r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2278
Expires: Wed, 01 Feb 2023 13:26:21 GMT
Date: Wed, 01 Feb 2023 12:48:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6161
Expires: Wed, 01 Feb 2023 14:31:04 GMT
Date: Wed, 01 Feb 2023 12:48:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6099
Expires: Wed, 01 Feb 2023 14:30:02 GMT
Date: Wed, 01 Feb 2023 12:48:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 12:43:25 GMT
content-type: application/json
age: 298
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ppgNODBaYRhPbtGZtaAy0YqoPd0t8gqwEeLJALr2RCt4/Iv0wOIW6rnF/Gakd7uQufiIMUWzZLQ=
x-amz-request-id: ZV1K8C43J8MW7Z4X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 11:51:33 GMT
age: 3410
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 12:48:23 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 12:41:42 GMT
age: 401
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
fashionista-cute.blogspot.com/search/label/isabeli
142.250.74.1200 OK 16 kB URL HTTP/1.1 fashionista-cute.blogspot.com/search/label/isabeli
IP 142.250.74.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13112)
Hash 9838b840ff6e68c3760530e6f485c23f
8af23bda202417b4cfffb893fc03bd23758cfe81
235ad08358e79c571b7ce8a4bbbd5de3d4ed85d6f19202bea1f8ab535757bac8
GET /search/label/isabeli HTTP/1.1
Host: fashionista-cute.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 01 Feb 2023 12:48:24 GMT
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 28 Nov 2022 10:16:09 GMT
ETag: W/"bcb2ef4d5a0c13c84a7b34307869b7a9427b92ac7900d3e29993210f1b2c57c5"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15747
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16648
Expires: Wed, 01 Feb 2023 17:25:52 GMT
Date: Wed, 01 Feb 2023 12:48:24 GMT
Connection: keep-alive
fashionista-cute.blogspot.com/js/cookienotice.js
142.250.74.1200 OK 2.0 kB URL HTTP/1.1 fashionista-cute.blogspot.com/js/cookienotice.js
IP 142.250.74.1:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: fashionista-cute.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/search/label/isabeli
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:52 GMT
Expires: Wed, 08 Feb 2023 11:20:52 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 01 Feb 2023 08:40:27 GMT
Content-Type: text/javascript
Age: 5252
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash fdbf000f99c93d77c5169461da113540
a04cfd05dbda17eba5660db0fcdeeef482af339a
152308cc51f2263be54334999586abda3f7c0652abe171ecbc8839b1cc578a29
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f0291a1faf02a3c9ba4bed27ef49d2f0
986d5dec070099caf0cb89921c6b463b46ddc5e6
14a26688dcdc5c56e77d621c17ccabe6901173fbb0551af466f57a062f461e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f0291a1faf02a3c9ba4bed27ef49d2f0
986d5dec070099caf0cb89921c6b463b46ddc5e6
14a26688dcdc5c56e77d621c17ccabe6901173fbb0551af466f57a062f461e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 09:41:18 GMT
expires: Wed, 31 Jan 2024 09:41:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 14:52:06 GMT
content-type: text/css
age: 97626
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 20:56:35 GMT
expires: Wed, 01 Feb 2023 20:56:35 GMT
cache-control: public, max-age=604800
last-modified: Wed, 25 Jan 2023 14:53:31 GMT
content-type: image/gif
age: 575509
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
216.58.207.238200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Wed, 01 Feb 2023 12:48:24 GMT
expires: Wed, 01 Feb 2023 12:48:24 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2045757162-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2045757162-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash edbc7ab2d53c09471714144789724544
ba36fe6362dccb6bcf542726920a97acde555dec
525408a1919e4cc7ef36c85e43c2dbdbf323aac64299cc06caaf982ca56e4ddc
GET /static/v1/widgets/2045757162-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56488
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 02:36:28 GMT
expires: Tue, 30 Jan 2024 02:36:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 01:50:10 GMT
content-type: text/javascript
age: 209516
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-xRcwljarsVQ/Th9KaeZZ3CI/AAAAAAAAFiM/xavHCNjGm9Y/w72-h72-p-k-no-nu/handbags-BOTTEGA+VENETA-+Clutches-women+handbags+%25285%2529.jpg
142.250.74.161200 OK 3.2 kB URL HTTP/1.1 3.bp.blogspot.com/-xRcwljarsVQ/Th9KaeZZ3CI/AAAAAAAAFiM/xavHCNjGm9Y/w72-h72-p-k-no-nu/handbags-BOTTEGA+VENETA-+Clutches-women+handbags+%25285%2529.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google, copyright=OLIVIER CLAISSE], baseline, precision 8, 72x72, components 3\012- data
Hash f5d73ef5b8c2a883fae44d4382f41a65
f57c35206a8de91a27ca06e634c3013deb356a94
128e4e6999e1a2ae4529a957851a6162075b769b23d32230be28f7c46c4d64ba
GET /-xRcwljarsVQ/Th9KaeZZ3CI/AAAAAAAAFiM/xavHCNjGm9Y/w72-h72-p-k-no-nu/handbags-BOTTEGA+VENETA-+Clutches-women+handbags+%25285%2529.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="handbags-BOTTEGA VENETA- Clutches-women handbags (5).jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3220
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 11:20:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1623"
Content-Type: image/jpeg
Age: 5251
i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg
54.230.111.17301 Moved Permanently 167 B URL HTTP/1.1 i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg
IP 54.230.111.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/s282/theviejo/recurso_10_1.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 01 Feb 2023 12:48:24 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cDBY7HtwmaRY4T5h1NEvY8Tck8mzlTanxRcP1-T6YrGbYZ1p9xs3rw==
Vary: Origin
3.bp.blogspot.com/-7lMXjQhcsmo/TVQt8zW-E1I/AAAAAAAAAXI/2YEuM5q4-Qc/w72-h72-p-k-no-nu/Women%25E2%2580%2599s-undergarments-and-Bra-types1.jpg
142.250.74.161200 OK 3.6 kB URL HTTP/1.1 3.bp.blogspot.com/-7lMXjQhcsmo/TVQt8zW-E1I/AAAAAAAAAXI/2YEuM5q4-Qc/w72-h72-p-k-no-nu/Women%25E2%2580%2599s-undergarments-and-Bra-types1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash c9c1c8fe645816e9d02d0f38ec966feb
4d1a59ce673a454bb7c316e71c22931495053d0c
c061d7b6ab0dde1817e1510e17fbf12e7905b5a00b90ddfafbfefa4ce0d6affa
GET /-7lMXjQhcsmo/TVQt8zW-E1I/AAAAAAAAAXI/2YEuM5q4-Qc/w72-h72-p-k-no-nu/Women%25E2%2580%2599s-undergarments-and-Bra-types1.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Women_s-undergarments-and-Bra-types1.jpg";filename*=UTF-8''Women%E2%80%99s-undergarments-and-Bra-types1.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3626
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 11:20:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v172"
Content-Type: image/jpeg
Age: 5251
3.bp.blogspot.com/-VDFkdF4JaE8/TaoUyK7yMOI/AAAAAAAAC6Q/8JloOFqvkCo/w72-h72-p-k-no-nu/3d-Naked+Heels+And+Shoes.jpeg
142.250.74.161200 OK 2.6 kB URL HTTP/1.1 3.bp.blogspot.com/-VDFkdF4JaE8/TaoUyK7yMOI/AAAAAAAAC6Q/8JloOFqvkCo/w72-h72-p-k-no-nu/3d-Naked+Heels+And+Shoes.jpeg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a2f7187e95ffc657852d6a1f19ce359b
f25c43753ed5365502d251b8e5f8eb32eb15b8f3
40a3cd8d28b7ab0cc2049bc5aacd4950c81736ab2ae66bfed5e70e5c003d2ddb
GET /-VDFkdF4JaE8/TaoUyK7yMOI/AAAAAAAAC6Q/8JloOFqvkCo/w72-h72-p-k-no-nu/3d-Naked+Heels+And+Shoes.jpeg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="3d-Naked Heels And Shoes.jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2607
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 11:20:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vba4"
Content-Type: image/jpeg
Age: 5251
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
216.58.207.238200 OK 61 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
IP 216.58.207.238:0
File type ASCII text, with very long lines (1448)
Hash 62f98a42acaa85f40e228f65e5ee2361
a41c1755a6a2708340b74638f11ebdeed8e977db
54acbd2f18406888cbe8ee3fc76b512081c7c1c0102a4b1f7eef6cd11fc60f15
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 60741
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:43:22 GMT
expires: Sat, 27 Jan 2024 18:43:22 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
age: 410702
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-1c-Uo22-FEg/Tba19lxPNXI/AAAAAAAADYU/jX2bqdpkN_I/w72-h72-p-k-no-nu/Naomi+Watts%252Cpics%252Chairstyles%252Cdress%252Ccelebrity%252CNaomi+Watts+2011%252C+%25283%2529.jpg
142.250.74.161200 OK 3.8 kB URL HTTP/1.1 3.bp.blogspot.com/-1c-Uo22-FEg/Tba19lxPNXI/AAAAAAAADYU/jX2bqdpkN_I/w72-h72-p-k-no-nu/Naomi+Watts%252Cpics%252Chairstyles%252Cdress%252Ccelebrity%252CNaomi+Watts+2011%252C+%25283%2529.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7cddfa085cd18861ca762d5640179e20
16beaf12595c26b953018e255a1472a3331ed078
ccca4b1b10b11417a8ea91afba8871cac959ba961e31dd086af6694c425f0ab2
GET /-1c-Uo22-FEg/Tba19lxPNXI/AAAAAAAADYU/jX2bqdpkN_I/w72-h72-p-k-no-nu/Naomi+Watts%252Cpics%252Chairstyles%252Cdress%252Ccelebrity%252CNaomi+Watts+2011%252C+%25283%2529.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Naomi Watts,pics,hairstyles,dress,celebrity,Naomi Watts 2011, (3).jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3839
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 11:20:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vd85"
Content-Type: image/jpeg
Age: 5251
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.98200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.98:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 09:56:41 GMT
Expires: Wed, 15 Feb 2023 09:56:41 GMT
Cache-Control: public, max-age=1209600
Age: 10303
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
blogergadgets.googlecode.com/files/blogger-page-navi.v1.js
64.233.165.82404 Not Found 1.6 kB URL HTTP/1.1 blogergadgets.googlecode.com/files/blogger-page-navi.v1.js
IP 64.233.165.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 53e8ba9d78d716ac415992baf2b8b52d
69ea09f7d14e71a1b6dc56f79d87ed9fbc94c208
a3cee3ae6a29f4ec7f4b01193da8a9e56e5fc52aa721e9d549cf7b8cf7081b49
GET /files/blogger-page-navi.v1.js HTTP/1.1
Host: blogergadgets.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1590
Date: Wed, 01 Feb 2023 12:48:24 GMT
i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg
54.230.111.17200 OK 828 B URL HTTP/2 i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg
IP 54.230.111.17:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7e4bfcf5598532d685afb6880890d697
0816a2a8c5a86fe51c323717a1cbf556c5bddcbc
5c8b248d18273fe484a518c2421f006f8bc59290757839454d6d72dcd147864b
GET /albums/s282/theviejo/recurso_10_1.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://fashionista-cute.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 828
date: Wed, 01 Feb 2023 11:20:53 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="recurso_10_1.webp"
content-security-policy: script-src 'none'
expires: Thu, 01 Feb 2024 11:20:53 GMT
server: photobucket
x-amzn-trace-id: Root=1-63da4b15-62f52bb8509872b9553d606a
x-request-id: 2Li4EGjq1iVQTfps2rys2
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AwGE5ykJesmaxeywHUKDPFrPEIiYoeRbzfMgI29cmHihsVibIyqs9w==
age: 5251
vary: Accept, Origin
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.43.88.238101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.88.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MXPTz3gjJv2sxvH/lEEQCw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C+gxeirZeJ4AgHwPrVDNyl2aViY=
3.bp.blogspot.com/-nS6u-ICr2VU/Tkuh7QL_NoI/AAAAAAAAFwQ/v9n4K7K5yZI/w72-h72-p-k-no-nu/Kim+Kardashian+and+Kris+Humphries-kim+and+chris-wedding+pics+%252819%2529.jpg
142.250.74.161200 OK 4.4 kB URL HTTP/1.1 3.bp.blogspot.com/-nS6u-ICr2VU/Tkuh7QL_NoI/AAAAAAAAFwQ/v9n4K7K5yZI/w72-h72-p-k-no-nu/Kim+Kardashian+and+Kris+Humphries-kim+and+chris-wedding+pics+%252819%2529.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash b3055b9334028a40b517c5c6c9d3abba
a731a9a234be2a5c815e30aefc16a39187880b22
facac826f0b967a995f6b64fa72eb49624090bb550a52b6668e95fcaa61c4123
GET /-nS6u-ICr2VU/Tkuh7QL_NoI/AAAAAAAAFwQ/v9n4K7K5yZI/w72-h72-p-k-no-nu/Kim+Kardashian+and+Kris+Humphries-kim+and+chris-wedding+pics+%252819%2529.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Kim Kardashian and Kris Humphries-kim and chris-wedding pics (19).jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4390
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 11:20:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3a3a"
Content-Type: image/jpeg
Age: 5251
3.bp.blogspot.com/-sOXSH_pzqps/TWO9G0wQyTI/AAAAAAAAArc/C3bcjpaTX8Q/w72-h72-p-k-no-nu/Converse-All-Star-FRUIT-HI.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 3.bp.blogspot.com/-sOXSH_pzqps/TWO9G0wQyTI/AAAAAAAAArc/C3bcjpaTX8Q/w72-h72-p-k-no-nu/Converse-All-Star-FRUIT-HI.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash b1b6ef0fc6eab0203ca92f824b4cf37a
837f21f291b45dd7f45d348dd960a2b85db2c274
781748abce84b9922ec2bf59fa6361c92926de22b3fe994b64b5ecc18a3d0c68
GET /-sOXSH_pzqps/TWO9G0wQyTI/AAAAAAAAArc/C3bcjpaTX8Q/w72-h72-p-k-no-nu/Converse-All-Star-FRUIT-HI.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Converse-All-Star-FRUIT-HI.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3053
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 11:20:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2b7"
Content-Type: image/jpeg
Age: 5251
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f0291a1faf02a3c9ba4bed27ef49d2f0
986d5dec070099caf0cb89921c6b463b46ddc5e6
14a26688dcdc5c56e77d621c17ccabe6901173fbb0551af466f57a062f461e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/_ba0eJBJ85vA/THRgJ8uXpFI/AAAAAAAAC7U/PPoMhG0vCVQ/s1600/4gtihr6m.jpg
142.250.74.161200 OK 795 B URL HTTP/1.1 1.bp.blogspot.com/_ba0eJBJ85vA/THRgJ8uXpFI/AAAAAAAAC7U/PPoMhG0vCVQ/s1600/4gtihr6m.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 850x33, components 3\012- data
Hash a54ccb995921801759795d8b68c009a4
4886d55a576edfd4a37c80f7decf940c2bbd5bf6
4ca3a45ca14ae6a5100aff9feb95c704ea9835bf1066e3cc222a6e0fc85e2e63
GET /_ba0eJBJ85vA/THRgJ8uXpFI/AAAAAAAAC7U/PPoMhG0vCVQ/s1600/4gtihr6m.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="4gtihr6m.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 795
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 06:11:54 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 5251
ETag: "vbb5"
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f0291a1faf02a3c9ba4bed27ef49d2f0
986d5dec070099caf0cb89921c6b463b46ddc5e6
14a26688dcdc5c56e77d621c17ccabe6901173fbb0551af466f57a062f461e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 403245b72f4a949d2133dd84f16291dd
e357d21db37a95ea7586c85cee76ee8fc7851d89
cfc952564db03567db2d8846119eb2ac6fa850902b1bced80ab04bbaf2d2a05b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-z65ICz1annU/ToQwROzEj5I/AAAAAAAAGFY/XnbbX1geEW8/s640/Isabeli_Fontana-ifblkrobe05.jpg
142.250.74.161200 OK 68 kB URL HTTP/1.1 2.bp.blogspot.com/-z65ICz1annU/ToQwROzEj5I/AAAAAAAAGFY/XnbbX1geEW8/s640/Isabeli_Fontana-ifblkrobe05.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 427x640, components 3\012- data
Hash 3b7e9cc1936bbb52c60bc9a6642fc33f
7ec5cc7ae87d5c077e749a39a7c86f59ef19f349
38774baa5e44388147ac7c668e781f9b034912f30f857cbeb0406b89cc3d8d0f
GET /-z65ICz1annU/ToQwROzEj5I/AAAAAAAAGFY/XnbbX1geEW8/s640/Isabeli_Fontana-ifblkrobe05.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1856"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Isabeli_Fontana-ifblkrobe05.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 68310
X-XSS-Protection: 0
lh3.googleusercontent.com/-OFBeDR55izM/TWrGDEos57I/AAAAAAAAAw0/5UKE4uykgrU/w72-h72-p-k-no-nu/hilaryswank_06-stevenmeiselphotoshoot.jpg
142.250.74.97200 OK 1.9 kB URL HTTP/2 lh3.googleusercontent.com/-OFBeDR55izM/TWrGDEos57I/AAAAAAAAAw0/5UKE4uykgrU/w72-h72-p-k-no-nu/hilaryswank_06-stevenmeiselphotoshoot.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7514f31a9fb35304d457e166a926a56e
a941ab5dabd50e2ce629e60565b00cc22d7c8f14
7e60618fcd2f5b38a17c1a02eef9fe492599c5c329b75eadb03db24c6f5eb309
GET /-OFBeDR55izM/TWrGDEos57I/AAAAAAAAAw0/5UKE4uykgrU/w72-h72-p-k-no-nu/hilaryswank_06-stevenmeiselphotoshoot.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="hilaryswank_06-stevenmeiselphotoshoot.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1902
x-xss-protection: 0
date: Wed, 01 Feb 2023 11:20:53 GMT
expires: Thu, 02 Feb 2023 11:20:53 GMT
cache-control: public, max-age=86400, no-transform
etag: "v30d"
content-type: image/jpeg
age: 5251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 403245b72f4a949d2133dd84f16291dd
e357d21db37a95ea7586c85cee76ee8fc7851d89
cfc952564db03567db2d8846119eb2ac6fa850902b1bced80ab04bbaf2d2a05b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-JU6ouum0dtg/TpAdpM1UALI/AAAAAAAAGME/hg7m_2V9HJ4/w72-h72-p-k-no-nu/Kelly-kelly-ripa-24835534-1280-960.jpg
142.250.74.161200 OK 2.5 kB URL HTTP/1.1 2.bp.blogspot.com/-JU6ouum0dtg/TpAdpM1UALI/AAAAAAAAGME/hg7m_2V9HJ4/w72-h72-p-k-no-nu/Kelly-kelly-ripa-24835534-1280-960.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ca4fbb02153dd13b91dd1aae7547b25b
f59c9f867687c7e21dbdfb343fcdc8ce2808fc7b
3c81118abc6a8f9de47761b25dc9ba4c51407ce4b3cd249167efea2980ba1d9d
GET /-JU6ouum0dtg/TpAdpM1UALI/AAAAAAAAGME/hg7m_2V9HJ4/w72-h72-p-k-no-nu/Kelly-kelly-ripa-24835534-1280-960.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Kelly-kelly-ripa-24835534-1280-960.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2490
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 11:20:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3c31"
Content-Type: image/jpeg
Age: 5251
lh3.googleusercontent.com/-xhGuTxiG1xg/TYZektuez5I/AAAAAAAABto/1peLb7pmKao/w72-h72-p-k-no-nu/American+Idol+2011+Top+11.jpg
142.250.74.97200 OK 4.8 kB URL HTTP/2 lh3.googleusercontent.com/-xhGuTxiG1xg/TYZektuez5I/AAAAAAAABto/1peLb7pmKao/w72-h72-p-k-no-nu/American+Idol+2011+Top+11.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 8f04e9e002465efda86d5deb8ab935bf
5d21de39669f63b1ccda007017533ef8251974bc
43ce44f5ad9658a34d911b48c67038cafa5cb4c0b13e6228f3c41a7a857a1584
GET /-xhGuTxiG1xg/TYZektuez5I/AAAAAAAABto/1peLb7pmKao/w72-h72-p-k-no-nu/American+Idol+2011+Top+11.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="American Idol 2011 Top 11.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4823
x-xss-protection: 0
date: Wed, 01 Feb 2023 11:20:53 GMT
expires: Thu, 02 Feb 2023 11:20:53 GMT
cache-control: public, max-age=86400, no-transform
etag: "v6da"
content-type: image/jpeg
age: 5251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-gfXE5ORsVfM/Tdd_hvJzIII/AAAAAAAAETw/D-TRMLOmJcQ/w72-h72-p-k-no-nu/Kolhapuri-shoes-sandals-casual-ladies-flory-designer-dahlia-beautifull-onex-reef-chappal-flat-summer-foot-wear-+%252820%2529.jpg
142.250.74.161200 OK 2.7 kB URL HTTP/1.1 2.bp.blogspot.com/-gfXE5ORsVfM/Tdd_hvJzIII/AAAAAAAAETw/D-TRMLOmJcQ/w72-h72-p-k-no-nu/Kolhapuri-shoes-sandals-casual-ladies-flory-designer-dahlia-beautifull-onex-reef-chappal-flat-summer-foot-wear-+%252820%2529.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 4194c9cf5dc048ef35dadab537fce185
9fdf86b11fac38941afd070fe5572ebb7806ea26
2150c53cd373e83235ebdd986d4e40f5930c05497f2fe5ef43e39b6a2df96be7
GET /-gfXE5ORsVfM/Tdd_hvJzIII/AAAAAAAAETw/D-TRMLOmJcQ/w72-h72-p-k-no-nu/Kolhapuri-shoes-sandals-casual-ladies-flory-designer-dahlia-beautifull-onex-reef-chappal-flat-summer-foot-wear-+%252820%2529.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Kolhapuri-shoes-sandals-casual-ladies-flory-designer-dahlia-beautifull-onex-reef-chappal-flat-summer-foot-wear- (20).jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2720
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 11:20:53 GMT
Expires: Thu, 02 Feb 2023 11:20:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v113c"
Content-Type: image/jpeg
Age: 5251
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 403245b72f4a949d2133dd84f16291dd
e357d21db37a95ea7586c85cee76ee8fc7851d89
cfc952564db03567db2d8846119eb2ac6fa850902b1bced80ab04bbaf2d2a05b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-x9u-AyBnI-Y/ToQwNaKvioI/AAAAAAAAGFQ/-EYEmOXyflE/s640/isabeli_fontana_27-wide.jpg
142.250.74.161200 OK 70 kB URL HTTP/1.1 2.bp.blogspot.com/-x9u-AyBnI-Y/ToQwNaKvioI/AAAAAAAAGFQ/-EYEmOXyflE/s640/isabeli_fontana_27-wide.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x400, components 3\012- data
Hash 91b7f3a5bf2a6b012ec296e259cfe323
8f1f68b0e3a3a629f090a2bcc0d5081557c09ee6
f5a66b0790276ff52dfd13f9195366b1ebd8af5825501051e7bb35ff11779810
GET /-x9u-AyBnI-Y/ToQwNaKvioI/AAAAAAAAGFQ/-EYEmOXyflE/s640/isabeli_fontana_27-wide.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3935"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli_fontana_27-wide.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 69510
X-XSS-Protection: 0
2.bp.blogspot.com/-tHNGRx0inBE/ToQwF2qL6LI/AAAAAAAAGFE/Fm6GphuHfHk/s640/Isabeli_Fontana_01.jpg
142.250.74.161200 OK 68 kB URL HTTP/1.1 2.bp.blogspot.com/-tHNGRx0inBE/ToQwF2qL6LI/AAAAAAAAGFE/Fm6GphuHfHk/s640/Isabeli_Fontana_01.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x427, components 3\012- data
Hash 620d23d362b80de756fe4f9597749e38
e859dcbcbc56d4c44658da91160407960948f2c9
247d9ca13edfa44e95f59ea4278cb576f2c1fcd775a145b8a17acc49108f1192
GET /-tHNGRx0inBE/ToQwF2qL6LI/AAAAAAAAGFE/Fm6GphuHfHk/s640/Isabeli_Fontana_01.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1851"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Isabeli_Fontana_01.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 68364
X-XSS-Protection: 0
2.bp.blogspot.com/-7DCrIsKlYc4/ToQwWnl8LiI/AAAAAAAAGFs/amkkD1Xn1ts/s640/isabeli-fontana-1024x768-21574%255B1%255D.jpg
142.250.74.161200 OK 51 kB URL HTTP/1.1 2.bp.blogspot.com/-7DCrIsKlYc4/ToQwWnl8LiI/AAAAAAAAGFs/amkkD1Xn1ts/s640/isabeli-fontana-1024x768-21574%255B1%255D.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x480, components 3\012- data
Hash d7803ef1036a9c04fe030acaba274b0b
76bc0672e699df11ba2a938dabd986b11b3c073b
51a1a63190a48c74cbf4451e8dec2fd5cfa086661dd1c7f34b986aa9294f1d90
GET /-7DCrIsKlYc4/ToQwWnl8LiI/AAAAAAAAGFs/amkkD1Xn1ts/s640/isabeli-fontana-1024x768-21574%255B1%255D.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3cc4"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli-fontana-1024x768-21574[1].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 51012
X-XSS-Protection: 0
3.bp.blogspot.com/-qwZq0RhbZtM/ToQwLAFuqMI/AAAAAAAAGFI/OrGK5XZejcs/s640/Isabeli_Fontana_10.jpg
142.250.74.161200 OK 110 kB URL HTTP/1.1 3.bp.blogspot.com/-qwZq0RhbZtM/ToQwLAFuqMI/AAAAAAAAGFI/OrGK5XZejcs/s640/Isabeli_Fontana_10.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x427, components 3\012- data
Size 110 kB (110335 bytes)
Hash 2af872648ca99e67db08958423dedb33
94a6419cbb7639574d2864a44aded217fa64b2f3
94689a271ba132bd77c7d2452f4a748eb2dae12e7f940727375f82211aeafdd4
GET /-qwZq0RhbZtM/ToQwLAFuqMI/AAAAAAAAGFI/OrGK5XZejcs/s640/Isabeli_Fontana_10.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1852"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Isabeli_Fontana_10.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 110335
X-XSS-Protection: 0
ptp4ever.net/slide.js?pseudo=ivangbastian
103.224.182.251404 Not Found 196 B URL HTTP/1.1 ptp4ever.net/slide.js?pseudo=ivangbastian
IP 103.224.182.251:0
ASN #133618 Trellian Pty. Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert fortinet Malware
GET /slide.js?pseudo=ivangbastian HTTP/1.1
Host: ptp4ever.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 404 Not Found
date: Wed, 01 Feb 2023 12:48:24 GMT
server: Apache/2.4.38 (Debian)
content-length: 196
content-type: text/html; charset=iso-8859-1
connection: close
2.bp.blogspot.com/-V4HLymqiuWQ/ToQwMV4rYXI/AAAAAAAAGFM/phiYVXURHSE/s640/Isabeli_Fontana_0025.jpg
142.250.74.161200 OK 52 kB URL HTTP/1.1 2.bp.blogspot.com/-V4HLymqiuWQ/ToQwMV4rYXI/AAAAAAAAGFM/phiYVXURHSE/s640/Isabeli_Fontana_0025.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google\012- Sun disk label 'II*e\010' 16512 rpm, 24031 phys cys, 19869 heads/partition, 708881125 blocks], baseline, precision 8, 463x640, components 3\012- data
Hash 7b6d99ddaec37aefd7852bbe4686264d
da4c0aeaaaf7c0e1275730af8ea53e28ccc50a17
33a733e5bb943f5e0c4f6124115a7ddf8c43d3de6a40334dae0707e1ab59043c
GET /-V4HLymqiuWQ/ToQwMV4rYXI/AAAAAAAAGFM/phiYVXURHSE/s640/Isabeli_Fontana_0025.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1853"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Isabeli_Fontana_0025.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 51524
X-XSS-Protection: 0
3.bp.blogspot.com/-0_5nWCK13Fw/ToQwCUXrRAI/AAAAAAAAGE8/adSSQF4tn_s/s640/isabeli_fontana.jpg
142.250.74.161200 OK 46 kB URL HTTP/1.1 3.bp.blogspot.com/-0_5nWCK13Fw/ToQwCUXrRAI/AAAAAAAAGE8/adSSQF4tn_s/s640/isabeli_fontana.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 427x640, components 3\012- data
Hash 0af8933f7f96dcb7ae52bebdccdf8b48
566fa5976391c57d9141bcbc507b89f6c36d1dcc
4946fb08b9c0f3486fb56831b53ef966f2723dc92c64d4f2adfc5612b2b21451
GET /-0_5nWCK13Fw/ToQwCUXrRAI/AAAAAAAAGE8/adSSQF4tn_s/s640/isabeli_fontana.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v184f"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli_fontana.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 45510
X-XSS-Protection: 0
4.bp.blogspot.com/-G2v_r3VJFmY/ToQwOTQVWSI/AAAAAAAAGFU/45yDmNxkgcA/s640/isabeli_fontana_lingerie_1.jpg
142.250.74.161200 OK 76 kB URL HTTP/1.1 4.bp.blogspot.com/-G2v_r3VJFmY/ToQwOTQVWSI/AAAAAAAAGFU/45yDmNxkgcA/s640/isabeli_fontana_lingerie_1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x427, components 3\012- data
Hash d6ca2bcc8c2a154753da3f5f194a7669
1c63ea55479f7368498642e6c747dffde7d66e2f
b3e451a41d676e2b1bc45c4559018aaaea773225ac2d65b21e4e56e967b8ba7a
GET /-G2v_r3VJFmY/ToQwOTQVWSI/AAAAAAAAGFU/45yDmNxkgcA/s640/isabeli_fontana_lingerie_1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3cc6"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli_fontana_lingerie_1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 75618
X-XSS-Protection: 0
4.bp.blogspot.com/-eGuQo0yLVes/ToQv5gjn5XI/AAAAAAAAGE0/TnvSP6-oLWc/s640/Isabeli+Fontana.jpg
142.250.74.161200 OK 43 kB URL HTTP/1.1 4.bp.blogspot.com/-eGuQo0yLVes/ToQv5gjn5XI/AAAAAAAAGE0/TnvSP6-oLWc/s640/Isabeli+Fontana.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x400, components 3\012- data
Hash ec337d7cc8e511f193decd09f891fc0f
e2250e0e430f019f367075ea1da961a4fae6380a
217e15d820b736f5413be878760982b500f389257d27cb5f9bb0923d5b9cf609
GET /-eGuQo0yLVes/ToQv5gjn5XI/AAAAAAAAGE0/TnvSP6-oLWc/s640/Isabeli+Fontana.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3cbf"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Isabeli Fontana.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 42938
X-XSS-Protection: 0
4.bp.blogspot.com/-lWaqGRiGYL8/ToQwUPBHX8I/AAAAAAAAGFg/c1-0xYo-HGs/s640/isabeli-fontana7.jpg
142.250.74.161200 OK 91 kB URL HTTP/1.1 4.bp.blogspot.com/-lWaqGRiGYL8/ToQwUPBHX8I/AAAAAAAAGFg/c1-0xYo-HGs/s640/isabeli-fontana7.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 486x640, components 3\012- data
Hash ec50360ee4aea4c96c7cab1d7e26cd06
af6c429f79524a894f413804c785e2f0c7be02a0
8910b9e3d69e714b42f4f6fc2071d92981a0a96fae04e400715a8e0093636de0
GET /-lWaqGRiGYL8/ToQwUPBHX8I/AAAAAAAAGFg/c1-0xYo-HGs/s640/isabeli-fontana7.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3b1a"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli-fontana7.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 90806
X-XSS-Protection: 0
2.bp.blogspot.com/--HnP3ZthCaQ/ToQwTOVHkyI/AAAAAAAAGFc/aPoCQ-0_XKU/s640/Isabeli_Fontana-ifpinkdr01.jpg
142.250.74.161200 OK 54 kB URL HTTP/1.1 2.bp.blogspot.com/--HnP3ZthCaQ/ToQwTOVHkyI/AAAAAAAAGFc/aPoCQ-0_XKU/s640/Isabeli_Fontana-ifpinkdr01.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 427x640, components 3\012- data
Hash 17c8ffdb09a0fada515d4c35890704d4
09bc300ac4a8dfc7624041c7550a7544283e5381
13914eb672bdd705149c20370ab0e98dfcffcdec9bcc773e6e3427183317b595
GET /--HnP3ZthCaQ/ToQwTOVHkyI/AAAAAAAAGFc/aPoCQ-0_XKU/s640/Isabeli_Fontana-ifpinkdr01.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1857"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Isabeli_Fontana-ifpinkdr01.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 54538
X-XSS-Protection: 0
4.bp.blogspot.com/-NlckU8NBbTU/ToQwV3vBMPI/AAAAAAAAGFo/lEBH7GdTLoA/s640/isabeli-fontana-1024x768-21565.jpg
142.250.74.161200 OK 77 kB URL HTTP/1.1 4.bp.blogspot.com/-NlckU8NBbTU/ToQwV3vBMPI/AAAAAAAAGFo/lEBH7GdTLoA/s640/isabeli-fontana-1024x768-21565.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x480, components 3\012- data
Hash e8df46c56e6fb458de3f80ebb7c5f83c
914096b8609631a294c695737e2e5344be86a18e
525c8b1d847829edc633516b21b0560176f7e7373161cdf0c61a769510bbc95b
GET /-NlckU8NBbTU/ToQwV3vBMPI/AAAAAAAAGFo/lEBH7GdTLoA/s640/isabeli-fontana-1024x768-21565.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3cc5"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli-fontana-1024x768-21565.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 76789
X-XSS-Protection: 0
1.bp.blogspot.com/-dMXMrXQ0-3I/ToQwU_zsMeI/AAAAAAAAGFk/gf9xhA---EA/s640/isabeli-fontana-004-1024.jpg
142.250.74.161200 OK 65 kB URL HTTP/1.1 1.bp.blogspot.com/-dMXMrXQ0-3I/ToQwU_zsMeI/AAAAAAAAGFk/gf9xhA---EA/s640/isabeli-fontana-004-1024.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x480, components 3\012- data
Hash b0fd478b0c43bd52c1318d39b888e962
d6d7d9e68731870c73bb140e3b493b722f2bf909
97d4ae21998cffec1726894155ef281a19dd93ad38299b0e57863158b7cd0ead
GET /-dMXMrXQ0-3I/ToQwU_zsMeI/AAAAAAAAGFk/gf9xhA---EA/s640/isabeli-fontana-004-1024.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3892"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli-fontana-004-1024.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 64588
X-XSS-Protection: 0
4.bp.blogspot.com/-Fal4naGnnKI/ToQwX4bKFDI/AAAAAAAAGFw/E_JS7TmoYOg/s640/isabeli-fontana-1280x800-30367.jpg
142.250.74.161200 OK 91 kB URL HTTP/1.1 4.bp.blogspot.com/-Fal4naGnnKI/ToQwX4bKFDI/AAAAAAAAGFw/E_JS7TmoYOg/s640/isabeli-fontana-1280x800-30367.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x400, components 3\012- data
Hash f00f963b09cb57d9ac370944e9f328bd
865e60b409b677c32345855fc733e7274665377a
9f8d64afc196c64d371b4cfa1ca2ec9e5c39fc63a6d72b94641c91c528fa8e75
GET /-Fal4naGnnKI/ToQwX4bKFDI/AAAAAAAAGFw/E_JS7TmoYOg/s640/isabeli-fontana-1280x800-30367.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3cc1"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli-fontana-1280x800-30367.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 91064
X-XSS-Protection: 0
1.bp.blogspot.com/-tG-YxzEZgPI/ToQwYuHM3rI/AAAAAAAAGF0/KKpSnLeD2vo/s640/Isabeli-Fontana-desktop-hd-wallpaper.jpg
142.250.74.161200 OK 85 kB URL HTTP/1.1 1.bp.blogspot.com/-tG-YxzEZgPI/ToQwYuHM3rI/AAAAAAAAGF0/KKpSnLeD2vo/s640/Isabeli-Fontana-desktop-hd-wallpaper.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x480, components 3\012- data
Hash 4dbbb469a7f6972947211f76608010d5
4bcc9ed7635034845f6d35ae4ce19f70b1c1db23
8d44b1c3af56a6b98d90d9cd86602d5f43f0f693a2b3e4b77eb6a21e695c105e
GET /-tG-YxzEZgPI/ToQwYuHM3rI/AAAAAAAAGF0/KKpSnLeD2vo/s640/Isabeli-Fontana-desktop-hd-wallpaper.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3cbd"
Expires: Thu, 02 Feb 2023 12:48:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Isabeli-Fontana-desktop-hd-wallpaper.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:24 GMT
Server: fife
Content-Length: 85198
X-XSS-Protection: 0
www.blogger.com/dyn-css/authorization.css?targetBlogID=8524698355592464852&zx=751d5cad-0fa3-42b7-b6dc-3513246929e8
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=8524698355592464852&zx=751d5cad-0fa3-42b7-b6dc-3513246929e8
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=8524698355592464852&zx=751d5cad-0fa3-42b7-b6dc-3513246929e8 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Feb 2023 12:48:24 GMT
last-modified: Wed, 01 Feb 2023 12:48:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/navbar.g?targetBlogID=8524698355592464852&blogName=Kristine+Blogs+new&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://fashionista-cute.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fashionista-cute.blogspot.com/&vt=3343248402785454273&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
216.58.207.233200 OK 2.6 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=8524698355592464852&blogName=Kristine+Blogs+new&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://fashionista-cute.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fashionista-cute.blogspot.com/&vt=3343248402785454273&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 216.58.207.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3172)
Hash d0a7a895dda8d96065699d8ea25df889
8d80030682f58838fa080ee0374481575bf09a0f
9287ab8ee3d13a9180ab51be95307c79a0762c5b7c9124fcb7d91eb958aa05d2
GET /navbar.g?targetBlogID=8524698355592464852&blogName=Kristine+Blogs+new&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://fashionista-cute.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fashionista-cute.blogspot.com/&vt=3343248402785454273&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Feb 2023 12:48:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2594
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-WhxqYWZRmEg/ToQv8S-N9lI/AAAAAAAAGE4/DSyQ0-lwqWA/s640/Isabeli+Fontana+Wallpaper+011.jpg
142.250.74.161200 OK 91 kB URL HTTP/1.1 1.bp.blogspot.com/-WhxqYWZRmEg/ToQv8S-N9lI/AAAAAAAAGE4/DSyQ0-lwqWA/s640/Isabeli+Fontana+Wallpaper+011.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 474x640, components 3\012- data
Hash c8899ced3ac63cedcfed8601b8b694d1
1480a06f68b1f7351fc38f25083cdd2daabafa59
9c6ec5dcbcefceac2b8000a0f8d19ead7cf7ed59766bda3987647cb8f1e31c75
GET /-WhxqYWZRmEg/ToQv8S-N9lI/AAAAAAAAGE4/DSyQ0-lwqWA/s640/Isabeli+Fontana+Wallpaper+011.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v184e"
Expires: Thu, 02 Feb 2023 12:48:25 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Isabeli Fontana Wallpaper 011.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:25 GMT
Server: fife
Content-Length: 91075
X-XSS-Protection: 0
ptp4ever.net/slide.js?pseudo=ivangbastian
103.224.182.251404 Not Found 196 B URL HTTP/1.1 ptp4ever.net/slide.js?pseudo=ivangbastian
IP 103.224.182.251:0
ASN #133618 Trellian Pty. Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert fortinet Malware
GET /slide.js?pseudo=ivangbastian HTTP/1.1
Host: ptp4ever.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 404 Not Found
date: Wed, 01 Feb 2023 12:48:25 GMT
server: Apache/2.4.38 (Debian)
content-length: 196
content-type: text/html; charset=iso-8859-1
connection: close
i903.photobucket.com/albums/ac238/v3rdaus/Label3.png
54.230.111.3301 Moved Permanently 167 B URL HTTP/1.1 i903.photobucket.com/albums/ac238/v3rdaus/Label3.png
IP 54.230.111.3:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/ac238/v3rdaus/Label3.png HTTP/1.1
Host: i903.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 01 Feb 2023 12:48:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i903.photobucket.com/albums/ac238/v3rdaus/Label3.png
X-Cache: Redirect from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vvZdY2HBFAjw9hsKRVsLG8VzOps58uk7_FBI6RQE0AH0UnliIqlmUA==
Vary: Origin
i903.photobucket.com/albums/ac238/v3rdaus/Label3.png
54.230.111.17200 OK 704 B URL HTTP/2 i903.photobucket.com/albums/ac238/v3rdaus/Label3.png
IP 54.230.111.17:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ffbeec6c74029f2ec10745c275e7932e
12690dee65ba56f582fa48c3e2cc08cca4adb05b
97c0226d6396d94c33707dc950dff72c3702addc7468d32b5d9b251ab96040d2
GET /albums/ac238/v3rdaus/Label3.png HTTP/1.1
Host: i903.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://fashionista-cute.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 704
date: Wed, 01 Feb 2023 11:21:00 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="Label3.webp"
content-security-policy: script-src 'none'
expires: Thu, 01 Feb 2024 11:21:00 GMT
server: photobucket
x-amzn-trace-id: Root=1-63da4b1c-2df72b080b06b800188c36eb
x-request-id: 9h0tZfxbOYkWCvpdnClY1
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h2sgFjYezsaEZ2pGbOfutNqeYtLCeskAkwzK92zqw5vsCemyhUAZiA==
age: 5245
vary: Accept, Origin
X-Firefox-Spdy: h2
1.bp.blogspot.com/-YetzfcNDRd0/ToQv4_nUIbI/AAAAAAAAGEw/SGsz9PPPNwg/s640/isabeli-fontana-victorias_secret.jpg
142.250.74.161200 OK 101 kB URL HTTP/1.1 1.bp.blogspot.com/-YetzfcNDRd0/ToQv4_nUIbI/AAAAAAAAGEw/SGsz9PPPNwg/s640/isabeli-fontana-victorias_secret.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=Isabeli FontanaVictoria's Secret fashion show at The Armory - RunwayNew York City, USA - 19.11.09**Only available for publicati, software=Google], baseline, precision 8, 503x640, components 3\012- data
Size 101 kB (101151 bytes)
Hash 5e9536175d7355ca39cb018c6c75eee1
d6eeabcfd8a497990a2a741086dd31568d3389c2
c05be69e8f12fb4f8a50142fb90f4d1e505862e4194a37fbbefc7477d02e7cef
GET /-YetzfcNDRd0/ToQv4_nUIbI/AAAAAAAAGEw/SGsz9PPPNwg/s640/isabeli-fontana-victorias_secret.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3ac0"
Expires: Thu, 02 Feb 2023 12:48:25 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isabeli-fontana-victorias_secret.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 12:48:25 GMT
Server: fife
Content-Length: 101151
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6131
Expires: Wed, 01 Feb 2023 14:30:36 GMT
Date: Wed, 01 Feb 2023 12:48:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6131
Expires: Wed, 01 Feb 2023 14:30:36 GMT
Date: Wed, 01 Feb 2023 12:48:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6131
Expires: Wed, 01 Feb 2023 14:30:36 GMT
Date: Wed, 01 Feb 2023 12:48:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6131
Expires: Wed, 01 Feb 2023 14:30:36 GMT
Date: Wed, 01 Feb 2023 12:48:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hjIm9dNf6UE9rpIlKWeLwWuF7Pm6yJeAZgbwchvJcuDy-zkXEr502w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:18 GMT
age: 53827
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRHGnoAMF0Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4MpUHqMYJoNA7QuRuQwbJIodNkhizq6EL5SPbIoSKFQjtoAKQgLuEg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:25 GMT
age: 53820
etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff881dee4-27ea-4970-91da-e85794176516.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff881dee4-27ea-4970-91da-e85794176516.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2caf8f791d29d1c03e383b08fe71b042
91254d0b2c68291701ba967f71e5319c8edd1d0a
354892b28eda2bcf225909a8f92b6ddb5be5d47c43445ae4243a59c80e10ef9e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff881dee4-27ea-4970-91da-e85794176516.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7876
x-amzn-requestid: 6c502e4a-ac64-48cc-8210-59225f5e9947
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foetOH7PoAMFynA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ab21-539f36af56fde05121a0179a;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 23:58:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3Q59EJIRAEqMqARj6SYi3il0p9HpdPNnizvy0HOxQffZnR1Sgp-nnA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 00:18:08 GMT
age: 45017
etag: "91254d0b2c68291701ba967f71e5319c8edd1d0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 22:03:43 GMT
age: 53082
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d72f205-6434-46dc-85c2-d0bf41653e1f.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d72f205-6434-46dc-85c2-d0bf41653e1f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6544847aa1270cea1c780e4ee562f2a2
7be75a9f2e5f9e945f60a20a5da70849ad32f72d
d820b25b833d644358c0d9d5a3dc05817770095c06a098a6fc8ed9b7230c80e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d72f205-6434-46dc-85c2-d0bf41653e1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8415
x-amzn-requestid: 0d44aaae-d472-410f-9438-7527da366b10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffCuGHRqoAMFxeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e4c0-7e7330ab2de5c1ba3e87df4b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:15:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zPgCVRUn1Y1HukfmbqB_Pl8L9lNUQfaFWMcIYh-vFn_Z8pM9MFsOhw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 06:38:24 GMT
age: 22201
etag: "7be75a9f2e5f9e945f60a20a5da70849ad32f72d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:53:10 GMT
age: 17715
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 74fb517f26359326e41f69c0c1826bd1
693f1fb0a1147db8e73c59700630c3da71b1a1ba
9fd11f32aefbb6191356ef10775629a52e420bbce09f95b363f8ef30479c37b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8524698355592464852%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2NjY2NjYiByM1NTg4YWEqByNmZmZmZmYyByNjYzY2MDA6ByM2NjY2NjZCByM1NTg4YWFKByM5OTk5OTlSByM1NTg4YWFaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://fashionista-cute.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8524698355592464852%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2NjY2NjYiByM1NTg4YWEqByNmZmZmZmYyByNjYzY2MDA6ByM2NjY2NjZCByM1NTg4YWFKByM5OTk5OTlSByM1NTg4YWFaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://fashionista-cute.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true
142.250.74.109302 Found 474 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8524698355592464852%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2NjY2NjYiByM1NTg4YWEqByNmZmZmZmYyByNjYzY2MDA6ByM2NjY2NjZCByM1NTg4YWFKByM5OTk5OTlSByM1NTg4YWFaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://fashionista-cute.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8524698355592464852%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2NjY2NjYiByM1NTg4YWEqByNmZmZmZmYyByNjYzY2MDA6ByM2NjY2NjZCByM1NTg4YWFKByM5OTk5OTlSByM1NTg4YWFaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://fashionista-cute.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (508)
Hash 4725a26b69783efb44eda06f3396f8b5
e4c531ce6caa3c889acdcb1d262cbf3f9e54b71e
ff04bc457a89f013aaea95aa8302ce953172b904663b8f5b5563b795e9016f50
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8524698355592464852%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2NjY2NjYiByM1NTg4YWEqByNmZmZmZmYyByNjYzY2MDA6ByM2NjY2NjZCByM1NTg4YWFKByM5OTk5OTlSByM1NTg4YWFaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://fashionista-cute.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8524698355592464852%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2NjY2NjYiByM1NTg4YWEqByNmZmZmZmYyByNjYzY2MDA6ByM2NjY2NjZCByM1NTg4YWFKByM5OTk5OTlSByM1NTg4YWFaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://fashionista-cute.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://fashionista-cute.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Feb 2023 12:48:26 GMT
location: https://www.blogger.com/followers.g?blogID=8524698355592464852&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2NjY2NjYiByM1NTg4YWEqByNmZmZmZmYyByNjYzY2MDA6ByM2NjY2NjZCByM1NTg4YWFKByM5OTk5OTlSByM1NTg4YWFaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Ffashionista-cute.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-u1mLRIG2DpAKojlGT-Y9dw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 474
server: GSE
set-cookie: __Host-GAPS=1:iWBj1CpAkN7EZeNYbZLVTVxw61V2ug:6W0FjKYi1834OqpQ;Path=/;Expires=Fri, 31-Jan-2025 12:48:26 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.paid-to-promote.net/images/ptp.gif
172.67.200.168301 Moved Permanently 0 B URL HTTP/1.1 www.paid-to-promote.net/images/ptp.gif
IP 172.67.200.168:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/ptp.gif HTTP/1.1
Host: www.paid-to-promote.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 12:48:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 01 Feb 2023 13:48:26 GMT
Location: https://www.paid-to-promote.net/images/ptp.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KyTQKZOCdUNe7Tt4WegVqld86kcXS23UBwbpT2SXmvzw1UtVpDdWFBQSkl5q07I0xXYbO927zfTDO7NLqA3UY72TYugUMdUEu0ya00AtHjWvk%2F1arO8R2wakeZzcDFuOD4EEAFD%2BCyjI0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792acd25b917b4e8-OSL
alt-svc: h2=":443"; ma=60
widgets.amung.us/tab.js
104.22.74.171200 OK 19 kB IP 104.22.74.171:0
File type ASCII text, with very long lines (29322), with no line terminators
Hash c9ed731944024702b435ba1cc59ef389
80ed46e16bd892d709d35f5ba8dfef01e4d6e320
34b786e8399cc681809345c8e92d95927bc67234f4e592adc1ef2a5d8e4ed449
GET /tab.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 12:48:26 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 12 Jan 2023 17:19:36 GMT
etag: W/"63c04128-728a"
expires: Thu, 02 Feb 2023 12:21:18 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 1628
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792acd25dc6b992a-ARN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9931f2e6c9a23c0def74365e69d843c9
05fbfb008e30f7c2acac54d6a6ab022b20ef3ef2
835ea9965448ecf37fb950f7cced2012d0403c013d9790eda74b1b96a555b56b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=101904
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:26 GMT
Etag: "63d94aaa-117"
Expires: Thu, 02 Feb 2023 17:06:50 GMT
Last-Modified: Tue, 31 Jan 2023 17:06:50 GMT
Server: nginx
Content-Length: 279
fashionista-cute.blogspot.com/favicon.ico
142.250.74.1200 OK 412 B URL HTTP/1.1 fashionista-cute.blogspot.com/favicon.ico
IP 142.250.74.1:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: fashionista-cute.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/search/label/isabeli
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Wed, 01 Feb 2023 12:48:26 GMT
Date: Wed, 01 Feb 2023 12:48:26 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 28 Nov 2022 10:16:09 GMT
ETag: W/"bcb2ef4d5a0c13c84a7b34307869b7a9427b92ac7900d3e29993210f1b2c57c5"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
ocsp.pki.goog/s/gts1p5/97q-VzuQ-Mw
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/97q-VzuQ-Mw
IP 216.58.211.3:0
Hash b569ee8bc77217891e51ddb365993bb5
8fb3fa1b57821abc44cacde4e602ed3a1f6b5369
1418b5df11b3e04b4eca7c0da6f77a3ea24bd7743e7b3c9861d2d6d97bb10b03
POST /s/gts1p5/97q-VzuQ-Mw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww
103.224.182.251302 Found 0 B URL HTTP/1.1 my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww
IP 103.224.182.251:0
ASN #133618 Trellian Pty. Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww HTTP/1.1
Host: my.blueadvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Wed, 01 Feb 2023 12:48:26 GMT
server: Apache/2.4.38 (Debian)
set-cookie: __tad=1675255706.2338697; expires=Sat, 29-Jan-2033 12:48:26 GMT; Max-Age=315360000
location: http://ww38.my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584
content-length: 0
content-type: text/html; charset=UTF-8
connection: close
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9931f2e6c9a23c0def74365e69d843c9
05fbfb008e30f7c2acac54d6a6ab022b20ef3ef2
835ea9965448ecf37fb950f7cced2012d0403c013d9790eda74b1b96a555b56b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=101904
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:26 GMT
Etag: "63d94aaa-117"
Expires: Thu, 02 Feb 2023 17:06:50 GMT
Last-Modified: Tue, 31 Jan 2023 17:06:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ww38.my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584
75.2.11.242200 OK 7.4 kB URL HTTP/1.1 ww38.my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584
IP 75.2.11.242:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2662)
Hash 4d767c66642876ac1b158cfc3b9b62d9
1700b10beb038f482598a9d26ec8ffb0b585e07f
1e17234b8fabbdcded038589fff09eeb231e0ca43b3259c201d13def66df1ab2
GET /__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584 HTTP/1.1
Host: ww38.my.blueadvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://fashionista-cute.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 12:48:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket103
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_CiPpM7KQsUzSmLKpcyx13oa/RdoE/10kweLwNAzV/t7X817vuWF9GRvwkTiRludeiFM+e2LXQcRMmJ8Je0URPA==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
t.dtscout.com/pv/?_a=v&_h=fashionista-cute.blogspot.com&_ss=79r8wsmsu6&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5aui&_cb=_dtspv.c
141.101.120.11200 OK 54 kB URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=fashionista-cute.blogspot.com&_ss=79r8wsmsu6&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5aui&_cb=_dtspv.c
IP 141.101.120.11:0
File type ASCII text, with no line terminators
Hash ccfa1bfef848178cba80c4cf7c850467
c52cf69521138d6684825ec6662423372e43532b
578664f90862141b952d127e007a91d5c9def2ff294bb7be4f24c769695d26ec
GET /pv/?_a=v&_h=fashionista-cute.blogspot.com&_ss=79r8wsmsu6&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5aui&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Cookie: m=1; oa=1; df=1675255706
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 12:48:27 GMT
content-type: application/javascript
x-t: 0.147
x-c: 0
expires: Wed, 01 Feb 2023 12:48:26 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZXH7dLsDZdInSihwiLy3EdcrFsoozg6BtxklSg4j10Bny%2BYOVqMYCyFkS7sUOrl6Y%2BWOQJtpiJ3h63y5ecow%2BwtObBNBGxCUJEuGlApcNpW5QaI6tO4Qx7zxqXxngJs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792acd28b88515ec-ARN
content-encoding: br
X-Firefox-Spdy: h2
c.parkingcrew.net/scripts/sale_form.js
185.53.178.30200 OK 761 B URL HTTP/1.1 c.parkingcrew.net/scripts/sale_form.js
IP 185.53.178.30:0
Hash 64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3
GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.my.blueadvertise.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 12:48:27 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes
d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/bottom.png
54.230.245.8200 OK 3.4 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/bottom.png
IP 54.230.245.8:0
File type PNG image data, 459 x 156, 8-bit colormap, non-interlaced\012- data
Hash 8f00618489c9024bc741a161effb2e32
7e3146cfd561806169d6201b01ccbe37a256dfc5
ee13da8e8d4bd49a7fdd595de382a3c7dbfef6f8555aeca5292c8c80da75f355
GET /themes/cleanPeppermintBlack_657d9013/img/bottom.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.my.blueadvertise.com/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3359
Connection: keep-alive
Server: nginx
Date: Wed, 01 Feb 2023 01:37:39 GMT
Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT
Accept-Ranges: bytes
ETag: "62b4441b-d1f"
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rnwW4au4d4DYGLGXe3RwwdumZOFxeH7TNCKy4sXJes-HucMmi2978g==
Age: 40248
ww38.my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584&_xafvr=MDM4YTJmNWQyNzliNzA5YjQ1OGY3ZDEwZmEyMTgxZTg3NmRiNjEwYSw2M2RhNWY5YjM3OTU4
75.2.11.242200 OK 2.5 kB URL HTTP/1.1 ww38.my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584&_xafvr=MDM4YTJmNWQyNzliNzA5YjQ1OGY3ZDEwZmEyMTgxZTg3NmRiNjEwYSw2M2RhNWY5YjM3OTU4
IP 75.2.11.242:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 24c9a93dcd13ff152bbe44e160f4ba61
60abd4606dfa3fa7c52a641fe0f67e78e31d2f4f
d817ea628285bc199b66ff23e84dca6184359cfd0a7430f30237cea77448db76
GET /__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584&_xafvr=MDM4YTJmNWQyNzliNzA5YjQ1OGY3ZDEwZmEyMTgxZTg3NmRiNjEwYSw2M2RhNWY5YjM3OTU4 HTTP/1.1
Host: ww38.my.blueadvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 12:48:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_yahoo
X-Buckets: bucket103
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_VFY9t5AU7VeawRgW4x7Sw26RTLSUotVrRWpngnA/o3hG/v0sn5g569WkmcYezcclp3ZzHWj5wPDvzBsaxOwJEA==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
whos.amung.us/pingjs/?k=esrottsxqrf8&t=Kristine%20Blogs%20new%3A%20isabeli&c=t&x=http%3A%2F%2Ffashionista-cute.blogspot.com%2Fsearch%2Flabel%2Fisabeli&y=&a=0&d=4.311&v=27&r=9883
172.67.8.141200 OK 50 B URL HTTP/1.1 whos.amung.us/pingjs/?k=esrottsxqrf8&t=Kristine%20Blogs%20new%3A%20isabeli&c=t&x=http%3A%2F%2Ffashionista-cute.blogspot.com%2Fsearch%2Flabel%2Fisabeli&y=&a=0&d=4.311&v=27&r=9883
IP 172.67.8.141:0
File type ASCII text, with no line terminators
Hash 3e6d675806e4d87069a0530bb85baaa8
a3c10dc22c8dff5144813962d1c9392483ff3177
5c5c9fbb4c1f4e7d572dcab3fdb53a67a91822f9a0f52d119ddd4e4a74ce7fb6
GET /pingjs/?k=esrottsxqrf8&t=Kristine%20Blogs%20new%3A%20isabeli&c=t&x=http%3A%2F%2Ffashionista-cute.blogspot.com%2Fsearch%2Flabel%2Fisabeli&y=&a=0&d=4.311&v=27&r=9883 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 12:48:27 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792acd2c2daab4eb-OSL
c.parkingcrew.net/scripts/sale_form.js
185.53.178.30200 OK 761 B URL HTTP/1.1 c.parkingcrew.net/scripts/sale_form.js
IP 185.53.178.30:0
Hash 64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3
GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.my.blueadvertise.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 12:48:27 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes
ww38.my.blueadvertise.com/favicon.ico
75.2.11.242200 OK 0 B URL HTTP/1.1 ww38.my.blueadvertise.com/favicon.ico
IP 75.2.11.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ww38.my.blueadvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.my.blueadvertise.com/__adserver/insertions/dsp.php?token=MTY5NDN8NDY4eDYwfDQ2OHw2MHww&subid1=20230201-2348-26a1-a64c-5c9f95c84584&_xafvr=MDM4YTJmNWQyNzliNzA5YjQ1OGY3ZDEwZmEyMTgxZTg3NmRiNjEwYSw2M2RhNWY5YjM3OTU4
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 12:48:27 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 204d8578a2d42e03375f993b70831499
0006688808bf1818175ed81394534a4bfbea5ad3
28e5fb1d711213030a454b06ee8be71c4bc39d38115d8d8ac35017d6ca08514f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 12:48:28 GMT
Last-Modified: Wed, 01 Feb 2023 12:47:14 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 20m-DAgVQW77olkbAnRP-s3pyUNUzwDjxRs-p-wbfkEspN3ujXB4lQ==
Age: 74
t.dtscout.com/pv/
141.101.120.11200 OK 11 kB IP 141.101.120.11:0
Hash 04aca08bf34c7815e65e80297f8b140c
e994048575786b0294f2540b0352adfafb483285
f1c34cd94125214160f741ee2848e4f38532a847ffe15ee025bbd1a7708369a5
POST /pv/ HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------274702068035969433552903166783
Content-Length: 1209
Origin: http://fashionista-cute.blogspot.com
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Cookie: m=1; oa=1; df=1675255706
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 12:48:27 GMT
content-type: application/javascript
x-t: 0.125
x-c: 0
expires: Wed, 01 Feb 2023 12:48:26 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6I25LcNkW2gCh5%2FB0b9lvUyZhCbWoJlPOGeUJPb1YCPrvOV0mC8%2BOvzPeT%2FvSB%2FHirV3wylyQFDO6wHLpIJIzfd50mrbaEwMoSKGrCpb6ZpQ1Puys1udmCsSnP4ubjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792acd2b5ab015ec-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brigi-jar.com/style.css
44.195.142.43200 OK 6.0 kB IP 44.195.142.43:0
Hash 2eb024ad11ef5f2e503bfb60117c25d8
235b5ca1205cc2ca3d0b8e4f98ce022512b05c0f
d8efc1d8e1100baf07f4105119fde6f8fe760a9efebf189adc5d9b3dfccc9e0a
GET /style.css HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/lander?dn=blueadvertise.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 12:48:28 GMT
content-type: text/css
content-length: 5981
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 27 Jan 2023 08:21:56 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brigi-jar.com/main.js
44.195.142.43200 OK 480 B IP 44.195.142.43:0
Hash 91558066fecbfc1f6f77842f6aa85a6c
6bb5c5f2cb4efaf30a8ab810e1b453dcb4df108e
efa0d78cbfa66831e490b26d1bb55b14f6c9f8f3a04b1d08403947abd25908ed
Analyzer Verdict Alert fortinet Malware
GET /main.js HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/lander?dn=blueadvertise.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 12:48:28 GMT
content-type: application/javascript
content-length: 480
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 27 Jan 2023 08:18:19 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 12:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 8.2 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type gzip compressed data, max compression\012- data
Hash 5c298f1563a3daf0901b0caedffd30fe
42aeefcb01cff04e65fb57ead0c98f240d303f59
7586f2286a2ca1802951681f2e0b7493037031c8d149bc65cfeb0d6d06ccc46e
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brigi-jar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 04:05:29 GMT
expires: Tue, 30 Jan 2024 04:05:29 GMT
cache-control: public, max-age=31536000
age: 204180
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
brigi-jar.com/empty.gif
44.195.142.43200 OK 42 B IP 44.195.142.43:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /empty.gif HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 12:48:29 GMT
content-type: image/gif
content-length: 42
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 27 Jan 2023 08:21:56 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 43839a739afc6fa50a1430d4d171e07d
6e1211cf1ccc740aab967fbdf08135d89ee5bd32
9d1f4687f6c8ffa7b5c5ce0cb4195bfce7de06157b93d65dce15090d3c4975b8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129247
Date: Wed, 01 Feb 2023 12:48:29 GMT
Etag: "63d9a77d-1d7"
Expires: Fri, 03 Feb 2023 00:42:36 GMT
Last-Modified: Tue, 31 Jan 2023 23:42:53 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pNRoiUfMrmmpxrQdtVIHFKHAIosFjzONGOWaWImhU3vI46DC6mBurw==
Age: 3583
fonts.googleapis.com/css?family=Poppins:300
142.250.74.106200 OK 25 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins:300
IP 142.250.74.106:0
Hash f7689bc23c13af1fc0ebfef5a7d62981
88d1196dd3bf4e38c910c5ef49cb752cfdb232cc
6dd21218baf605c000d4e0bd2a588c4a2a80c37b270527ed425c0bc0265724a4
GET /css?family=Poppins:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 12:48:28 GMT
date: Wed, 01 Feb 2023 12:48:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.paid-to-promote.net/images/ptp.gif
172.67.200.168301 Moved Permanently 0 B URL HTTP/2 www.paid-to-promote.net/images/ptp.gif
IP 172.67.200.168:0
GET /images/ptp.gif HTTP/1.1
Host: www.paid-to-promote.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://fashionista-cute.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 01 Feb 2023 12:48:26 GMT
content-type: text/html; charset=UTF-8
location: https://paid-to-promote.net
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
x-redirect-by: WordPress
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zQTsOXVhIKD3E%2FlMtkFAMn4%2BLC58fPDDuU7DpBP2K77cI1Ju5ESES0dvL8ysXH7xgOJi3eJLUzL63SW3H60bVRqpZGGfgLE8xryuTL9Q9%2BpmUorTL1HFKupxRAW6FKyNUSWLFvBmAahWHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792acd2648edb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Ffashionista-cute.blogspot.com%2Fsearch%2Flabel%2Fisabeli&j=
141.101.120.11200 OK 0 B URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Ffashionista-cute.blogspot.com%2Fsearch%2Flabel%2Fisabeli&j=
IP 141.101.120.11:0
GET /i/?l=http%3A%2F%2Ffashionista-cute.blogspot.com%2Fsearch%2Flabel%2Fisabeli&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fashionista-cute.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 12:48:26 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Wed, 01-Feb-2023 14:11:46 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Wed, 01-Feb-2023 16:48:26 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1675255706; Domain=dtscout.com; Expires=Fri, 12-May-2023 12:48:26 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.887
expires: Wed, 01 Feb 2023 12:48:25 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IVmNGDCe3jGGeMUdXY6OlHQTzXDeNW%2BaK7f%2FKvKSB7ftiuQdBTBB15xcOod3jOWQ2JS3hvYXErBuNHUhMrO%2Fg%2BiGi9bXQQ0fhG%2BxkTs9qs09ZdQc%2BRpi%2Bw6uQ3yXszU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792acd272f5415ec-ARN
content-encoding: br
X-Firefox-Spdy: h2