dcedf21192d672cf435
9617f839b8158b8feb87eac2ea0d0e909d9dcc73c4d9982559f9c44080b2fd0f
GET /wp-content/plugins/simple-social-icons/symbol-defs.svg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/svg+xml
content-length: 12541
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Aug 2022 19:58:30 GMT
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
static.blovcdn.com/images/logo/logo-2.svg
194.0.59.42200 OK 1.8 kB URL HTTP/1.1 static.blovcdn.com/images/logo/logo-2.svg
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash bc11d2ec9c85b4a9f2099b278e88a48e
325fbbfd5b982aeffa31d11add769a0bcf4cd510
9359a3ec7e04235e3e9c4c7620a81f28b7d66314bb85c125102f2f35bea8cf00
GET /images/logo/logo-2.svg HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.blovcdn.com/styles/v2/web/widget-follow-4e020e7.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: image/svg+xml
Content-Length: 1831
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Feb 2016 13:10:34 GMT
ETag: "56c7144a-727"
Expires: Sat, 22 Oct 2022 07:23:54 GMT
Cache-Control: public, max-age=86400
X-Varnish: 652385669 647996597
Age: 26293
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 13597
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.blovcdn.com/images/widget/follow.svg
194.0.59.42200 OK 637 B URL HTTP/1.1 static.blovcdn.com/images/widget/follow.svg
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 6e52c417c6cfbb724fefa2e646f6ea9b
7da85841d875336258e81245182535552a0c66a4
16a72438f88e711853bf754da65abb738bde03841c179b95e3a120150c897a17
GET /images/widget/follow.svg HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.blovcdn.com/styles/v2/web/widget-follow-btn-8d238d3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: image/svg+xml
Content-Length: 637
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Feb 2016 13:10:34 GMT
ETag: "56c7144a-27d"
Expires: Sat, 22 Oct 2022 07:22:51 GMT
Cache-Control: public, max-age=86400
X-Varnish: 651773942 645651765
Age: 26356
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 91050
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.blovcdn.com/images/widget/logo-2-white.svg
194.0.59.42200 OK 1.6 kB URL HTTP/1.1 static.blovcdn.com/images/widget/logo-2-white.svg
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 7d6aedafc63819d993bb4b33cc22ea0d
e150e00735006988b05c6a88db046153100960be
312914dc3871aedba849f4b85da2077abb79001292be836e6d6642c6dff32f80
GET /images/widget/logo-2-white.svg HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.blovcdn.com/styles/v2/web/widget-follow-btn-8d238d3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: image/svg+xml
Content-Length: 1638
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Feb 2016 13:10:34 GMT
ETag: "56c7144a-666"
Expires: Sat, 22 Oct 2022 07:22:52 GMT
Cache-Control: public, max-age=86400
X-Varnish: 651380262 645651774
Age: 26355
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 90952
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.blovcdn.com/files/font/OpenSans/opensans-regular.woff
194.0.59.42200 OK 67 kB URL HTTP/1.1 static.blovcdn.com/files/font/OpenSans/opensans-regular.woff
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type Web Open Font Format, TrueType, length 67360, version 1.0\012- data
Hash a67aa6d6c0eb77968342f4ab20cfedac
cbc1cbbcdaf065bcd7574e82b98fbd0bf70b21ce
1f4f46ab74580f30768075db750e179483e1b09cd5a7453ef9c46537e8a22763
GET /files/font/OpenSans/opensans-regular.woff HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bloglovin.com
Connection: keep-alive
Referer: https://static.blovcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: font/woff
Content-Length: 67360
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Feb 2016 13:10:34 GMT
ETag: "56c7144a-10720"
Expires: Sat, 22 Oct 2022 07:24:40 GMT
Cache-Control: public, max-age=86400
X-Varnish: 649910466 647896379
Age: 26247
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 12874
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
static.blovcdn.com/files/font/OpenSans/opensans-bold.woff
194.0.59.42200 OK 70 kB URL HTTP/1.1 static.blovcdn.com/files/font/OpenSans/opensans-bold.woff
IP 194.0.59.42:0
ASN #16150 Availo Networks AB
File type Web Open Font Format, TrueType, length 70004, version 1.0\012- data
Hash 2534527031f3f10e2f20e97c717804c9
b5bad29e9600891fad262d71936981724b67bd4a
b7da55067f4729790f9353d266d06e8c434c86f891b98df0971de20a4bd8e477
GET /files/font/OpenSans/opensans-bold.woff HTTP/1.1
Host: static.blovcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bloglovin.com
Connection: keep-alive
Referer: https://static.blovcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 14:42:13 GMT
Content-Type: font/woff
Content-Length: 70004
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 19 Feb 2016 13:10:34 GMT
ETag: "56c7144a-11174"
Expires: Sat, 22 Oct 2022 07:24:10 GMT
Cache-Control: public, max-age=86400
X-Varnish: 651800545 647090907
Age: 26277
Via: 1.1 varnish (Varnish/5.2)
bl-cache-status: HIT
bl-cache-cache-hits: 11827
bl-CDN-Provider: None
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
southernbeautyguide.com/wp-includes/js/thickbox/loadingAnimation.gif
192.124.249.61200 OK 15 kB URL HTTP/2 southernbeautyguide.com/wp-includes/js/thickbox/loadingAnimation.gif
IP 192.124.249.61:0
File type GIF image data, version 89a, 416 x 26\012- data
Hash ce2268030dd2151b63cdf4ffc2f626ba
15280f21eb43f5fa7838dcf011f67d79e301b15f
6a486bb6036ea984d293ab009566e99e522abc19f8833c5fd49630be7eba0135
GET /wp-includes/js/thickbox/loadingAnimation.gif HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/gif
content-length: 15238
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 06 Nov 2012 03:00:16 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/305508378_657846808676303_9040060026430627497_nlow.jpg
192.124.249.61200 OK 22 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/305508378_657846808676303_9040060026430627497_nlow.jpg
IP 192.124.249.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 320x320, components 3\012- data
Hash 8bb4aeb97feb1f8f4ecca9158657cc1d
06f3e5bdb595b30a7233b2528f3d69c0b4935e79
813ae551199d7a8f2f64bcd1ecf146e8cf1e48e35a0b6156c4453f195b542ec7
GET /wp-content/uploads/sb-instagram-feed-images/305508378_657846808676303_9040060026430627497_nlow.jpg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/jpeg
content-length: 22237
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 05 Sep 2022 18:02:39 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/290214854_1227569758016279_5479477587286002950_nlow.jpg
192.124.249.61200 OK 39 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/290214854_1227569758016279_5479477587286002950_nlow.jpg
IP 192.124.249.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 320x320, components 3\012- data
Hash d55d23d59ace7fe5b9dfced7486cd762
76e52519f6bf81267123f97821eabbaef2223335
9b1d72ac22579149b74f6fb7da8b8ed93c18439e2cf0d6296a5d44f22157925a
GET /wp-content/uploads/sb-instagram-feed-images/290214854_1227569758016279_5479477587286002950_nlow.jpg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/jpeg
content-length: 39150
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 26 Jun 2022 18:02:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/287845043_2088797607986070_8785270267095297242_nlow.jpg
192.124.249.61200 OK 36 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/287845043_2088797607986070_8785270267095297242_nlow.jpg
IP 192.124.249.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 320x400, components 3\012- data
Hash dd0be4783e9ddc35b0d7c012d5380ab9
d3f706f6e890606ab49bf21eae007edf37392322
32fdf57d3c4cd6bf4d3cff81a8e80e74df2bb5e5bccd437afc5acecc76dab2a8
GET /wp-content/uploads/sb-instagram-feed-images/287845043_2088797607986070_8785270267095297242_nlow.jpg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/jpeg
content-length: 36033
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 15 Jun 2022 06:01:23 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/287311335_3185736671685014_1057963760336351557_nlow.jpg
192.124.249.61200 OK 16 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/287311335_3185736671685014_1057963760336351557_nlow.jpg
IP 192.124.249.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 320x320, components 3\012- data
Hash 6535a9181d4e92dada0908640a9d8c58
90f7da1082c20e952b9b4f563687e78caa536e66
ae3d92dea68c27a30fe5d19c3670a5d4aed7ec5961977dd534c0bafcfe912e35
GET /wp-content/uploads/sb-instagram-feed-images/287311335_3185736671685014_1057963760336351557_nlow.jpg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/jpeg
content-length: 16260
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 13 Jun 2022 18:00:40 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/287067438_539312634340301_7114526159980253862_nlow.jpg
192.124.249.61200 OK 21 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/287067438_539312634340301_7114526159980253862_nlow.jpg
IP 192.124.249.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 320x344, components 3\012- data
Hash fb64c88ce9bb2f4010df0ca699e1e367
1202d505ec258672b1cd11bced4fe5cb8e876159
9035a275957ec34c12d64b14c5cb8941713391d73335d588a574d9a5529f7a7c
GET /wp-content/uploads/sb-instagram-feed-images/287067438_539312634340301_7114526159980253862_nlow.jpg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/jpeg
content-length: 21113
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 09 Jun 2022 18:02:14 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/286636289_130330126332827_1935396673469262200_nlow.jpg
192.124.249.61200 OK 26 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/286636289_130330126332827_1935396673469262200_nlow.jpg
IP 192.124.249.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 320x400, components 3\012- data
Hash 31719d2dfc3a5f670499a89657f278b5
702870e34fb93f558c92d9ff83385fc61a0dfc5b
64820143afde5519b4b4830289672e80c68d371213d93de3f5a2b5dc21b9f3d5
GET /wp-content/uploads/sb-instagram-feed-images/286636289_130330126332827_1935396673469262200_nlow.jpg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/jpeg
content-length: 25779
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 08 Jun 2022 18:00:07 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/286353528_1001994607373397_7804900182119055938_nlow.jpg
192.124.249.61200 OK 34 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/286353528_1001994607373397_7804900182119055938_nlow.jpg
IP 192.124.249.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 320x400, components 3\012- data
Hash a6b2826d0202c21ce59d418deebded67
ca7216fc5b388a64ed2b631a721514b75833d61f
656c1874a28b9bd5856e5cfe4f1b6314d7e8323b93b5e2e599fd8a29c81f670f
GET /wp-content/uploads/sb-instagram-feed-images/286353528_1001994607373397_7804900182119055938_nlow.jpg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/jpeg
content-length: 34204
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 08 Jun 2022 18:00:09 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/299729230_472825731353318_3359658516377333176_nlow.jpg
192.124.249.61200 OK 55 kB URL HTTP/2 southernbeautyguide.com/wp-content/uploads/sb-instagram-feed-images/299729230_472825731353318_3359658516377333176_nlow.jpg
IP 192.124.249.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 320x400, components 3\012- data
Hash ef5c479155cc66f0787994e8bd18dcb3
f0a0164c1067f83d02329e3a6195517a98b1b905
718e6e14f5402288682df745535d67ac460b987c03731b9c74d2807c296e2511
GET /wp-content/uploads/sb-instagram-feed-images/299729230_472825731353318_3359658516377333176_nlow.jpg HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/jpeg
content-length: 54723
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Aug 2022 06:00:54 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/images/favicon.ico
192.124.249.61200 OK 15 kB URL HTTP/2 southernbeautyguide.com/wp-content/themes/vivienne.2.2.0/images/favicon.ico
IP 192.124.249.61:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 35a7b44c9399ac2059baefeb65ed3527
c74f54aebb9bfbc133c8030751417e85a0ae926e
9c0118169519a02a762ddc507d310faf7611e5363f0412fb38e39558d5249b03
GET /wp-content/themes/vivienne.2.2.0/images/favicon.ico HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: image/x-icon
content-length: 14923
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:27:07 GMT
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
southernbeautyguide.disqus.com/count.js
151.101.84.134200 OK 871 B URL HTTP/1.1 southernbeautyguide.disqus.com/count.js
IP 151.101.84.134:0
File type ASCII text, with very long lines (528)
Hash a487039f9b553cb4f6928743872234e9
b3d835075d1983a8c2fe716285d173fcc3708f9c
364f622ba24e063adcee84f132da53c6e6071745f04a00d10937663deb24b822
GET /count.js HTTP/1.1
Host: southernbeautyguide.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Wed, 21 Sep 2022 15:50:58 GMT
ETag: "632b32e2-367"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Amz-Cf-Pop: DFW56-P2
X-Amz-Cf-Id: bCz47aoK9jSIJDr-tXNQT5OJ6klHk4yTeVCPVvnU-JpH5OCzq3_VPg==
Cache-Control: public, max-age=300
Date: Thu, 22 Sep 2022 14:42:08 GMT
Age: 76
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
southernbeautyguide.disqus.com/embed.js
151.101.84.134302 Found 0 B URL HTTP/1.1 southernbeautyguide.disqus.com/embed.js
IP 151.101.84.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed.js HTTP/1.1
Host: southernbeautyguide.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Connection: keep-alive
Content-Length: 0
Server: Varnish
Location: https://a.disquscdn.com/next/current/embed/embed.fallback.js
Date: Thu, 22 Sep 2022 14:42:08 GMT
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3dc89ea2daeec65f3255371661f2b1b
42d925fc09fe78ce664ba07b49883f027a024c5b
055a012e5b0c2d2f0c633da56e79db5744a2aad1d43fd52237fac385128fc7df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3315
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:08 GMT
Last-Modified: Thu, 22 Sep 2022 13:46:53 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f08468f742203b67cafd4eb9d919877c
0ab9c6875fa317315e2e7dcdb1ba8c5d28bfef68
b66d3243be1a67a813352f3c2efa4259d4e0c7960b2206a381b52ee97dc3ff23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Thu, 22 Sep 2022 14:41:09 GMT
expires: Thu, 22 Sep 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 59
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 9ecd89752214ef749272eef344b9089a
70a58a49c08934265ee34c74efb01d6b3124095d
f76c51487e348977288fcaf83984cd8fe4e73758cc352402774d9eb94680d528
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Aahv7jJVnmmFa2lfXAAYaNsW9PqfcaWhaOvNkYWGxy/VGujC98GFDaoTWY0RfxkiGQyOiR8fhin4P872Ex0Fyw==
priority: u=3,i
content-length: 26839
x-fb-trip-id: 1679558926
date: Thu, 22 Sep 2022 14:42:08 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3dc89ea2daeec65f3255371661f2b1b
42d925fc09fe78ce664ba07b49883f027a024c5b
055a012e5b0c2d2f0c633da56e79db5744a2aad1d43fd52237fac385128fc7df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3315
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:08 GMT
Last-Modified: Thu, 22 Sep 2022 13:46:53 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j97&a=1064075708&t=pageview&_s=1&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&ul=en-us&de=UTF-8&dt=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAAC~&jid=753973172&gjid=958407062&cid=495262816.1663857728&tid=UA-40999098-1&_gid=1555500776.1663857728&_r=1&_slc=1&z=1489120162
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j97&a=1064075708&t=pageview&_s=1&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&ul=en-us&de=UTF-8&dt=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAAC~&jid=753973172&gjid=958407062&cid=495262816.1663857728&tid=UA-40999098-1&_gid=1555500776.1663857728&_r=1&_slc=1&z=1489120162
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j97&a=1064075708&t=pageview&_s=1&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&ul=en-us&de=UTF-8&dt=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAAC~&jid=753973172&gjid=958407062&cid=495262816.1663857728&tid=UA-40999098-1&_gid=1555500776.1663857728&_r=1&_slc=1&z=1489120162 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://southernbeautyguide.com
date: Thu, 22 Sep 2022 14:42:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.pinterest.com/v1/urls/count.json?callback=WPCOMSharing.update_pinterest_count&url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html
23.38.200.197200 OK 125 B URL HTTP/2 api.pinterest.com/v1/urls/count.json?callback=WPCOMSharing.update_pinterest_count&url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html
IP 23.38.200.197:0
File type ASCII text, with no line terminators
Hash c3a499bc2c72caeec93381d2cd109290
928ef82e9d0ef522f3024cd106cc3fef5b26fc26
4ae650e9d5fa316a5a9fd7f7a8a62cefcf65bde106f82e90df5ab5f68d8b0aec
GET /v1/urls/count.json?callback=WPCOMSharing.update_pinterest_count&url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html HTTP/1.1
Host: api.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
content-length: 125
expires: Thu, 22 Sep 2022 14:57:08 GMT
x-envoy-upstream-service-time: 4
cache-control: no-cache, no-store, must-revalidate
x-pinterest-rid: 1585275328039499
date: Thu, 22 Sep 2022 14:42:08 GMT
set-cookie: _ir=0; Max-Age=1800; HttpOnly; Path=/; Secure
akamai-grn: 0.274f2417.1663857728.b9d84ffd
x-cdn: akamai
X-Firefox-Spdy: h2
a.disquscdn.com/next/current/embed/embed.fallback.js
151.101.86.49200 OK 24 kB URL HTTP/2 a.disquscdn.com/next/current/embed/embed.fallback.js
IP 151.101.86.49:0
File type ASCII text, with very long lines (32093)
Hash 66e6c7613c0cdd5f9c113474e693b97c
78ea7fe5b26d46258c69de9c7a02618dbdfb1aeb
d3ed7aa05c8dc60314a30f891aab3a58015f2c2e0cb0ce2ba51ea61e6ba0de13
GET /next/current/embed/embed.fallback.js HTTP/1.1
Host: a.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://southernbeautyguide.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Thu, 22 Sep 2022 13:28:24 GMT
etag: "632c62f8-5e37"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: aTbBmrH6xE77InIsZNMswwW2ZR8zcwOIBejX15EF7dEo442YWWwAuQ==
cache-control: public, max-age=1200
date: Thu, 22 Sep 2022 14:42:08 GMT
age: 221
strict-transport-security: max-age=300; includeSubdomains
content-length: 24119
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=465074777218447&ev=PageView&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&rl=&if=false&ts=1663857728183&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663857728182.2008937600&it=1663857728032&coo=false&exp=b3&rqm=GET&cd[rex]=%7B%22ex%22%3A%22t%22%2C%22sx%22%3Atrue%2C%22retry%22%3A0%7D
157.240.200.35200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=465074777218447&ev=PageView&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&rl=&if=false&ts=1663857728183&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663857728182.2008937600&it=1663857728032&coo=false&exp=b3&rqm=GET&cd[rex]=%7B%22ex%22%3A%22t%22%2C%22sx%22%3Atrue%2C%22retry%22%3A0%7D
IP 157.240.200.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=465074777218447&ev=PageView&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&rl=&if=false&ts=1663857728183&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663857728182.2008937600&it=1663857728032&coo=false&exp=b3&rqm=GET&cd[rex]=%7B%22ex%22%3A%22t%22%2C%22sx%22%3Atrue%2C%22retry%22%3A0%7D HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Thu, 22 Sep 2022 14:42:08 GMT
expires: Thu, 22 Sep 2022 14:42:08 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=465074777218447&ev=ViewContent&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&rl=&if=false&ts=1663857728186&sw=1280&sh=1024&v=2.9.83&r=stable&ec=1&o=30&fbp=fb.1.1663857728182.2008937600&it=1663857728032&coo=false&exp=b3&rqm=GET&cd[rex]=%7B%22ex%22%3A%22t%22%2C%22sx%22%3Atrue%2C%22retry%22%3A0%7D
157.240.200.35200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=465074777218447&ev=ViewContent&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&rl=&if=false&ts=1663857728186&sw=1280&sh=1024&v=2.9.83&r=stable&ec=1&o=30&fbp=fb.1.1663857728182.2008937600&it=1663857728032&coo=false&exp=b3&rqm=GET&cd[rex]=%7B%22ex%22%3A%22t%22%2C%22sx%22%3Atrue%2C%22retry%22%3A0%7D
IP 157.240.200.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=465074777218447&ev=ViewContent&dl=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&rl=&if=false&ts=1663857728186&sw=1280&sh=1024&v=2.9.83&r=stable&ec=1&o=30&fbp=fb.1.1663857728182.2008937600&it=1663857728032&coo=false&exp=b3&rqm=GET&cd[rex]=%7B%22ex%22%3A%22t%22%2C%22sx%22%3Atrue%2C%22retry%22%3A0%7D HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Thu, 22 Sep 2022 14:42:08 GMT
expires: Thu, 22 Sep 2022 14:42:08 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
disqus.com/embed/comments/?base=default&f=southernbeautyguide&t_i=600%20http%3A%2F%2Fsouthernbeautyguide.com%2F%3Fp%3D600&t_u=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&t_e=DIY%20Z-Palette%20%26%20Depotting!&t_d=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&t_t=DIY%20Z-Palette%20%26%20Depotting!&s_o=default
151.101.0.134200 OK 3.5 kB URL HTTP/1.1 disqus.com/embed/comments/?base=default&f=southernbeautyguide&t_i=600%20http%3A%2F%2Fsouthernbeautyguide.com%2F%3Fp%3D600&t_u=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&t_e=DIY%20Z-Palette%20%26%20Depotting!&t_d=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&t_t=DIY%20Z-Palette%20%26%20Depotting!&s_o=default
IP 151.101.0.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4263)
Hash 980dab9b3e668012a1902add250af334
099c53918c16589fb16bb8faee0de4d4d41e7952
b6f4f3d1dfcf1d40cbf4199db54c9b1c3cbda4aad5c8acfb6a4e1ff034c32e95
GET /embed/comments/?base=default&f=southernbeautyguide&t_i=600%20http%3A%2F%2Fsouthernbeautyguide.com%2F%3Fp%3D600&t_u=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&t_e=DIY%20Z-Palette%20%26%20Depotting!&t_d=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&t_t=DIY%20Z-Palette%20%26%20Depotting!&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3519
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://apis.google.com https://cdn.syndication.twimg.com/tweets.json https://connect.facebook.net/en_US/sdk.js https://referrer.disqus.com/juggler/ 'unsafe-inline' https://com-disqus.netmng.com:* https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Sat, 13 Aug 2022 05:33:46 GMT
ETag: W/"lounge:view:2655886953.2db2e382efbea16387375738cb06d337.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Thu, 22 Sep 2022 14:42:08 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/embed/lounge.load.6aea2f4e09ae30542b5dce5b45ef2326.js
143.204.55.72200 OK 494 B URL HTTP/2 c.disquscdn.com/next/embed/lounge.load.6aea2f4e09ae30542b5dce5b45ef2326.js
IP 143.204.55.72:0
File type ASCII text, with very long lines (958), with no line terminators
Hash 4c3b05710609c2cdf85a4df1347d5231
c408557508b57b5f1469c1b147b44665a4f9b6d1
b10a36d477190332371aa4f81af486ed5ec59d8d943e444ce2cbff65dcfb3c68
GET /next/embed/lounge.load.6aea2f4e09ae30542b5dce5b45ef2326.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 494
date: Fri, 16 Sep 2022 09:02:42 GMT
server: nginx
last-modified: Fri, 16 Sep 2022 08:34:41 GMT
etag: "63243521-1ee"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 16 Sep 2023 09:02:42 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hRFEDuNKcEtjlpBLF1zRo9f2fOfGWwkdPYfsCeJPNAms3vJV8KvtKg==
age: 538766
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js
143.204.55.72200 OK 95 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js
IP 143.204.55.72:0
File type ASCII text, with very long lines (32023)
Hash 7b99df04cc3984222b4f02f738de9fa4
f3eefe01e2f39579ceaca4927de1177711e01544
c64b6a193db830888df222e8c3d1d0c964cb9700e2ed62796e02dbe49a39d8ec
GET /next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94755
date: Mon, 25 Jul 2022 05:21:29 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:54 GMT
etag: "62da91ee-17223"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:29 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7-MuHM1ePVAZLkbw5u0MxeyUh4aDlOnyGwKkhz-Q-6vHjuPvPvJs3A==
age: 5131239
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f85caa32cfc5c68ae9d37dac5075d086
d98cb95e042dfdf7fcfe0bef3d83624a970ee7ab
c1d5882e2ccbee35dfb5d42d78ef6fd843882cbbbe5653cd686ff768e697ac84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 51ca5853da6ab1b45b9b9d8425056853
b912e4d1ee63203030fa6efd1a77b5f02f4f86e0
a5dd1386ea0a4adc2678a71557841daec7a91a80330c7cf3dc845963c4addd3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.disquscdn.com/next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css
143.204.55.72200 OK 26 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css
IP 143.204.55.72:0
File type ASCII text, with very long lines (65469)
Hash 4ce72b6a8aa2f41bee77d2e9368008a3
5bcae35b33d95af653f83d0435bfb8b590a06254
4fbb9394a919e5b087e3d63b77781758489f02be847eb899e977518576a906cb
GET /next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 26136
date: Mon, 12 Sep 2022 19:34:09 GMT
server: nginx
last-modified: Mon, 12 Sep 2022 19:13:42 GMT
etag: "631f84e6-6618"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 12 Sep 2023 19:34:09 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vr8lmz1joSOTTO42vhH8isaV-baEwaI5pvfDAWQk5mf4o1hySpKOZA==
age: 846480
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.bundle.4a4252944de4199d2e7f3e9e3eb9bc54.js
143.204.55.72200 OK 124 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.4a4252944de4199d2e7f3e9e3eb9bc54.js
IP 143.204.55.72:0
File type ASCII text, with very long lines (32035)
Size 124 kB (123979 bytes)
Hash 7b5a447a2bf1505198ba04e50bbe8af4
5377c483be50ae516af00ccfbd740c18e468deac
2f5f08e0306667a0de34dc481ab4a593b94ae9bdf6470615a546bddf98cdef12
GET /next/embed/lounge.bundle.4a4252944de4199d2e7f3e9e3eb9bc54.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 123979
date: Fri, 16 Sep 2022 09:02:42 GMT
server: nginx
last-modified: Fri, 16 Sep 2022 08:34:41 GMT
etag: "63243521-1e44b"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 16 Sep 2023 09:02:42 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JU5nUnxBmkPSBhiyFTnTHiHMF_9ACpMWVRvBZzF6JSVnzBjzMXeZcQ==
age: 538767
X-Firefox-Spdy: h2
disqus.com/next/config.js
151.101.0.134200 OK 16 kB URL HTTP/1.1 disqus.com/next/config.js
IP 151.101.0.134:0
File type ASCII text, with very long lines (16221), with no line terminators
Hash bae4922635b84fecf8f679c35f3624f0
aea1e240ecbd887d92a51a4004211022d3442ae4
d870d845526fe81346f4fe0d0b2cf1543c3ddbd5c5e484c00223b6dd0b85226a
GET /next/config.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=southernbeautyguide&t_i=600%20http%3A%2F%2Fsouthernbeautyguide.com%2F%3Fp%3D600&t_u=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&t_e=DIY%20Z-Palette%20%26%20Depotting!&t_d=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&t_t=DIY%20Z-Palette%20%26%20Depotting!&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 16221
Server: nginx
Content-Type: application/javascript; charset=UTF-8
Cache-Control: public, stale-while-revalidate=300, s-stalewhilerevalidate=3600, max-age=60
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Thu, 22 Sep 2022 14:42:09 GMT
Age: 6
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
adservice.google.com/adsid/integrator.js?domain=southernbeautyguide.com
172.217.21.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=southernbeautyguide.com
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=southernbeautyguide.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 22 Sep 2022 14:42:09 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8e6d7d544c1b361b4a639f9caec0c381
0b07f276ed1e0f44d0f31c8851fc04c6ba2d3a34
ab94f9d40b176f2af894eb98fda7461afe75131556fbf7b08918af6139b234ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f85caa32cfc5c68ae9d37dac5075d086
d98cb95e042dfdf7fcfe0bef3d83624a970ee7ab
c1d5882e2ccbee35dfb5d42d78ef6fd843882cbbbe5653cd686ff768e697ac84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f4ba6fe6c6106572b800d34a95229655.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
142.250.74.65200 OK 3.1 kB URL HTTP/2 f4ba6fe6c6106572b800d34a95229655.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: f4ba6fe6c6106572b800d34a95229655.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Thu, 22 Sep 2022 14:42:09 GMT
expires: Fri, 22 Sep 2023 14:42:09 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
z.moatads.com/linqiacontent276262702444564/moatcontent.js
23.38.201.146200 OK 0 B URL HTTP/2 z.moatads.com/linqiacontent276262702444564/moatcontent.js
IP 23.38.201.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /linqiacontent276262702444564/moatcontent.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: S4pXIzD5++LWLP8zRFcKA0bbJlnKA0f7EPFWuLW6xYnQcuqAZHsBKGkXKnEnXQKyRRnO2ytIhVw=
x-amz-request-id: 7A01A2B1E12F2B7C
last-modified: Thu, 12 Sep 2019 22:23:01 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
accept-ranges: bytes
content-type: application/x-javascript
content-length: 0
server: AmazonS3
cache-control: max-age=57525
date: Thu, 22 Sep 2022 14:42:09 GMT
X-Firefox-Spdy: h2
a.disquscdn.com/1663775094/images/noavatar92.png
151.101.86.49200 OK 1.6 kB URL HTTP/2 a.disquscdn.com/1663775094/images/noavatar92.png
IP 151.101.86.49:0
File type PNG image data, 92 x 92, 8-bit/color RGB, non-interlaced\012- data
Hash 675fb4b91ca717db030507f2d84bcfdf
c8728df74487f907230358a1b08ae1a1b25f9ed4
36ef66124133ca33c8b44c487293c3180e5ab681ff3cad3c728ea4f894ec3444
GET /1663775094/images/noavatar92.png HTTP/1.1
Host: a.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: nginx
last-modified: Fri, 26 Feb 2021 20:50:09 GMT
etag: "60395f01-66c"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 21 Oct 2022 16:55:13 GMT
cache-control: max-age=2592000
cross-origin-resource-policy: cross-origin
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: uLnV0_q-GUs2ff7qmmVinpMgEAxO6qGBFik3pl01EpJpjIqqB0fjDA==
date: Thu, 22 Sep 2022 14:42:09 GMT
age: 78415
strict-transport-security: max-age=300; includeSubdomains
content-length: 1644
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
143.204.55.72200 OK 13 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP 143.204.55.72:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Hash 4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4
GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Mon, 25 Jul 2022 05:21:30 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:55 GMT
etag: "62da91ef-3317"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:30 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BlwIos0IbWEniuHx7RVjH15wKfjJq2FQviy9yARJ5iZi3E0AcibU-Q==
age: 5131239
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
143.204.55.72200 OK 7.9 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP 143.204.55.72:0
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5
GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Mon, 25 Jul 2022 05:21:30 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:54 GMT
etag: "62da91ee-1edc"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:30 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Up4mQzpQXoYRxeXu-pmWEbkJB-R47OsF2-Wb553bfuvReoS5P9xZoA==
age: 5131239
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
143.204.55.72200 OK 3.0 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
IP 143.204.55.72:0
File type GIF image data, version 87a, 62 x 20\012- data
Hash ba7c86e8b4b6135bb668d05223f8f127
ae07a576af9eab682281921075436798438e902e
4c4491dcfa94cb46fb73742fc2caf49a1cd59027304af1830c7dc6ce1889857c
GET /next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 2971
date: Sat, 04 Jun 2022 12:47:57 GMT
server: nginx
last-modified: Fri, 03 Jun 2022 17:03:15 GMT
etag: "629a3ed3-b9b"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 04 Jun 2023 12:47:57 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: THxBsJfvZp5bNTYGdWHmkCrlTTyLJUTHtDReGUGhd2KrwQ2Rw-4bBw==
age: 9510852
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
143.204.55.72200 OK 1.8 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
IP 143.204.55.72:0
File type PNG image data, 172 x 81, 8-bit colormap, non-interlaced\012- data
Hash ad630a07080a45451f139a7487853ff8
c2673d7404fc947fab20eed21416f9656149018d
9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Mon, 25 Jul 2022 05:21:30 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:55 GMT
etag: "62da91ef-6e3"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:30 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iQezsw0tvkNCheZpFtF2nYTvPOYNEZhF_CT5w0Sl7fB7fNYDtBrwtw==
age: 5131239
X-Firefox-Spdy: h2
disqus.com/api/3.0/forums/details?forum=southernbeautyguide&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.0.134200 OK 3.1 kB URL HTTP/1.1 disqus.com/api/3.0/forums/details?forum=southernbeautyguide&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.0.134:0
File type JSON data\012- , ASCII text, with very long lines (3149), with no line terminators
Hash ffde4f0da68ad01895051a3ebfa21809
120a79911f5c35b5385e0989d70885ade0b38d78
3db5af55705e8ea535ee185f66e5327786b88a94b4228ab91ed437da5b532879
GET /api/3.0/forums/details?forum=southernbeautyguide&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=southernbeautyguide&t_i=600%20http%3A%2F%2Fsouthernbeautyguide.com%2F%3Fp%3D600&t_u=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&t_e=DIY%20Z-Palette%20%26%20Depotting!&t_d=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&t_t=DIY%20Z-Palette%20%26%20Depotting!&s_o=default
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3149
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Thu, 22 Sep 2022 14:42:09 GMT
Age: 0
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022091501&st=env
142.250.74.2200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022091501&st=env
IP 142.250.74.2:0
File type JSON data\012- , ASCII text, with very long lines (14733), with no line terminators
Hash 31fabe5e8415801f8ab02c1a2f348ed8
6564e93fa8cfd83369f7f398f0e76c2a905bfe57
683a2e98d1fafe2b97fcc707634818a4b934ff2da7878ffdf2be29005621ffdb
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022091501&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 22 Sep 2022 14:42:09 GMT
server: cafe
cache-control: private
content-length: 11188
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a9c6271cfc8a012f6617d0703e011f54
77689f3e7695a13a7a51d6df955772f4068a9163
3aaa0e6e1fbf3ca2c22e73dc067f4e5146c21e142930f526651e0180eba35cb2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/api.js
142.250.74.174200 OK 5.6 kB URL HTTP/2 apis.google.com/js/api.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (2046)
Hash f9f56458a86b805c84a23e08244dcfa8
2ba905db7f79dcf85f57c523016318bf6fd098dc
9835b481dd77d751336a2d6b2ca3ace4460177056d54633048621c960fec58ab
GET /js/api.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5568
date: Thu, 22 Sep 2022 14:42:09 GMT
expires: Thu, 22 Sep 2022 14:42:09 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "60d555d47999b4e8"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 10ae49480aecaf4bbe48fe413fb884f5
eaf76e35924e7e2465d8d51f81e1a39da508a496
dee36f9aa3d11c1b3d6802fa611adea95ed277212e47f16392cd49f3161e205b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth2/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 36 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth2/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (586)
Hash f20ddab3ee520d5da7321ff94b8160d5
0f84be1d0af8ece14e1dd56b40f281a198f6b16b
cb37aaabbb38688ef1f14bf4de52c0268db661fa0cb316b5fe2f9dc9d86ea7ad
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth2/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 36448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 05:16:00 GMT
expires: Thu, 21 Sep 2023 05:16:00 GMT
cache-control: public, max-age=31536000
age: 120369
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/css/dist/block-library/style.min.css
192.0.77.37200 OK 17 kB URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/css/dist/block-library/style.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (43771)
Hash 2a7632480868b61cca83b0b6429802cc
54ca3998a4191a28fcd6999930898a0a5831518e
1249c38d200f25563a5b7fcc0b9f83e0e1f744b26fce5c0e2d8c8c877d033712
GET /c/6.0.2/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 04 Jul 2022 12:10:37 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 11:30:52 GMT
expires: Fri, 22 Sep 2023 11:30:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 11477
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2cbc5b6b34693cfd436ec7227a35f4a3
2e1d9d04765ed47e8ed40e1722927115d43c1594
c4e589b7007454cfe8dab7e8be84a017d1be508d5ee9413afe4848f1dde3444c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 18c741d93f25e7235cee6246e4de2f17
bd4cc4bc53185eaed8fa967d5b20a63114dfcaaf
f6da7f01ad0b1566daa708b9f53d7c5dad7b2adc8f2547248d37892d7a89bfb8
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 22 Sep 2022 14:42:09 GMT
date: Thu, 22 Sep 2022 14:42:09 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-C0ADrtB2G5FoPICO5VOjmw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c3488c12aad0554e2bf27b9973ec0870
dd261f39ecb54fd67196520d215c3fd7aff023cc
94aa53fc93c54c467f9a214585bb3c6ad81529c24bce8f4c48608925e52c039d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sumo.com/api/load/
52.34.133.113200 OK 843 B IP 52.34.133.113:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (842), with no line terminators
Hash 6cd431974b2c8fb8e1b884d6942b27b9
22452ecbe39cd65a6462e655edfdd8c850928b5c
95f63ea5144fde850087bd566090fb8705372201b04ee7557d5a6a5595ee0a84
POST /api/load/ HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 258
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:09 GMT
content-type: application/json; charset=utf-8
content-length: 843
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://southernbeautyguide.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
set-cookie: __smSessionId=s%3AvuBFyLMfi401jVPkSVvvIJnM.D4GUmLXnstgJep6UAADYCrBYbt1XMfwdJhltyigfvCc; Path=/; Expires=Thu, 22 Sep 2022 23:27:45 GMT; HttpOnly
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
sumo.com/services
52.34.133.113204 No Content 0 B IP 52.34.133.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sumo-auth
Referer: https://southernbeautyguide.com/
Origin: https://southernbeautyguide.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 22 Sep 2022 14:42:10 GMT
access-control-allow-origin: https://southernbeautyguide.com
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: pragma, x-requested-with, accept, x-sumo-auth, x-sumo-token, content-type
access-control-max-age: 2592000
X-Firefox-Spdy: h2
glitter.services.disqus.com/urls/?callback=dsqGlitterResponseHandler&forum_shortname=southernbeautyguide&thread_id=2655886953&referer=
151.101.84.64200 OK 120 B URL HTTP/1.1 glitter.services.disqus.com/urls/?callback=dsqGlitterResponseHandler&forum_shortname=southernbeautyguide&thread_id=2655886953&referer=
IP 151.101.84.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8b66bca06a44279f96e882d8ecac4e9c
4dbafbebc9fade161e0eca1b11923c5301bf07cf
b2a9b7857afbdf4fda3cf0e07f249d361dd0fca59330b256cbb84cba1bb2af25
GET /urls/?callback=dsqGlitterResponseHandler&forum_shortname=southernbeautyguide&thread_id=2655886953&referer= HTTP/1.1
Host: glitter.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=southernbeautyguide&t_i=600%20http%3A%2F%2Fsouthernbeautyguide.com%2F%3Fp%3D600&t_u=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&t_e=DIY%20Z-Palette%20%26%20Depotting!&t_d=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&t_t=DIY%20Z-Palette%20%26%20Depotting!&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Server: openresty
Content-Type: application/javascript
Content-Disposition: attachment; filename=f.txt
X-Content-Type-Options: nosniff
Cache-Control: no-cache
X-Frame-Options: DENY
X-Service: glitter
Content-Encoding: gzip
Date: Thu, 22 Sep 2022 14:42:10 GMT
Vary: Accept-Encoding, Cookie
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
transfer-encoding: chunked
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&integration=wordpress%203.0.22&load_time=1000&event=init_embed&thread=2655886953&forum=southernbeautyguide&forum_id=2443919&imp=3i0e12v3dcheja&prev_imp&thread_slug=httpwwwsouthernbeautyguidecom201303diy_z_palette_depottinghtml&user_type=anon&referrer=https%3A%2F%2Fsouthernbeautyguide.com%2F&theme=next&dnt=0&tracking_enabled=1&experiment=default&variant=control&service=fallback&promoted_enabled=false&max_enabled=false
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&integration=wordpress%203.0.22&load_time=1000&event=init_embed&thread=2655886953&forum=southernbeautyguide&forum_id=2443919&imp=3i0e12v3dcheja&prev_imp&thread_slug=httpwwwsouthernbeautyguidecom201303diy_z_palette_depottinghtml&user_type=anon&referrer=https%3A%2F%2Fsouthernbeautyguide.com%2F&theme=next&dnt=0&tracking_enabled=1&experiment=default&variant=control&service=fallback&promoted_enabled=false&max_enabled=false
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&integration=wordpress%203.0.22&load_time=1000&event=init_embed&thread=2655886953&forum=southernbeautyguide&forum_id=2443919&imp=3i0e12v3dcheja&prev_imp&thread_slug=httpwwwsouthernbeautyguidecom201303diy_z_palette_depottinghtml&user_type=anon&referrer=https%3A%2F%2Fsouthernbeautyguide.com%2F&theme=next&dnt=0&tracking_enabled=1&experiment=default&variant=control&service=fallback&promoted_enabled=false&max_enabled=false HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=southernbeautyguide&t_i=600%20http%3A%2F%2Fsouthernbeautyguide.com%2F%3Fp%3D600&t_u=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&t_e=DIY%20Z-Palette%20%26%20Depotting!&t_d=DIY%20Z-Palette%20%26%20Depotting!%20-%20Southern%20Beauty%20Guide&t_t=DIY%20Z-Palette%20%26%20Depotting!&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Thu, 22 Sep 2022 14:42:10 GMT
Cross-Origin-Resource-Policy: cross-origin
load.sumo.com/64.0a035390359aab65eb82.js
194.242.11.186200 OK 76 kB URL HTTP/2 load.sumo.com/64.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1305), with no line terminators
Hash 5ef76b28cfe55534dc30f7ad619d893d
5ca8387bdcfdaa89c23ab92610f1cc618880139f
7b30711836098228d2569d05102a35f6cbcf2f0ea58716c689bc65fa10797bd3
GET /64.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:10 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"d200986501135078d1fbd7f480e7bb08"
last-modified: Mon, 01 Aug 2022 17:37:08 GMT
x-amz-id-2: uTd0fGAmQ/qQbQFNMxmbYzUtke4eY1PS5zTkBBciiv0Es0UchPt0PddZ9dyhRU9ZzowZafmJsoY=
x-amz-request-id: V8EXEYCRRPW7PD51
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:03
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2e1ffda7ce211a468e586e47b0e695f7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/1.0a035390359aab65eb82.js
194.242.11.186200 OK 17 kB URL HTTP/2 load.sumo.com/1.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1445), with no line terminators
Hash d0934dc115fa5b613b751e85f2e79951
dae95eff12788cce1018d302f64c9b2a2705ef9a
592a9ab76d49271beb8dbe73a4797c30a63f601d773ed4d42923d20a691983aa
GET /1.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:10 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"f9b0aedd5a94b36e30a06214fcc0644f"
last-modified: Mon, 01 Aug 2022 17:36:08 GMT
x-amz-id-2: qaMQHlM6O/eq8GWboF/6PLOBQ1ytcovWr6l8zFFinRuc8hszYKGdEm34t/dUUA9II1TJmTVoTCw=
x-amz-request-id: SWTRN36WNPAHMPX8
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 19:27:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d9a757d5ca926c5cb727a3516efe23c8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 195069
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aa776f5cb0851d32863752eb7d5b1aa6
7f4270d6d01afbf62d1951377886f287fbc45d6e
517fe645fa28821f9d9e83ffa486fa90fd872b4e3e86c49c7c974b912b4181d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1010
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:10 GMT
Last-Modified: Thu, 22 Sep 2022 14:25:20 GMT
Server: ECS (amb/6B8E)
X-Cache: HIT
Content-Length: 279
clients6.google.com/rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ
142.250.74.142404 Not Found 1.6 kB URL HTTP/2 clients6.google.com/rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fdafd7cfefa898c6cdd100bbb5a9a66b
8bfb3adcc308a18d8367634e5850520d94895206
1b033c332a02fde4de1489e33cfe304e2ab016ccc725d5216fad989975330318
OPTIONS /rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ HTTP/1.1
Host: clients6.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://southernbeautyguide.com/
Origin: https://southernbeautyguide.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1564
date: Thu, 22 Sep 2022 14:42:10 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6fd4f05f7e80fd5e2980d12b2a05ebf7
e7525ca89a73c61f7342c1d7846ef2841c1d41ed
bba1e59ab44d624acf6aa3142c02a5a68f0d0f0224532586fc4ef85a8bbacc91
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4679
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:10 GMT
Last-Modified: Thu, 22 Sep 2022 13:24:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
reddit.com/button_info.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&jsonp=jQuery1102008914246289052152_1663857727368&_=1663857727369
151.101.193.140301 Moved Permanently 0 B URL HTTP/2 reddit.com/button_info.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&jsonp=jQuery1102008914246289052152_1663857727368&_=1663857727369
IP 151.101.193.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /button_info.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&jsonp=jQuery1102008914246289052152_1663857727368&_=1663857727369 HTTP/1.1
Host: reddit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
retry-after: 0
location: https://www.reddit.com/button_info.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&jsonp=jQuery1102008914246289052152_1663857727368&_=1663857727369
accept-ranges: bytes
date: Thu, 22 Sep 2022 14:42:10 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: private, max-age=3600
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 0
X-Firefox-Spdy: h2
api.facebook.com/method/links.getStats?urls=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&format=json&callback=jQuery1102008914246289052152_1663857727364&_=1663857727365
157.240.200.16200 OK 266 B URL HTTP/2 api.facebook.com/method/links.getStats?urls=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&format=json&callback=jQuery1102008914246289052152_1663857727364&_=1663857727365
IP 157.240.200.16:0
File type ASCII text, with very long lines (436), with no line terminators
Hash 1a9ff32762985c1789bbee8e9d016c9c
d1644326918da9f8662f8eda4be98d342b8a3844
58c23a875bdf35fb4d1c6c86dd634505dee659ea08904ea25ff5eb81bf4ce77d
GET /method/links.getStats?urls=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&format=json&callback=jQuery1102008914246289052152_1663857727364&_=1663857727365 HTTP/1.1
Host: api.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
facebook-api-version: v8.0
access-control-allow-origin: *
content-type: text/javascript;charset=utf-8
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: AsF917gbBa6b27K0ggkPiDS
x-fb-trace-id: BYyskN/+piJ
x-fb-rev: 1006251251
x-fb-debug: tDctDy/jPFV8EotIvrlTh+XOUaPZ1qjxfldbwkFmG+NqrFSg0TiSVX5D7UfLpDkkVrIzMOI7pzQk42RqOzhJdQ==
content-length: 266
date: Thu, 22 Sep 2022 14:42:10 GMT
X-Firefox-Spdy: h2
graph.facebook.com/?id=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727362&_=1663857727363
157.240.200.16200 OK 196 B URL HTTP/2 graph.facebook.com/?id=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727362&_=1663857727363
IP 157.240.200.16:0
Hash ee5bf28eaabff6fbcefafa1b5accefcd
1074da7659edd5be6e761cb4faf8485275e1fc10
3cb24a1193a8533735808b848ee5901a4340c7e3ffc1ccf1cdca28c39cc426d4
GET /?id=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727362&_=1663857727363 HTTP/1.1
Host: graph.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
vary: Origin, Accept-Encoding
x-fb-rlafr: 0
content-type: text/javascript; charset=UTF-8
www-authenticate: OAuth "Facebook Platform" "invalid_request" "(#2) Service temporarily unavailable"
access-control-allow-origin: *
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: no-store
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: A6gd1O9h7TwPfJP3X_VRKDZ
x-fb-trace-id: G++RnPgKhuj
x-fb-rev: 1006251251
x-fb-debug: V9KrBo5ejyH9vmyh/wp4S4D30n9Q0V8QAhFeZ0P8rYuHWuDyUG0ku9Doz1slYUoH7rrkJfDb1hZjl/54rvsfKw==
content-length: 196
date: Thu, 22 Sep 2022 14:42:10 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.reddit.com/button_info.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&jsonp=jQuery1102008914246289052152_1663857727368&_=1663857727369
151.101.85.140200 OK 168 B URL HTTP/2 www.reddit.com/button_info.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&jsonp=jQuery1102008914246289052152_1663857727368&_=1663857727369
IP 151.101.85.140:0
File type ASCII text, with no line terminators
Hash f73442023f0b6adcdf4ed879894dd7d2
8b8716a420a1dadcc1336cb957e4e23d1e857ca5
e9533ad13ac99577dc4294ae4e6694530a5c20aaf09f61e8be7665376944339d
GET /button_info.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&jsonp=jQuery1102008914246289052152_1663857727368&_=1663857727369 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://southernbeautyguide.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-ua-compatible: IE=edge
expires: -1
cache-control: private, s-maxage=0, max-age=0, must-revalidate, no-store
x-ratelimit-remaining: 299
x-ratelimit-used: 1
x-ratelimit-reset: 470
access-control-allow-origin: *
access-control-expose-headers: X-Moose
x-moose: majestic
accept-ranges: bytes
date: Thu, 22 Sep 2022 14:42:10 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
set-cookie: csv=2; Max-Age=63072000; Domain=.reddit.com; Path=/; Secure; SameSite=None
edgebucket=E7IA59Lmkg1aGjoUfl; Domain=reddit.com; Max-Age=63071999; Path=/; secure
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 168
X-Firefox-Spdy: h2
sumo.com/api/jsonpcallback
52.34.133.113200 OK 16 B URL HTTP/2 sumo.com/api/jsonpcallback
IP 52.34.133.113:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /api/jsonpcallback HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 184
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:11 GMT
content-type: application/json; charset=utf-8
content-length: 16
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://southernbeautyguide.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
www.yummly.com/services/yum-count?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727370&_=1663857727371
104.18.26.71200 OK 11 B URL HTTP/2 www.yummly.com/services/yum-count?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727370&_=1663857727371
IP 104.18.26.71:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 76ab2c1fa8511f19f05feacc08fb4f83
721ecc370c3dfb1518a1382eb5b1abe9553419a5
618de7d9f46f3f697d827a1b6d84974760d5deda62e4e592adaa3c646602a94c
GET /services/yum-count?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727370&_=1663857727371 HTTP/1.1
Host: www.yummly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:11 GMT
content-type: application/json; charset=UTF-8
content-length: 11
cache-control: private
x-yummly-req-id: 36a595d8-7d73-4c69-8ba2-45aa5225d881
access-control-max-age: 86400
access-control-allow-headers: DNT,User-Agent,Cache-Control,Content-Type,X-Yummly-Auth-Token,Accept,Authorization,If-Match,If-None-Match,If-Modified-Since,If-Unmodified-Since,X-Yummly-App-Id,X-Yummly-App-Key,X-Visitor,X-Yummly-Type,X-Forwarded-For,X-Yummly-Locale,X-Yummly-Domain,X-Yummly-Timeout-Millis
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src wss://ws.ttsep.com/ accounts.google.com 'self' blob: data: 'unsafe-inline' 'unsafe-eval' https:; form-action https:; upgrade-insecure-requests;
x-content-security-policy: default-src wss://ws.ttsep.com/ accounts.google.com 'self' blob: data: 'unsafe-inline' 'unsafe-eval' https:; form-action https:; upgrade-insecure-requests;
referrer-policy: origin-when-cross-origin
last-modified: Thu, 22 Sep 2022 14:42:11 GMT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ebce409e53b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aa776f5cb0851d32863752eb7d5b1aa6
7f4270d6d01afbf62d1951377886f287fbc45d6e
517fe645fa28821f9d9e83ffa486fa90fd872b4e3e86c49c7c974b912b4181d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1011
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 14:42:11 GMT
Last-Modified: Thu, 22 Sep 2022 14:25:20 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
sumo.com/api/jsonpcallback
52.34.133.113200 OK 16 B URL HTTP/2 sumo.com/api/jsonpcallback
IP 52.34.133.113:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /api/jsonpcallback HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 181
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:11 GMT
content-type: application/json; charset=utf-8
content-length: 16
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://southernbeautyguide.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
api.bufferapp.com/1/links/shares.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727360&_=1663857727361
104.16.139.31200 OK 125 B URL HTTP/2 api.bufferapp.com/1/links/shares.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727360&_=1663857727361
IP 104.16.139.31:0
Hash 173deeb1c3708e24a95df1e9ebde8cc0
6e7d9c2e8c89216b78c7fac0e8ff8bddb825b659
44edbc151f5551eebc80386bb9633888d238276e34f51b1d24da0aa9aa0218e8
GET /1/links/shares.json?url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&callback=jQuery1102008914246289052152_1663857727360&_=1663857727361 HTTP/1.1
Host: api.bufferapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:11 GMT
content-type: text/javascript; charset=utf-8
etag: W/"82-EI/3NcU4xcDg16OOEptEwUMfe8I"
x-content-type-options: nosniff
x-powered-by: Express
cf-cache-status: MISS
expires: Fri, 23 Sep 2022 02:42:11 GMT
cache-control: public, max-age=43200
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ebce41afba0af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
load.sumo.com/72.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/72.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /72.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:07 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"a1c4ecc2ca5bc12d61068cd427f9729f"
last-modified: Mon, 01 Aug 2022 17:37:14 GMT
x-amz-id-2: yncNVLF2WNTvfJNP5kgASaiZWLNa84vsckpGLCsBd0rTvIK+s4Z1y1Nb+RCG+2BivC/7SoYE1tk=
x-amz-request-id: ARECMNYEHV1MDN3P
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 577b2d09bf7473c8e10d46b5fabd3b48
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
secure.gravatar.com/dist/css/hovercard.min.css?ver=202238
192.0.73.2200 OK 0 B URL HTTP/2 secure.gravatar.com/dist/css/hovercard.min.css?ver=202238
IP 192.0.73.2:0
GET /dist/css/hovercard.min.css?ver=202238 HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:07 GMT
content-type: text/css
last-modified: Wed, 11 Nov 2020 15:57:10 GMT
etag: W/"5fac09d6-1e86"
content-encoding: br
expires: Thu, 29 Sep 2022 14:42:07 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2
sumo.com/services
52.34.133.113200 OK 0 B IP 52.34.133.113:0
POST /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Sumo-Auth: vuBFyLMfi401jVPkSVvvIJnM
Content-Length: 835
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:10 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://southernbeautyguide.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-encoding: gzip
set-cookie: __smSessionId=s%3Auts0GRqCf7yaVb6Q7oRDcEYZ.b3t9XSj1m0o6woBuGausym%2FPLfov3Vur5%2Bp28TxUt80; Path=/; Expires=Thu, 22 Sep 2022 23:27:46 GMT; HttpOnly
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
load.sumo.com/15.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/15.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /15.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:10 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"6e9c6264954bf1f04a63db8a9fd0f653"
last-modified: Mon, 01 Aug 2022 17:36:20 GMT
x-amz-id-2: NHV5nlq+mDq2N08HvurKnzVQnKPySSwxEWj2WYoaW/C+P7eJg+68ngWotd3+C7uSI3uDKN8MRL0=
x-amz-request-id: MGA3NT1S3CPH1HS6
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 12:08:08
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0ee8595ad13644f4053583d1a0b39856
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/comment-reply.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/comment-reply.min.js
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/comment-reply.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css?ver=1.0.0
104.26.7.173200 OK 0 B URL HTTP/2 code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css?ver=1.0.0
IP 104.26.7.173:0
GET /ionicons/2.0.1/css/ionicons.min.css?ver=1.0.0 HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 28 Jun 2022 16:06:13 GMT
access-control-allow-origin: *
etag: W/"62bb26f5-c854"
expires: Tue, 20 Sep 2022 19:21:23 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
x-github-request-id: 12E0:19CE:27C828:3663C6:632A1097
via: 1.1 varnish
age: 48165
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1663809561.634219,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: f6a24a7615174ebc1f5a9a34966f61da2b1b994f
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lYm%2BOsnExMC2RM38zKw6TAghD43CYftNSFgYQ%2FIvOZ9y1T8umE0dymE%2Ffy6BKK9mxfaV01Fs8aGE8bmBfxwNchnP%2FxoXYAlrniHi9CUKG%2FRY5OJ%2BXktQUxHFQxNaI7PsDmhwGIvDBJnu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ebce235f1a1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/iframe
216.58.207.237200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/iframe
IP 216.58.207.237:0
GET /o/oauth2/iframe HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 22 Sep 2022 14:42:09 GMT
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-JkesjRX5pKHMmOk2ncr2-w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/IdpIFrameHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/IdpIFrameHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/IdpIFrameHttp/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.2/_inc/social-logos/social-logos.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.2/_inc/social-logos/social-logos.min.css
IP 192.0.77.37:0
GET /p/jetpack/11.2/_inc/social-logos/social-logos.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 30 Jun 2020 14:24:10 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
code.ionicframework.com/ionicons/2.0.1/fonts/ionicons.ttf?v=2.0.1
104.26.7.173200 OK 0 B URL HTTP/2 code.ionicframework.com/ionicons/2.0.1/fonts/ionicons.ttf?v=2.0.1
IP 104.26.7.173:0
GET /ionicons/2.0.1/fonts/ionicons.ttf?v=2.0.1 HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://southernbeautyguide.com
Connection: keep-alive
Referer: https://code.ionicframework.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 28 Jun 2022 16:06:13 GMT
access-control-allow-origin: *
etag: W/"62bb26f5-2e05c"
expires: Sun, 18 Sep 2022 20:51:06 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
x-github-request-id: 080E:02F6:EBB72F:15B5B9E:6327838F
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663857727.884657,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: dd985d9ebb2af5a4a831788a6ad4e7fcc241c659
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Zy8JFnk66q%2BH0rRakBnlqnhEDIwmsOYvnuizxCkqXIC7XFA0mqLoUPOD6aT0qozl8NG%2BrRGdQgupM6hmaLeT5SjvlQkQpfAxbi%2FRPboOXkth%2F6E7B1mQlkjQioAbM1ByZmdxuH2ZSnI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ebce28ed691bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
load.sumo.com/73.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/73.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /73.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:07 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"ad6f2454f01de902ffd473d51c1207bf"
last-modified: Mon, 01 Aug 2022 17:37:15 GMT
x-amz-id-2: OOvxH0wmydvCCpb9NHH6caPdDxPK5MEQ+WKSX/GLdPxShJclDaUyJkuQ+K1KKMlliOAzmXxVnj4=
x-amz-request-id: VQBXKHDA6AE3DC4A
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 19:27:38
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 291a3fcf7efdf1657a5b3ae86ae21a68
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
linqia.ooh.li/8d4191875120/linqia.js
35.153.191.230200 OK 0 B URL HTTP/2 linqia.ooh.li/8d4191875120/linqia.js
IP 35.153.191.230:0
GET /8d4191875120/linqia.js HTTP/1.1
Host: linqia.ooh.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
server: Apache/2.4.25 (Debian)
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
expires: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-credentials: True
access-control-allow-origin: ('*',)
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
set-cookie: jid=2083fbffdb85f2a1cde5b5cafe4b7812; Domain=.ooh.li; expires=Sat, 31 Dec 2050 00:00:00 GMT; Path=/
sid="2022-09-22T14:42:06.338628Z"; Domain=.ooh.li; Path=/
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css?ver=6.0.2
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css?ver=6.0.2
IP 104.18.10.207:0
GET /font-awesome/4.2.0/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"feda974a77ea5783b8be673f142b7c88"
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 04/09/2022 07:23:58
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 5c29851362ac5884390b28389f57eb9b
cdn-cache: HIT
cf-cache-status: HIT
age: 1968519
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74ebce239c640b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cardo%3A400%2C400i%7CMontserrat%3A300%2C400%7CWork+Sans%3A400%2C700&ver=1.0.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Cardo%3A400%2C400i%7CMontserrat%3A300%2C400%7CWork+Sans%3A400%2C700&ver=1.0.0
IP 142.250.74.10:0
GET /css?family=Cardo%3A400%2C400i%7CMontserrat%3A300%2C400%7CWork+Sans%3A400%2C700&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 14:42:06 GMT
date: Thu, 22 Sep 2022 14:42:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.gleam.io/oi-ll0dokc.js
172.66.40.77404 Not Found 0 B URL HTTP/2 js.gleam.io/oi-ll0dokc.js
IP 172.66.40.77:0
GET /oi-ll0dokc.js HTTP/1.1
Host: js.gleam.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Thu, 22 Sep 2022 14:42:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-request-id: 01885330-a352-4839-b336-7435f744d209
x-runtime: 0.039045
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self'; object-src 'none'; script-src 'unsafe-inline' 'unsafe-eval' https:; worker-src 'self' blob:; report-uri /csp-report
cf-cache-status: EXPIRED
set-cookie: __cf_bm=A7NRF4jxVz5EtLaI9mForeM1AYGko.8mSN4zStL1XJw-1663857728-0-AXofeUJEUUQYAtoLCJtKia2RALShKp8UUzg7aSFn4O+6EN7RUieI9uNyzqXyL6Y0/oS7iE7X/9CmBr8b2fjGs1g=; path=/; expires=Thu, 22-Sep-22 15:12:08 GMT; domain=.gleam.io; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 74ebce323f5c0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.2/css/jetpack.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.2/css/jetpack.css
IP 192.0.77.37:0
GET /p/jetpack/11.2/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 17:25:16 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
192.124.249.61200 OK 0 B URL HTTP/2 southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
IP 192.124.249.61:0
GET /2013/03/diy-z-palette-depotting.html HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
x-pingback: https://southernbeautyguide.com/xmlrpc.php
link: <https://southernbeautyguide.com/wp-json/>; rel="https://api.w.org/", <https://southernbeautyguide.com/wp-json/wp/v2/posts/600>; rel="alternate"; type="application/json", <https://wp.me/p5QTsn-9G>; rel=shortlink
etag: "123059-1663857719;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/css/dashicons.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/css/dashicons.min.css
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/css/dashicons.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 03 Mar 2021 21:16:22 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
load.sumo.com/
194.242.11.186200 OK 0 B IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET / HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:07 GMT
content-type: text/javascript
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=600
etag: W/"415c9608bc47ee8a16b3a2f2c0aee7b0"
last-modified: Mon, 01 Aug 2022 17:37:40 GMT
x-amz-id-2: TenILOBvBYV+WXEDJY2eKu/k670ZVbkjtUVQ4rSIdwoI8cwJ74K8iYZfL7RSdA7SxsHkYOKN4Bw=
x-amz-request-id: GZXSAF0AYHZTY8ZR
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/17/2022 06:13:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 16adfe54d3ec1e1397606089e542fcfc
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/thickbox/thickbox.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/thickbox/thickbox.js
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/thickbox/thickbox.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 23 Feb 2021 10:54:06 GMT
content-encoding: br
expires: Fri, 22 Sep 2023 14:42:05 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
southernbeautyguide.com/wp-content/plugins/genesis-simple-share/assets/js/waypoints.min.js?ver=0.1.0
192.124.249.61200 OK 0 B URL HTTP/2 southernbeautyguide.com/wp-content/plugins/genesis-simple-share/assets/js/waypoints.min.js?ver=0.1.0
IP 192.124.249.61:0
GET /wp-content/plugins/genesis-simple-share/assets/js/waypoints.min.js?ver=0.1.0 HTTP/1.1
Host: southernbeautyguide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/2013/03/diy-z-palette-depotting.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 14:42:06 GMT
content-type: application/javascript
content-length: 2279
x-sucuri-id: 19011
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Nov 2019 19:33:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
widgets.pinterest.com/v1/urls/count.json?callback=jQuery1102008914246289052152_1663857727366&source=6&url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&_=1663857727367
151.101.84.84200 OK 0 B URL HTTP/2 widgets.pinterest.com/v1/urls/count.json?callback=jQuery1102008914246289052152_1663857727366&source=6&url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&_=1663857727367
IP 151.101.84.84:0
GET /v1/urls/count.json?callback=jQuery1102008914246289052152_1663857727366&source=6&url=https%3A%2F%2Fsouthernbeautyguide.com%2F2013%2F03%2Fdiy-z-palette-depotting.html&_=1663857727367 HTTP/1.1
Host: widgets.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Thu, 22 Sep 2022 14:57:10 GMT
x-envoy-upstream-service-time: 2
x-pinterest-rid: 1606624968433086
accept-ranges: none
date: Thu, 22 Sep 2022 14:42:10 GMT
content-encoding: br
vary: accept-encoding
X-Firefox-Spdy: h2
load.sumo.com/11.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/11.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /11.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://southernbeautyguide.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 14:42:10 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"4624ceb9029a934a36424d836cf4cc37"
last-modified: Mon, 01 Aug 2022 17:36:16 GMT
x-amz-id-2: CcmL6MncxIAyT0N/YitjMpmZg7j5aaXl2gp/qA9kiMdUqmbflyP98FSkIMY7aWIHllWpKWIbCVA=
x-amz-request-id: 7009GYMXNRGD2HNX
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 12:08:27
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f3945367e0890979b2ff9c37742715f8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2