firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 19 Sep 2022 09:12:40 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PicFc9HiEUEdkL3BduMzuh5g8JMbjyfMLLs3g4u9GadxctjLki2QwQ==
Age: 2433
tyshawn-ksimmons.blogspot.com/2022/04/companies-can-improve-job-cost-accuracy.html
142.250.74.161301 Moved Permanently 220 B URL HTTP/1.1 tyshawn-ksimmons.blogspot.com/2022/04/companies-can-improve-job-cost-accuracy.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6ab579a180ff006ac5dc3e3f1f1338c0
257bfde1230c30af727b0bc224090794c04eb8f5
0ccc6fe0e31af1c66f45f85456bd474d5021e0083b28c5d94d55f12a28190940
GET /2022/04/companies-can-improve-job-cost-accuracy.html HTTP/1.1
Host: tyshawn-ksimmons.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://tyshawn-ksimmons.blogspot.com/2022/04/companies-can-improve-job-cost-accuracy.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 19 Sep 2022 09:53:13 GMT
Expires: Mon, 19 Sep 2022 09:53:13 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 220
Server: GSE
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4408
Expires: Mon, 19 Sep 2022 11:06:41 GMT
Date: Mon, 19 Sep 2022 09:53:13 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: R65zHNwFN2ME0qZ-4vA4xGuneNsYURy5-Hjni44tgM93CFl5ZAKA3A==
age: 19080
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 07566e7f0afe22aa412420cd4521193c
0d7ad3ad7187052880bd11576a49d5ce88faaf6a
f33d32e8d07bd001bf1205deadf439ea3009de7341719f33c1798d41faa71876
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 09:53:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600
Expires: Mon, 19 Sep 2022 10:03:22 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FCv-Vpg6ic81TpVpwxR6udhMjEoLNdGfD8rQgka_rPZbccfrgmSE2Q==
Age: 2992
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6351
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:14 GMT
Last-Modified: Mon, 19 Sep 2022 08:07:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.203.49101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.203.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8X6JGMAaFda4UOOurK7o9g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pzgqwhIyvoq3A8AirxSpv2Ijr9I=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 07566e7f0afe22aa412420cd4521193c
0d7ad3ad7187052880bd11576a49d5ce88faaf6a
f33d32e8d07bd001bf1205deadf439ea3009de7341719f33c1798d41faa71876
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tyshawn-ksimmons.blogspot.com/2022/04/companies-can-improve-job-cost-accuracy.html
142.250.74.161200 OK 24 kB URL HTTP/2 tyshawn-ksimmons.blogspot.com/2022/04/companies-can-improve-job-cost-accuracy.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6565)
Hash b0654d84a042bfcde30eeb9ebba74973
b3b44353fa2546ac7a8859b39be3424402516c61
abde2f1c63cad7f8e20624a6302e43979d0c170414de5654dae6b6479e16af31
GET /2022/04/companies-can-improve-job-cost-accuracy.html HTTP/1.1
Host: tyshawn-ksimmons.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Mon, 19 Sep 2022 09:53:14 GMT
date: Mon, 19 Sep 2022 09:53:14 GMT
cache-control: private, max-age=0
last-modified: Fri, 03 Jun 2022 16:48:15 GMT
etag: W/"c8115f446c04598799fef8179b0b50b23c375f5b2304564fc2d9a6f6f16cc2f7"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 24300
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 394bcb7d2d03225cc35ac7afed1ca636
f9527034abeec236e7ffacc23473930958e04224
0254137487ef4a909a8c18cd47f5080e989796a5e1fe7873950617953a58c8d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ca3ab7a8411ba9c6350d504e65a95cc6
8b39f564b1b1cb1d262cb57b41a4bb5de331087f
cb51d72baec3c84ac94d419aab6d291b7596a9098525471fdb3fbbb6d34aa3db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
142.250.74.163200 OK 3.5 kB URL HTTP/2 www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP 142.250.74.163:0
File type Unicode text, UTF-8 text, with very long lines (10473)
Hash 5f322b95a9dc592286f58bb0b446fb3a
7b504dd1f75dca0b6545643188e510cae4699c6a
a87b7a7bb8c3c8104355c38ea1e71953c2fc38320e3d32c675e753afa96eed15
GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:53:15 GMT
expires: Mon, 19 Sep 2022 09:53:15 GMT
cache-control: public, max-age=0
last-modified: Wed, 14 Apr 2021 19:28:00 GMT
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
216.58.207.201200 OK 6.5 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (1264)
Hash 30af015884191ce4fe52ce1e707baed9
faa1418efa036704d31eb90f4fbd82de456b81b7
0456cf81299c957c8e54dabb00b4d6d96b76be729b1e112d478b34ba56d8059d
GET /static/v1/jsbin/3262169375-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 18:36:04 GMT
expires: Mon, 18 Sep 2023 18:36:04 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 18 Sep 2022 02:49:24 GMT
content-type: text/javascript
age: 55031
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tyshawn-ksimmons.blogspot.com
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 397147
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tyshawn-ksimmons.blogspot.com
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 397147
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3753684042-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3753684042-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 9310029f33929201831992bd74c13953
092fc9b60b0fcc7e24b80eb89f40178e91effb98
ed0ad17efb3c922e7bc8feffa0a5718d2ad226c44f2bb183b6ad163684f3b982
GET /static/v1/widgets/3753684042-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57039
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 01:53:41 GMT
expires: Fri, 15 Sep 2023 01:53:41 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Sep 2022 20:54:17 GMT
content-type: text/javascript
age: 374374
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/res/1339858486-indie_compiled.js
216.58.207.201200 OK 47 kB URL HTTP/2 resources.blogblog.com/blogblog/data/res/1339858486-indie_compiled.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (1535)
Hash 83a2dbee9e333bf802ec3e60b6c1e508
8462dc45a5fa474029e3acec03287c49cafa0986
c4acdfcabda894265b550926f93fe5208d44da1e0cd42c759de10ef2c607dfb2
GET /blogblog/data/res/1339858486-indie_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 46785
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 14:01:07 GMT
expires: Sat, 24 Sep 2022 14:01:07 GMT
cache-control: public, max-age=604800
age: 157928
last-modified: Wed, 07 Sep 2022 22:51:39 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.kff.org/wp-content/uploads/2018/05/9124-02-figure-1.png?w=640
192.0.66.210200 OK 37 kB URL HTTP/2 www.kff.org/wp-content/uploads/2018/05/9124-02-figure-1.png?w=640
IP 192.0.66.210:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5fa9d331ffded3dae242512384b9ffea
b0c9e6ba24b10e953ae9fd15210385b7dfa27a29
232c39a2ba0670fd4fd98dbc945ea70e05fcedcb308072bc8718db43a0b80fc4
GET /wp-content/uploads/2018/05/9124-02-figure-1.png?w=640 HTTP/1.1
Host: www.kff.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 09:53:15 GMT
content-type: image/webp
content-length: 37062
last-modified: Sun, 18 Sep 2022 19:51:42 GMT
expires: Mon, 18 Sep 2023 19:51:42 GMT
etag: "ede88bc69eee287d"
vary: Accept
cache-control: max-age=2592000
x-rq: arn2 109 32 443
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 394bcb7d2d03225cc35ac7afed1ca636
f9527034abeec236e7ffacc23473930958e04224
0254137487ef4a909a8c18cd47f5080e989796a5e1fe7873950617953a58c8d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha27MFKrWuQaEuHBsLPE_ycREgV-pOE0_lq5vXmeQxxy-S-B1c8t8mTsljXneCDYHFvf3BHNWagARQR-DIcevRpcc07cHpf6dn-NN3lnfcsGrfE8qHdmB_BCqZjRVLiXNUOQEl8s_KqvTpV7zUcXN0w=w72-h72-p-k-no-nu
142.250.74.1200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha27MFKrWuQaEuHBsLPE_ycREgV-pOE0_lq5vXmeQxxy-S-B1c8t8mTsljXneCDYHFvf3BHNWagARQR-DIcevRpcc07cHpf6dn-NN3lnfcsGrfE8qHdmB_BCqZjRVLiXNUOQEl8s_KqvTpV7zUcXN0w=w72-h72-p-k-no-nu
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 1ab6c545c0d9042bc1e9a66e1a704b15
7740996a1dfbe6508456c866a38e5842ed03ca73
21da4ded1de9fe95f55d65b06223c51a9196a61267deabfe46e9cf74cdbf4eb8
GET /blogger_img_proxy/ANbyha27MFKrWuQaEuHBsLPE_ycREgV-pOE0_lq5vXmeQxxy-S-B1c8t8mTsljXneCDYHFvf3BHNWagARQR-DIcevRpcc07cHpf6dn-NN3lnfcsGrfE8qHdmB_BCqZjRVLiXNUOQEl8s_KqvTpV7zUcXN0w=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 20 Sep 2022 09:53:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 09:53:15 GMT
server: fife
content-length: 4345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.vmware.com/content/dam/digitalmarketing/vmware/en/images/gallery/thumbnails/tn-vmware-scale-on-demand-overview.jpg
23.38.200.26200 OK 226 kB URL HTTP/1.1 www.vmware.com/content/dam/digitalmarketing/vmware/en/images/gallery/thumbnails/tn-vmware-scale-on-demand-overview.jpg
IP 23.38.200.26:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1280x640, components 3\012- data
Size 226 kB (226027 bytes)
Hash 8803f6e4a9c65cd51a89baf0049a5715
0dc59fc692188ca5d05e51f2b7b890be43296054
c7887cae8f41b3cce319c7ea1ef69ccfdb3795638aaa6e033b412bca24d13efd
GET /content/dam/digitalmarketing/vmware/en/images/gallery/thumbnails/tn-vmware-scale-on-demand-overview.jpg HTTP/1.1
Host: www.vmware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 226027
Server: Apache
DC-Pool-ID: p3tx622k
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: X-Requested-With, Content-Type, Origin, Authorization, Accept, Client-Security-Token, Accept-Encoding
Access-Control-Allow-Methods: GET
Cache-Control: public, must-revalidate, max-age=3600
Date: Mon, 19 Sep 2022 09:53:15 GMT
Connection: keep-alive
Server-Timing: cdn-cache; desc=HIT, edge; dur=1
Content-Security-Policy: frame-ancestors 'self' https://*.vmware.com;
X-Frame-Options: DENY
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d2c70b14160818028d5249e3322ef702
ffeaded6cbca41197eab2996b79ca2a9c1362fac
59e545b71ac4df009e4cf67ace085f40fdd538fd307bb175f72d41830770460b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Server: ECS (amb/6BA5)
Content-Length: 280
www.michiganstateuniversityonline.com/wp-content/uploads/sites/3/2016/07/Demand-Planning-Improves-Supply-Chain-e1585833693587.jpeg?w=750&h=375&crop=1
107.154.116.79200 OK 22 kB URL HTTP/2 www.michiganstateuniversityonline.com/wp-content/uploads/sites/3/2016/07/Demand-Planning-Improves-Supply-Chain-e1585833693587.jpeg?w=750&h=375&crop=1
IP 107.154.116.79:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x375, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4bb377bfe5a261ace9280f30d41557b5
42799c4928b0fc806437b24307ed90ea30112c0e
b69580ff197f28d2417517ad054ab3cbb71d797820a407d5e1522d1a339304b1
GET /wp-content/uploads/sites/3/2016/07/Demand-Planning-Improves-Supply-Chain-e1585833693587.jpeg?w=750&h=375&crop=1 HTTP/1.1
Host: www.michiganstateuniversityonline.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 09:53:15 GMT
content-type: image/webp
content-length: 22500
last-modified: Sun, 21 Aug 2022 07:51:48 GMT
etag: "38a2f6ee302a59a6"
vary: Accept
x-rq: arn2 109 195 443
x-cache: HIT
accept-ranges: bytes
set-cookie: visid_incap_813296=wyqye4tTQaO1sUbGMMeNmAo8KGMAAAAAQUIPAAAAAACmHLjNBCo6v4cloFIYuj42; expires=Mon, 18 Sep 2023 22:27:29 GMT; HttpOnly; path=/; Domain=.michiganstateuniversityonline.com; Secure; SameSite=None
incap_ses_7233_813296=8z/EDJIYExEj3f6epsdgZAo8KGMAAAAA9hU/7XQ/BKXZZy943krjXg==; path=/; Domain=.michiganstateuniversityonline.com; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cdn: Imperva
cache-control: max-age=0
x-iinfo: 13-2739588-2739608 NNNN CT(2 6 0) RT(1663581194154 91) q(0 0 0 0) r(0 0) U18
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.michiganstateuniversityonline.com/wp-content/uploads/sites/3/2016/07/Demand-Planning-Improves-Supply-Chain-e1585833693587.jpeg
107.154.116.79200 OK 260 kB URL HTTP/2 www.michiganstateuniversityonline.com/wp-content/uploads/sites/3/2016/07/Demand-Planning-Improves-Supply-Chain-e1585833693587.jpeg
IP 107.154.116.79:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2119x1250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 260 kB (259684 bytes)
Hash 1691b7bd3bcd59a4516e81b123a01f45
40e62b2ac7ed1b33b0cc1942ad56baf6e19db0c0
cfc97ca3724870c73e871da67f669715e67ac15da0b267248770509627ae3efb
GET /wp-content/uploads/sites/3/2016/07/Demand-Planning-Improves-Supply-Chain-e1585833693587.jpeg HTTP/1.1
Host: www.michiganstateuniversityonline.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "080e638f21542ea1"
last-modified: Fri, 02 Sep 2022 07:19:59 GMT
content-type: image/webp
content-length: 259684
cache-control: max-age=0
date: Mon, 19 Sep 2022 09:53:14 GMT
set-cookie: visid_incap_813296=wyqye4tTQaO1sUbGMMeNmAo8KGMAAAAAQUIPAAAAAACmHLjNBCo6v4cloFIYuj42; expires=Mon, 18 Sep 2023 22:27:29 GMT; HttpOnly; path=/; Domain=.michiganstateuniversityonline.com; Secure; SameSite=None
incap_ses_7233_813296=msy1GIcnV08j3f6epsdgZAo8KGMAAAAAWSVC4kSA3AOEHoHXzV9mGw==; path=/; Domain=.michiganstateuniversityonline.com; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cdn: Imperva
x-iinfo: 13-2739588-0 0CNN RT(1663581194154 96) q(0 -1 -1 3) r(0 -1)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ca3ab7a8411ba9c6350d504e65a95cc6
8b39f564b1b1cb1d262cb57b41a4bb5de331087f
cb51d72baec3c84ac94d419aab6d291b7596a9098525471fdb3fbbb6d34aa3db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.googleusercontent.com/image?id=rabMT9PC10wCtkMoMM2KrjGV5ejCGidFlmg3elSmmoRNnd0FxKwY5T0RGV948R08752LcEb6qEXa&options=w1600
142.250.74.1200 OK 98 kB URL HTTP/2 themes.googleusercontent.com/image?id=rabMT9PC10wCtkMoMM2KrjGV5ejCGidFlmg3elSmmoRNnd0FxKwY5T0RGV948R08752LcEb6qEXa&options=w1600
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, description=600-07802918\302\251 Raimund LinkeModel Release: NoProperty Release: NoCoastal Beech Forest with Path and Fog in Night, Gespensterwal, software=Picasa, copyright=\302\251 Raimund Linke / Radius Images], baseline, precision 8, 1600x1068, components 3\012- data
Hash 676ea6ab6b3c3a0da2a7413d4cf2476e
c84de644056752234d415ea1ceac9c19ffb7bfe5
46720e49100bf56b2835a7dfe0ec65d117b24525550745ee1172cac5e7495fef
GET /image?id=rabMT9PC10wCtkMoMM2KrjGV5ejCGidFlmg3elSmmoRNnd0FxKwY5T0RGV948R08752LcEb6qEXa&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 20 Sep 2022 09:53:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 09:53:15 GMT
server: fife
content-length: 98390
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.investopedia.com/thmb/kXRXiOc0q_adOzWIjWHGtrFwlKw=/6250x3337/filters:no_upscale():max_bytes(150000):strip_icc()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg
151.101.86.137200 OK 550 kB URL HTTP/2 www.investopedia.com/thmb/kXRXiOc0q_adOzWIjWHGtrFwlKw=/6250x3337/filters:no_upscale():max_bytes(150000):strip_icc()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 6250x3337, components 3\012- data
Size 550 kB (550002 bytes)
Hash 52212a34a0336bd25263a223af494236
8ef13a369d34dab006683aa55cd6f8460491c9e1
e89cff4cac44b79fb247fc69bf54d2c5659313d7a4b767a89e9e9344af1cfe2b
GET /thmb/kXRXiOc0q_adOzWIjWHGtrFwlKw=/6250x3337/filters:no_upscale():max_bytes(150000):strip_icc()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg HTTP/1.1
Host: www.investopedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
expires: Wed, 02 Aug 2023 11:03:52 GMT
server: Thumbor/6.7.13
etag: "8ef13a369d34dab006683aa55cd6f8460491c9e1"
cache-control: max-age=31536000,public, no-transform
via: 1.1 varnish, 1.1 varnish
nel: {"report_to":"network-errors","max_age":2592000,"success_fraction":0,"failure_fraction":1.0, "include_subdomains": true}
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://r.3gl.net/hawklogserver/555/re.p"}]}
accept-ranges: bytes
date: Mon, 19 Sep 2022 09:53:15 GMT
age: 4142962
x-served-by: cache-iad-kjyo7100033-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
content-length: 550002
X-Firefox-Spdy: h2
www.investopedia.com/thmb/OG204YQ_QsmZNIE40AkcXzWUO-8=/5667x3959/filters:no_upscale():max_bytes(150000):strip_icc()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-02-6e3072bd99d74ee4a0492e799e21560b.jpg
151.101.86.137200 OK 618 kB URL HTTP/2 www.investopedia.com/thmb/OG204YQ_QsmZNIE40AkcXzWUO-8=/5667x3959/filters:no_upscale():max_bytes(150000):strip_icc()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-02-6e3072bd99d74ee4a0492e799e21560b.jpg
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 5667x3959, components 3\012- data
Size 618 kB (618372 bytes)
Hash e6cb31f55e8a73505ba768e8981bab40
6c72513ee29dfd2532a82fb3dfb00e81b970f2bc
b0a3071aab89c705ba53aa4d48cbd918cf9bf319c1be5138c55f3d02dc2d8616
GET /thmb/OG204YQ_QsmZNIE40AkcXzWUO-8=/5667x3959/filters:no_upscale():max_bytes(150000):strip_icc()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-02-6e3072bd99d74ee4a0492e799e21560b.jpg HTTP/1.1
Host: www.investopedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oXsO9T2ocbfvREYLc3rbHUnLrqQJLpYzFA+vEx0MZOD2lActb3DQqWsGDcdK/wspxYoAWtSuybM=
x-amz-request-id: 1ECYKP0R98WQ289H
last-modified: Thu, 08 Oct 2020 13:26:40 GMT
etag: "e6cb31f55e8a73505ba768e8981bab40"
content-type: image/jpeg
server: AmazonS3
cache-control: max-age=31536000,public,no-transform
via: 1.1 varnish, 1.1 varnish
nel: {"report_to":"network-errors","max_age":2592000,"success_fraction":0,"failure_fraction":1.0, "include_subdomains": true}
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://r.3gl.net/hawklogserver/555/re.p"}]}
accept-ranges: bytes
date: Mon, 19 Sep 2022 09:53:15 GMT
age: 498400
x-served-by: cache-iad-kcgs7200123-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
content-length: 618372
X-Firefox-Spdy: h2
www.investopedia.com/thmb/hB66KYN7dfCeLQXmIUuJw27X1sY=/4449x3337/smart/filters:no_upscale()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg
151.101.86.137200 OK 898 kB URL HTTP/2 www.investopedia.com/thmb/hB66KYN7dfCeLQXmIUuJw27X1sY=/4449x3337/smart/filters:no_upscale()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 4449x3337, components 3\012- data
Size 898 kB (898221 bytes)
Hash a8d3fa215c62beca353b886af043e697
8834c6fa1e660b6e6a09bd26931206a43351214f
4b6dc7db8905e23c5b764f21cbad33ce84b98422b57a38a5ccb92b9594fc1253
GET /thmb/hB66KYN7dfCeLQXmIUuJw27X1sY=/4449x3337/smart/filters:no_upscale()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg HTTP/1.1
Host: www.investopedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XvBLt0Rm6jDLet8BHWJWDayLB6erXteul72u85ZL72JV3s4NFjfgbbxISQQbbTfXBgCxUn51FHI=
x-amz-request-id: WF8333JVD25JECXF
last-modified: Thu, 08 Oct 2020 19:53:17 GMT
etag: "a8d3fa215c62beca353b886af043e697"
content-type: image/jpeg
server: AmazonS3
cache-control: max-age=31536000,public,no-transform
via: 1.1 varnish, 1.1 varnish
nel: {"report_to":"network-errors","max_age":2592000,"success_fraction":0,"failure_fraction":1.0, "include_subdomains": true}
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://r.3gl.net/hawklogserver/555/re.p"}]}
accept-ranges: bytes
date: Mon, 19 Sep 2022 09:53:15 GMT
age: 490241
x-served-by: cache-iad-kjyo7100089-IAD, cache-bma1677-BMA
x-cache: HIT, MISS
x-cache-hits: 113, 0
content-length: 898221
X-Firefox-Spdy: h2
www.investopedia.com/thmb/dvY_xqRZzMJ_8KDsPoMxfywVGSo=/3337x3337/smart/filters:no_upscale()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg
151.101.86.137200 OK 605 kB URL HTTP/2 www.investopedia.com/thmb/dvY_xqRZzMJ_8KDsPoMxfywVGSo=/3337x3337/smart/filters:no_upscale()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3337x3337, components 3\012- data
Size 605 kB (605175 bytes)
Hash 160c9930565c98884c35967095eee044
f2fd77731865fdcb89c3717d66cfe2ccb8fd7760
5ede0cbf6ffa264df7b8a62c291971ff9dbee0172a984b1b5d934f199f578b1f
GET /thmb/dvY_xqRZzMJ_8KDsPoMxfywVGSo=/3337x3337/smart/filters:no_upscale()/dotdash_Final_How_to_Calculate_Return_on_Assets_ROA_With_Examples_Sep_2020-01-43bbd8c00ab24868899a202af2f7ba30.jpg HTTP/1.1
Host: www.investopedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Qjyg8X+4X1qzqsOTtAIFHzDXWs1z/L/xgBACMOzPhlJBpEvV5duY/E5XhxZ5jMfgyBPMEvhqnzs=
x-amz-request-id: D9R9T2H3ZKGDGGR4
last-modified: Fri, 09 Oct 2020 14:56:41 GMT
etag: "160c9930565c98884c35967095eee044"
content-type: image/jpeg
server: AmazonS3
cache-control: max-age=31536000,public,no-transform
via: 1.1 varnish, 1.1 varnish
nel: {"report_to":"network-errors","max_age":2592000,"success_fraction":0,"failure_fraction":1.0, "include_subdomains": true}
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://r.3gl.net/hawklogserver/555/re.p"}]}
accept-ranges: bytes
date: Mon, 19 Sep 2022 09:53:15 GMT
age: 484037
x-served-by: cache-iad-kiad7000123-IAD, cache-bma1677-BMA
x-cache: HIT, MISS
x-cache-hits: 39, 0
content-length: 605175
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e1cec855709b92825b911f502bb5c2be
b8c85f3ab7962ec75a84550fbfeb893e9142a45e
33f0154a7d187010268a1bb6785d03eb10a1af1b58dd3fd59e0f570fa23834f5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4583
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Last-Modified: Mon, 19 Sep 2022 08:36:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e1cec855709b92825b911f502bb5c2be
b8c85f3ab7962ec75a84550fbfeb893e9142a45e
33f0154a7d187010268a1bb6785d03eb10a1af1b58dd3fd59e0f570fa23834f5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4583
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Last-Modified: Mon, 19 Sep 2022 08:36:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
iklan.diraya.my.id/728.js
104.21.24.51200 OK 688 B URL HTTP/2 iklan.diraya.my.id/728.js
IP 104.21.24.51:0
Hash 76c666b75a8b91ff94e8de56d1f04b3a
bd5a750026411f0940fbc7ccaf392665fa753304
bf63b3cbe99e05da94ec4bed383ffc9af64d00fadf4132b5715db8a654215774
GET /728.js HTTP/1.1
Host: iklan.diraya.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:15 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"de65e61ff9c1509429df8c0dc03eaa4b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JetQYuF988BJsFGaf1Wg1%2FO7hzLBkajjyHS8A1zebb7jarWEUjzYQv5bFNwCHvOICnIoMKyloi4LrqBE3yq3pVmtSXJAooDwst96g4bqJGvlrVcj%2B07%2BU0rwLcjITGI8jyag%2Bsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 74d16ee52add1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash c4f000f5c9e3306a5a1ab4c2558f4f93
19b08636d5c94ce7d42f633c6f2123076358652e
003afd64234bc53be356195dd79f48c9724560158b29983d074d5d91095affd5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 19 Sep 2022 09:53:15 GMT
Last-Modified: Mon, 19 Sep 2022 08:57:24 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zPCTqQH1TroE3E3wRQP_js_qkdCNQqSvJvjrv1wK0CCGShXhBosxmg==
Age: 3351
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 64ec3bb093ba2abf335e3c98e7d56975
d3c514ea2e4cde6d90476fa7ef90758c0650e549
4e9381f6ac413bc90b5d782cbdab309105b46aedc7331526750e7e5d075725cf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 09:53:15 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 10:47:18 GMT
Expires: Sat, 24 Sep 2022 10:47:17 GMT
Etag: "d3c514ea2e4cde6d90476fa7ef90758c0650e549"
Cache-Control: max-age=434641,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74d16ee71d51b51d-OSL
www.altexsoft.com/media/2018/01/qa-roles.png
54.230.111.57200 OK 170 kB URL HTTP/2 www.altexsoft.com/media/2018/01/qa-roles.png
IP 54.230.111.57:0
File type PNG image data, 924 x 866, 8-bit/color RGB, non-interlaced\012- data
Size 170 kB (169904 bytes)
Hash fdaa82c21f8fdcc0d96daa2dea989f6e
966faf4c32b32d9d415dd13b7799fd8ed356b185
b37522ae27a5535467c2a1ef24edae8fe7f8381a63c9ca959a182ef18893c18b
GET /media/2018/01/qa-roles.png HTTP/1.1
Host: www.altexsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 169904
date: Mon, 19 Sep 2022 09:53:15 GMT
server: nginx/1.18.0 (Ubuntu)
last-modified: Fri, 12 Feb 2021 14:03:04 GMT
etag: "60268a98-297b0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2JcY4rLu_MweOnyOOYk7fiuOC-6XYLJGMRcwOxCI3LLbIvkYS_CraQ==
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=8543980410745421778&zx=964d566a-9c06-4e58-aef8-b763cab9f748
216.58.207.201200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=8543980410745421778&zx=964d566a-9c06-4e58-aef8-b763cab9f748
IP 216.58.207.201:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=8543980410745421778&zx=964d566a-9c06-4e58-aef8-b763cab9f748 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 19 Sep 2022 09:53:15 GMT
last-modified: Mon, 19 Sep 2022 09:53:15 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0efc4c6daa91585c1e4a0b99135a363
1bf1c3e39054f2e628fd96ed2fa4de01be7aa09b
2e98f83948480b5fdaec2de8be9db53e64e9fbfece443793edbad3758fdefb0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2E98F83948480B5FDAEC2DE8BE9DB53E64E9FBFECE443793EDBAD3758FDEFB0F"
Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5955
Expires: Mon, 19 Sep 2022 11:32:30 GMT
Date: Mon, 19 Sep 2022 09:53:15 GMT
Connection: keep-alive
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1Ctd8wma3PDTHVeCoLlFXHx-_4iR7466npiVNmSZrD3T62VrWKgxHbLwe3vxCMVNcBRVUKAdqHXp9EdCI85_uVwMUCc5llCk_xUuZ4_NM5h_Y7wPZFshBgCWc1nRwM9v5VWy6gQXZqqQsbI5PXvrWJzw=w72-h72-p-k-no-nu
142.250.74.1404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1Ctd8wma3PDTHVeCoLlFXHx-_4iR7466npiVNmSZrD3T62VrWKgxHbLwe3vxCMVNcBRVUKAdqHXp9EdCI85_uVwMUCc5llCk_xUuZ4_NM5h_Y7wPZFshBgCWc1nRwM9v5VWy6gQXZqqQsbI5PXvrWJzw=w72-h72-p-k-no-nu
IP 142.250.74.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 7f892d9cdf6768286d3725b13cc64c1d
2c74b15d51b617039274ccfd722f1eac4384939f
e771a0d5a32fdb53f262aa2d719bcad3709eb2766a49019634ec12c2da909174
GET /blogger_img_proxy/ANbyha1Ctd8wma3PDTHVeCoLlFXHx-_4iR7466npiVNmSZrD3T62VrWKgxHbLwe3vxCMVNcBRVUKAdqHXp9EdCI85_uVwMUCc5llCk_xUuZ4_NM5h_Y7wPZFshBgCWc1nRwM9v5VWy6gQXZqqQsbI5PXvrWJzw=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 09:53:15 GMT
server: fife
content-length: 1755
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.altexsoft.com/media/2018/01/TABLE-test-documents-1.jpg
54.230.111.57200 OK 248 kB URL HTTP/2 www.altexsoft.com/media/2018/01/TABLE-test-documents-1.jpg
IP 54.230.111.57:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1408x2084, components 3\012- data
Size 248 kB (247474 bytes)
Hash 3c20f402b1aee388b8406d1c3399b1e9
831ad41889e113ddd41e9f61f05e7bea01f031fa
6759873421e48537a1d7dab111768faf073810135c244756c42b1a42d2bd241f
GET /media/2018/01/TABLE-test-documents-1.jpg HTTP/1.1
Host: www.altexsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 247474
date: Mon, 19 Sep 2022 09:53:15 GMT
server: nginx/1.18.0 (Ubuntu)
last-modified: Fri, 12 Feb 2021 13:49:34 GMT
etag: "6026876e-3c6b2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 67A3GoHSmVQKaE-sw-f1UosJ0Hwj5ldO_erAakDJ61jdgCu8okGTdw==
X-Firefox-Spdy: h2
www.principlesofaccounting.com/wp-content/gallery/chapter-17/postioning.png
216.251.43.17200 OK 13 kB URL HTTP/2 www.principlesofaccounting.com/wp-content/gallery/chapter-17/postioning.png
IP 216.251.43.17:0
File type PNG image data, 1835 x 382, 8-bit colormap, non-interlaced\012- data
Hash 8b94bea5982a5368657680b162118c10
4eaddc4904134857aa8cc63269c11a8800603882
d0359cfb3ce33371e26cbf7ba86d53ab2405166e28cde143256a087f1bdd9571
GET /wp-content/gallery/chapter-17/postioning.png HTTP/1.1
Host: www.principlesofaccounting.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:15 GMT
content-type: image/png
content-length: 12818
vary: Accept-Encoding
last-modified: Wed, 13 Oct 2021 19:43:46 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.i-scoop.eu/wp-content/uploads/2020/12/By-2023-75-percent-of-organizations-will-have-comprehensive-DX-implementation-roadmaps-which-will-result-in-true-transformation-across-all-facets-of-business-and-society-predicts-IDC-.gif
141.193.213.11200 OK 34 kB URL HTTP/2 www.i-scoop.eu/wp-content/uploads/2020/12/By-2023-75-percent-of-organizations-will-have-comprehensive-DX-implementation-roadmaps-which-will-result-in-true-transformation-across-all-facets-of-business-and-society-predicts-IDC-.gif
IP 141.193.213.11:0
ASN #209242 Cloudflare London, LLC
File type GIF image data, version 89a, 650 x 325\012- data
Hash f2cc78f09ef1bd47956408649c5ee7b8
687ea7ed1d52f398e95f81e3cbad20b8f5b23eea
6f62045d9607a74d4064f7520b5421c97dfd19ba3af210be52fbeb05c32cae2c
GET /wp-content/uploads/2020/12/By-2023-75-percent-of-organizations-will-have-comprehensive-DX-implementation-roadmaps-which-will-result-in-true-transformation-across-all-facets-of-business-and-society-predicts-IDC-.gif HTTP/1.1
Host: www.i-scoop.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:15 GMT
content-type: image/gif
content-length: 34315
last-modified: Sat, 12 Dec 2020 19:16:48 GMT
etag: "5fd51720-860b"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OvPkcCCY%2B%2B2UKWWSmbx7KPnY%2F7CnPOi0retY2uYDdYYqk%2FrpqXWR6MRL0DKdRPJdKPgB%2FHgsC3xzlvPCz5PY6JYQqgJEVD2nTOMYVc6Wv4YnLj3oG0H4iHssNJs%2FiUUL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d16ee5fc6e0b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d2c70b14160818028d5249e3322ef702
ffeaded6cbca41197eab2996b79ca2a9c1362fac
59e545b71ac4df009e4cf67ace085f40fdd538fd307bb175f72d41830770460b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:15 GMT
Last-Modified: Mon, 19 Sep 2022 09:53:15 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
wagerprocuratorantiterrorist.com/cf499c4a78c0296a203adcac3d025397/invoke.js
192.243.59.20200 OK 9.8 kB URL HTTP/1.1 wagerprocuratorantiterrorist.com/cf499c4a78c0296a203adcac3d025397/invoke.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26951), with no line terminators
Hash 1219fb998250706b7af133a7840e1ce7
3ec934d18f6c7431dc798d8be41d5a7b8252fa9c
ecd1e2edfe003f2992ee060fb4e1b56db1de1e4a603d346f94770551bf24e135
Analyzer Verdict Alert quad9 Sinkholed
GET /cf499c4a78c0296a203adcac3d025397/invoke.js HTTP/1.1
Host: wagerprocuratorantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 19 Sep 2022 09:53:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3bcffc250a9a693bd5a38c8f8c23ac53
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Mon, 19 Sep 2022 13:09:28 GMT
Date: Mon, 19 Sep 2022 09:53:15 GMT
Connection: keep-alive
ps-attachments.s3.amazonaws.com/abfafee5-f64d-4032-9d0a-cb91b258ee48/p206ajyclW8y_RKksaRFKg.png
52.218.233.203200 OK 42 kB URL HTTP/1.1 ps-attachments.s3.amazonaws.com/abfafee5-f64d-4032-9d0a-cb91b258ee48/p206ajyclW8y_RKksaRFKg.png
IP 52.218.233.203:0
File type PNG image data, 1024 x 512, 8-bit/color RGB, non-interlaced\012- data
Hash af7cb3cac6d6e249f5f753db1d79c9c8
63fef2b56365d092d8190b74a8f1ebb4f4ab3d04
f71e156c85e83756fc04da5c85b5d000a79cdc6c73a6dbdb98ffda91416cbc4a
GET /abfafee5-f64d-4032-9d0a-cb91b258ee48/p206ajyclW8y_RKksaRFKg.png HTTP/1.1
Host: ps-attachments.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4Pwk+TTaMr3ox2mIM6oJhhpbx6UZi7azk0hwnGy5MluLGUd73wpm8etMRECFEWL144/B/X9eNC8=
x-amz-request-id: 1PAWH8DCCMTS8TYP
Date: Mon, 19 Sep 2022 09:53:16 GMT
Last-Modified: Wed, 06 May 2020 13:26:59 GMT
ETag: "af7cb3cac6d6e249f5f753db1d79c9c8"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=2592000,public
Content-Disposition: inline; filename*=UTF-8''PDCA%20Cycle%20Change%20Management%20Process%20Checklist.png
Expires: Thu, 6 May 2021 13:26:58 GMT
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 41603
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Mon, 19 Sep 2022 13:09:28 GMT
Date: Mon, 19 Sep 2022 09:53:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Mon, 19 Sep 2022 13:09:28 GMT
Date: Mon, 19 Sep 2022 09:53:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Mon, 19 Sep 2022 13:09:28 GMT
Date: Mon, 19 Sep 2022 09:53:15 GMT
Connection: keep-alive
ps-attachments.s3.amazonaws.com/49e98aee-c49c-4bcf-852d-fde5ae82283c/sKpoEavtqAv_k8gDrNlMqQ.png
52.218.233.203200 OK 48 kB URL HTTP/1.1 ps-attachments.s3.amazonaws.com/49e98aee-c49c-4bcf-852d-fde5ae82283c/sKpoEavtqAv_k8gDrNlMqQ.png
IP 52.218.233.203:0
File type PNG image data, 1024 x 512, 8-bit/color RGB, non-interlaced\012- data
Hash 149d0d385ccea8fb04b294a6992fbfac
d06c2f070ba5278c387ac6add7d928a4bf1120ef
f251d96f495e881a721083f112b48f21d4fd81e353f898b233f29f842703bc1d
GET /49e98aee-c49c-4bcf-852d-fde5ae82283c/sKpoEavtqAv_k8gDrNlMqQ.png HTTP/1.1
Host: ps-attachments.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: slSlC04DUclDL/hXcSBRsygX9obiSNQJVGHYH5KcAqbZf/g0NHuDRRJetmFyeUifThhUn2MKTSk=
x-amz-request-id: 1PAVC5MA51WJBYZ7
Date: Mon, 19 Sep 2022 09:53:16 GMT
Last-Modified: Wed, 06 May 2020 13:25:12 GMT
ETag: "149d0d385ccea8fb04b294a6992fbfac"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=2592000,public
Content-Disposition: inline; filename*=UTF-8''McKinsey%207S%20Change%20Management%20Model%20Process%20Checklist.png
Expires: Thu, 6 May 2021 13:25:11 GMT
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 47905
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1105b56cf779b6df1cbd081bbd0cda50
58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c
10c1f0433baf51e06565ff905688075aaba8fec0a8b3f9cef34168e297f94c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5866
x-amzn-requestid: 3a7db39d-cd4f-486f-954b-39fc7464706c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrNeAE67IAMFSoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63278f8c-66a419ac7fbd977f5f41061b;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TdVz72qdwMdsuW1WsOq1qEZk2vmbXJlbppLTTsZ9PlrmN7GEph0dyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:39 GMT
etag: "58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c"
content-type: image/jpeg
age: 43176
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87bddc1f919e51c976d5377040861ea6
f5bf6c28f20414c7dd3ac1098defc46d3d68fd99
28541ca828b6358c8e6081e9f2022e7ad18a8adcb3df09a3fa079f32c08fcda6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10721
x-amzn-requestid: 5c3a2647-0af8-4cd2-8b68-df6606c6362e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yi1NMHVfoAMF-3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63243587-2b73a75b69570a1a144a5f73;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 08:36:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: SpK-J7OfVkg8Gn_-wiaIKrqVl6t14P13ax8TPtsKDRXAVtHj9GWSwg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:43:59 GMT
age: 22156
etag: "f5bf6c28f20414c7dd3ac1098defc46d3d68fd99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da8b8819fc21dcfb224ce0e7ecdc6772
e460ad4376cd118a6fe8b6b050af9398117d9531
9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9901
x-amzn-requestid: e1792a3b-1893-48a6-8d01-463050259dc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiGMYE3IoAMFgvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323ea4f-42ab13411e65943538101b11;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:15:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XmcyJv7bahHB4wMjFmgvh2fEkJJYLPhRrISZ_DczSErdEQjXIxWUvg==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:54:31 GMT
age: 21524
etag: "e460ad4376cd118a6fe8b6b050af9398117d9531"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4098577adb98eae5ba4a8b5e143df71
b0ad467f2837d103f8a96fb732bd34176c4c7110
83aa54020ffc684690dfb58d78608411de38ab02fee50808a8243c6b388e77c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5064
x-amzn-requestid: 985dbd5b-3e8a-4e22-a974-1effa6c99112
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOS8FyBoAMFrCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790df-201df5494f1513b91eefe9d5;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GIhj3a2-SwYu2w4mLx7JiIJzFfV82-Et89ORRsx5fsGOx9nttPlCxA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:13 GMT
etag: "b0ad467f2837d103f8a96fb732bd34176c4c7110"
content-type: image/jpeg
age: 42962
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45d6cb12-076a-432f-9153-165d4ddfa7b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45d6cb12-076a-432f-9153-165d4ddfa7b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f2b49224f40b4ea819e0c66fc155eec
d37b9b044bdb469678433766470ed36a2384817f
b94b1d4e0df0bac9b4a2b5c86bee900248614756fb24e2b7b182a871b425b2ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45d6cb12-076a-432f-9153-165d4ddfa7b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11345
x-amzn-requestid: 6b78aa51-b7d1-494b-93f9-6906911efa7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YowwkHc9IAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632694d0-0f0b85eb5172e8014f0db2a9;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 03:47:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: en9bQR-hlcvBUJkgkKnLgBtYNUbSywwHJ4GZE76oN8eP6m8EnlDgdw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 07:21:09 GMT
age: 9126
etag: "d37b9b044bdb469678433766470ed36a2384817f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65ee14de38a7fcd768ede2f1915c74e4
85119aaf7195d59efc55e36d026bd026060195aa
62569b46e8af692f1d95d707ffdca24075ff6c68e68e13159ab7798b30a7755b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F928a31e7-ade8-4c58-8c67-53db1e3d019e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11712
x-amzn-requestid: d4547112-6faa-472e-ade1-bbbda9c3bea4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOSTFiXIAMFiLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790db-151bae0c351a94a40c48bfbc;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uRrPwbwQ6oBOYhMmxs6YquvIEBKaAC51d98J_5MWYkh-Q8Qg1LVdiw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:39 GMT
etag: "85119aaf7195d59efc55e36d026bd026060195aa"
content-type: image/jpeg
age: 43176
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
wagerprocuratorantiterrorist.com/d648397c2f4ceb2049e9dbaf98cf46ac/invoke.js
192.243.59.20200 OK 9.8 kB URL HTTP/1.1 wagerprocuratorantiterrorist.com/d648397c2f4ceb2049e9dbaf98cf46ac/invoke.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Hash 7d9d58a48fdccd54207d90a1bbce5841
ab51135765e801a016f7b089b04453b562c4b33f
2f0b43041a395fc48d147b58fe676ee46c6e503f5edd0ef4cd0e84e728df875f
Analyzer Verdict Alert quad9 Sinkholed
GET /d648397c2f4ceb2049e9dbaf98cf46ac/invoke.js HTTP/1.1
Host: wagerprocuratorantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 19 Sep 2022 09:53:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cd620dafc06648726e54620a1b7a0636
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 9fc04c55e695731dd8b9e69a36ef1c76
e5267f385dcab77d6dcd11e86267c0ae55e59bc4
f5558100b1c676f1a3495e560e3495a832b3b94c7acf8a032002f3fc18862d1e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 19 Sep 2022 09:53:15 GMT
Last-Modified: Mon, 19 Sep 2022 08:50:15 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0XjJxltNxuCP2s4Au6S5d7wmfCVKxh7SUUUUIkD3YSBCZChyxsG6PA==
Age: 3781
simplewebanalysis.com/stats
3.64.106.196200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.64.106.196:0
File type ASCII text, with no line terminators
Hash 8794ea17f514a5377791bc70970f4feb
52a19aa28afbfc7589bf5bdf6268d030b3064bd5
b59230e28e16b077874ef399cc49699a2a52b19b5e911acfb9d810295dc19e7d
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tyshawn-ksimmons.blogspot.com
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:16 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://tyshawn-ksimmons.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=6c433c44-3519-4b33-8e4c-f94c51e29e4d:3:1; expires=Thu, 16 Sep 2032 09:53:16 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
opentextbc.ca/principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PB03_img.jpg
204.239.18.18200 OK 88 kB URL HTTP/1.1 opentextbc.ca/principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PB03_img.jpg
IP 204.239.18.18:0
File type JPEG image data, baseline, precision 8, 1200x204, components 4\012- data
Hash 92d4715f58549523fdbccd6ff0feb9ef
0cbc24de779cbcd6cca0c765a5eb9e177ac09ae6
a79752e920269307a467ddb6c501602ee2a464e8bbb61767e57f1e4e63c7c90a
GET /principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PB03_img.jpg HTTP/1.1
Host: opentextbc.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 09:53:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 23 Jul 2019 18:06:05 GMT
ETag: "1582f-58e5d0bd27d40"
Accept-Ranges: bytes
Content-Length: 88111
Cache-Control: max-age=604800
Expires: Mon, 26 Sep 2022 09:53:12 GMT
Vary: User-Agent
Content-Type: image/jpeg
opentextbc.ca/principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PA05_img.jpg
204.239.18.18200 OK 63 kB URL HTTP/1.1 opentextbc.ca/principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PA05_img.jpg
IP 204.239.18.18:0
File type JPEG image data, baseline, precision 8, 900x251, components 4\012- data
Hash 6d356509aa6dec087fccf3aafb92c9bf
8386ed37f14bb984631786f789db09370864ad47
99654629cd135adec428158ceab1fff25c9a9a6de615dd37d35424b27e76f1a3
GET /principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PA05_img.jpg HTTP/1.1
Host: opentextbc.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 09:53:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 23 Jul 2019 18:06:04 GMT
ETag: "f650-58e5d0bc33b00"
Accept-Ranges: bytes
Content-Length: 63056
Cache-Control: max-age=604800
Expires: Mon, 26 Sep 2022 09:53:12 GMT
Vary: User-Agent
Content-Type: image/jpeg
wagerprocuratorantiterrorist.com/c5b69fadf511d6654a7370dc0a3c7c81/invoke.js
192.243.59.20200 OK 9.8 kB URL HTTP/1.1 wagerprocuratorantiterrorist.com/c5b69fadf511d6654a7370dc0a3c7c81/invoke.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26941), with no line terminators
Hash b4a005012518018370f9cb9836fccda7
2338da642c77fd0c61ebb8b810314cceab4cac68
6bbf01342e765d14fad74141244501bbcc3be3ebc6ebb3351170a668a83b4338
Analyzer Verdict Alert quad9 Sinkholed
GET /c5b69fadf511d6654a7370dc0a3c7c81/invoke.js HTTP/1.1
Host: wagerprocuratorantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 19 Sep 2022 09:53:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cb0ae67d4217155417a768f10ecc518c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
simplewebanalysis.com/stats
3.64.106.196200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.64.106.196:0
File type ASCII text, with no line terminators
Hash a6887c46ede4ef56e7f86998173ec73f
5033935adbd3cd0f222fade99392201ac43a53da
11edb61166434be81623ead040028c0d12a37a44509778385901100175325dac
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tyshawn-ksimmons.blogspot.com
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:16 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://tyshawn-ksimmons.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=2ef3e205-997f-459e-93de-2f82e3ad6872:2:1; expires=Thu, 16 Sep 2032 09:53:16 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data
Hash 7fbdfaab6bd8b191496ffe1ef1b9e748
e9e592f8498d489d8000f3a4cfb1bb447f251edd
bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tyshawn-ksimmons.blogspot.com
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:44:29 GMT
expires: Thu, 14 Sep 2023 19:44:29 GMT
cache-control: public, max-age=31536000
age: 396527
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opentextbc.ca/principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PB01_img.jpg
204.239.18.18200 OK 87 kB URL HTTP/1.1 opentextbc.ca/principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PB01_img.jpg
IP 204.239.18.18:0
File type JPEG image data, baseline, precision 8, 900x281, components 4\012- data
Hash 8a8d63fd5d50affd9ce645c02f4e5f9f
3db2f102053be159050ec2062f52466d0cbb24d6
f1ea8daaf7967649f44a13527792b4c5e279bf92ee7d12820ee8dd3b59b4b7e1
GET /principlesofaccountingv2openstax/wp-content/uploads/sites/268/2019/07/OSX_Acct_M06_04_PB01_img.jpg HTTP/1.1
Host: opentextbc.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 09:53:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 23 Jul 2019 18:06:04 GMT
ETag: "154dc-58e5d0bc33b00"
Accept-Ranges: bytes
Content-Length: 87260
Cache-Control: max-age=604800
Expires: Mon, 26 Sep 2022 09:53:12 GMT
Vary: User-Agent
Content-Type: image/jpeg
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf
IP 142.250.74.163:0
File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-Regularhtt\012- data
Hash 776741f74c745ce6e549befb01db1d6d
47cc22e349ebc7a35a8dd3c397924ed59493641b
784d79bd9a3bdfb3e6866567633309410f43631b42ce67a328ee5963fc9a6a0f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:32:51 GMT
expires: Thu, 14 Sep 2023 08:32:51 GMT
cache-control: public, max-age=31536000
age: 436825
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a6657e713a659ef4edb0720cd2779908
01ae147958665e6056a339d8f90e2a22945aa429
a3376d4fdf014bafe76dc89ecc1bfe609cb4274c34f8b9b2edecef0e2fab27dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3376D4FDF014BAFE76DC89ECC1BFE609CB4274C34F8B9B2EDECEF0E2FAB27DD"
Last-Modified: Mon, 19 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16897
Expires: Mon, 19 Sep 2022 14:34:53 GMT
Date: Mon, 19 Sep 2022 09:53:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b5b55f6c9e2acbd5fc33381ecc4603c5
e0b3afa431be81a599695046880db9ed3dbaa6e5
4ec3f3c2b480545e5d85ad5d67e5b80b1c18c324ce181136be5d10081fd626c1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4EC3F3C2B480545E5D85AD5D67E5B80B1C18C324CE181136BE5D10081FD626C1"
Last-Modified: Mon, 19 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12308
Expires: Mon, 19 Sep 2022 13:18:24 GMT
Date: Mon, 19 Sep 2022 09:53:16 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4ee5c6443c11da4a5cf7ea801cd0c62f
e742a7ee1cbedf1a23a82361f3873dbc165f927c
e3682e49ed03efcf590a500154380807b54433f8344923e9017994bdf0d46924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 668 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash a885189cd9a522cfaaac98af1a03b512
a4045ce6f8d8e14582bb5245694d73b40da7f0f7
6afe80cbbc72285aa8f73e7d64bdeb755148410a8ec6c0eb13df255548ef17ad
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 19 Sep 2022 09:53:16 GMT
date: Mon, 19 Sep 2022 09:53:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 668
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 007ade489f30e34d37dda9a9858f2e75
2d67f099bdc231ec7a6cfc6ebf7ccff3e096a07c
7aecde1cdea004e42c554cfe8640216a98e4d371e3ca25b85426ccfbac739eea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7AECDE1CDEA004E42C554CFE8640216A98E4D371E3CA25B85426CCFBAC739EEA"
Last-Modified: Fri, 16 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7030
Expires: Mon, 19 Sep 2022 11:50:26 GMT
Date: Mon, 19 Sep 2022 09:53:16 GMT
Connection: keep-alive
www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (581)
Size 158 kB (157726 bytes)
Hash 6519c7c04cf32a57b1c5ee45a73c233e
4939bb921988e9eb13780cc2244f3099776e9bfb
8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
content-type: text/javascript
age: 447347
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 56433b6932f28a949ac82fec1caa9e99
017c5a1ccc0f6e68fd60a9d0658c0526b81b4156
a6fe9208db3d30b3a81378a59aa588480ab2080c33f1d0921752c2dfdc76d1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
exerciseundergone.com/watch.467084624247.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1
192.243.59.12307 Temporary Redirect 0 B URL HTTP/1.1 exerciseundergone.com/watch.467084624247.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.467084624247.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1 HTTP/1.1
Host: exerciseundergone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tyshawn-ksimmons.blogspot.com
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Mon, 19 Sep 2022 09:53:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Origin: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://exerciseundergone.com/watch.467084624247.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1&shu=0b9cd267318b9e3bb17098a9633ecc3fc2b501adc59f840915aa1ca6e7a90c96befc0d8a2459d530a7bf7f8f3eeb1bdd22b7d6156e981a8790da1d66f57c2e4eb63c740835abe6bb553ee6d370463398a7474802&pst=1663581256&rmtc=t
Set-Cookie: u_pl=16704213; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwNDIxMywiayI6ImNmNDk5YzRhNzhjMDI5NmEyMDNhZGNhYzNkMDI1Mzk3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNDc0ODQwLCJwaWQiOjI3NDQyNCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjoyMywicHQiOjQsInBrIjoieWtpMGExNnNqIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3R5c2hhd24ta3NpbW1vbnMuYmxvZ3Nwb3QuY29tLzIwMjIvMDQvY29tcGFuaWVzLWNhbi1pbXByb3ZlLWpvYi1jb3N0LWFjY3VyYWN5Lmh0bWwifX0.ebjRcc6kJqsUSCm4uDhoSUJZbOrEdL2DakMHZizmfXo; expires=Mon, 19 Sep 2022 09:54:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cf34863b633abf13d8b6710dfe1843a8
Strict-Transport-Security: max-age=0; includeSubdomains
peeredgerman.com/watch.162213312555.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1
192.243.59.12307 Temporary Redirect 0 B URL HTTP/1.1 peeredgerman.com/watch.162213312555.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.162213312555.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1 HTTP/1.1
Host: peeredgerman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tyshawn-ksimmons.blogspot.com
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Mon, 19 Sep 2022 09:53:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Origin: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://peeredgerman.com/watch.162213312555.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1&shu=9d133ef34627f003cc3f48f7bb5cb9f4e54e8bd252dd3366db2f6b965b14a1b21c63cbd824fcaf639a7a5a78ec9f91473aa58b1c20d7dd475b5c08c7114e0b62273f92430fc84d215e4acd3dc4df2f95e9daa5&pst=1663581256&rmtc=t
Set-Cookie: u_pl=16704211; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.EgmFtZMD8ddGLrcqWvHmo64oLTOfZCvdYOSTCCRWPy0; expires=Mon, 19 Sep 2022 09:54:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3ca6401648d11f784787ac29556c1bab
Strict-Transport-Security: max-age=0; includeSubdomains
exerciseundergone.com/watch.467084624247.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1&shu=0b9cd267318b9e3bb17098a9633ecc3fc2b501adc59f840915aa1ca6e7a90c96befc0d8a2459d530a7bf7f8f3eeb1bdd22b7d6156e981a8790da1d66f57c2e4eb63c740835abe6bb553ee6d370463398a7474802&pst=1663581256&rmtc=t
192.243.59.12200 OK 2.1 kB URL HTTP/1.1 exerciseundergone.com/watch.467084624247.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1&shu=0b9cd267318b9e3bb17098a9633ecc3fc2b501adc59f840915aa1ca6e7a90c96befc0d8a2459d530a7bf7f8f3eeb1bdd22b7d6156e981a8790da1d66f57c2e4eb63c740835abe6bb553ee6d370463398a7474802&pst=1663581256&rmtc=t
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (2611)
Hash b396c830577f127137a4dd071faa04e0
ddd6a8397d4fffafcb665c84baac4565804303f1
57e2c8cf5e0585071b60db7a8e9b7394ecfacec5f1df41aa08ef6ea1f32bc25b
GET /watch.467084624247.js?key=cf499c4a78c0296a203adcac3d025397&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1&shu=0b9cd267318b9e3bb17098a9633ecc3fc2b501adc59f840915aa1ca6e7a90c96befc0d8a2459d530a7bf7f8f3eeb1bdd22b7d6156e981a8790da1d66f57c2e4eb63c740835abe6bb553ee6d370463398a7474802&pst=1663581256&rmtc=t HTTP/1.1
Host: exerciseundergone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tyshawn-ksimmons.blogspot.com
Referer: https://tyshawn-ksimmons.blogspot.com/
Connection: keep-alive
Cookie: u_pl=16704213; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwNDIxMywiayI6ImNmNDk5YzRhNzhjMDI5NmEyMDNhZGNhYzNkMDI1Mzk3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNDc0ODQwLCJwaWQiOjI3NDQyNCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjoyMywicHQiOjQsInBrIjoieWtpMGExNnNqIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3R5c2hhd24ta3NpbW1vbnMuYmxvZ3Nwb3QuY29tLzIwMjIvMDQvY29tcGFuaWVzLWNhbi1pbXByb3ZlLWpvYi1jb3N0LWFjY3VyYWN5Lmh0bWwifX0.ebjRcc6kJqsUSCm4uDhoSUJZbOrEdL2DakMHZizmfXo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 19 Sep 2022 09:53:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Origin: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6c433c44-3519-4b33-8e4c-f94c51e29e4d:3:1; expires=Mon, 26 Sep 2022 09:53:16 GMT; secure; SameSite=None
iprc555606be6555528d2aa718b0b1df1340=3569808; expires=Mon, 19 Sep 2022 13:53:16 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
uncs=1; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
pdhtkv23=true; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
uncs23=1; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aa8ef3156c2c3cf2a50ac3f1ee6db1b2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
refutationtiptoe.com/watch.1130781649049.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=2ef3e205-997f-459e-93de-2f82e3ad6872%3A2%3A1
173.233.139.164307 Temporary Redirect 0 B URL HTTP/1.1 refutationtiptoe.com/watch.1130781649049.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=2ef3e205-997f-459e-93de-2f82e3ad6872%3A2%3A1
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1130781649049.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=2ef3e205-997f-459e-93de-2f82e3ad6872%3A2%3A1 HTTP/1.1
Host: refutationtiptoe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tyshawn-ksimmons.blogspot.com
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Mon, 19 Sep 2022 09:53:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Origin: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://refutationtiptoe.com/watch.1130781649049.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=2ef3e205-997f-459e-93de-2f82e3ad6872%3A2%3A1&shu=740b445f1f47befd91aa734b76042ea765a896b2379e041dfcd36dadd750cc104d68b0355815943b1b4ac74c89d76cd4909b14644395604f9ca152d95d5eabfda74447949aa72b23930c8578efb853790accaac25d6867c4976aec8359cf&pst=1663581256&rmtc=t
Set-Cookie: u_pl=16006454; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjAwNjQ1NCwiayI6ImQ2NDgzOTdjMmY0Y2ViMjA0OWU5ZGJhZjk4Y2Y0NmFjIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNDc0ODQwLCJwaWQiOjI3NDQyNCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjo1LCJwdCI6NCwicGsiOiJ5a3lmMGR4eXZiIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3R5c2hhd24ta3NpbW1vbnMuYmxvZ3Nwb3QuY29tLzIwMjIvMDQvY29tcGFuaWVzLWNhbi1pbXByb3ZlLWpvYi1jb3N0LWFjY3VyYWN5Lmh0bWwifX0.skIGCEozTgUFPQxJm76XkLaDi0U9obi_AsPpIztwi3U; expires=Mon, 19 Sep 2022 09:54:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f84707901f9455efa1f0e2eef1d614d7
Strict-Transport-Security: max-age=0; includeSubdomains
peeredgerman.com/watch.162213312555.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1&shu=9d133ef34627f003cc3f48f7bb5cb9f4e54e8bd252dd3366db2f6b965b14a1b21c63cbd824fcaf639a7a5a78ec9f91473aa58b1c20d7dd475b5c08c7114e0b62273f92430fc84d215e4acd3dc4df2f95e9daa5&pst=1663581256&rmtc=t
192.243.59.12200 OK 2.1 kB URL HTTP/1.1 peeredgerman.com/watch.162213312555.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1&shu=9d133ef34627f003cc3f48f7bb5cb9f4e54e8bd252dd3366db2f6b965b14a1b21c63cbd824fcaf639a7a5a78ec9f91473aa58b1c20d7dd475b5c08c7114e0b62273f92430fc84d215e4acd3dc4df2f95e9daa5&pst=1663581256&rmtc=t
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (2625)
Hash 5af7034aeb6f3ad0c107c8430bc7b689
4c39ef91ce0048bbd0006643e3fa226aa8d94a04
cc54020fae665a911b60a7eea10cf3784ccb0ffbd555f688b2ea676b22e87071
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.162213312555.js?key=c5b69fadf511d6654a7370dc0a3c7c81&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=6c433c44-3519-4b33-8e4c-f94c51e29e4d%3A3%3A1&shu=9d133ef34627f003cc3f48f7bb5cb9f4e54e8bd252dd3366db2f6b965b14a1b21c63cbd824fcaf639a7a5a78ec9f91473aa58b1c20d7dd475b5c08c7114e0b62273f92430fc84d215e4acd3dc4df2f95e9daa5&pst=1663581256&rmtc=t HTTP/1.1
Host: peeredgerman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tyshawn-ksimmons.blogspot.com
Referer: https://tyshawn-ksimmons.blogspot.com/
Connection: keep-alive
Cookie: u_pl=16704211; ain=eyJhbGciOiJIUzI1NiJ9.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.EgmFtZMD8ddGLrcqWvHmo64oLTOfZCvdYOSTCCRWPy0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 19 Sep 2022 09:53:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Origin: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6c433c44-3519-4b33-8e4c-f94c51e29e4d:3:1; expires=Mon, 26 Sep 2022 09:53:16 GMT; secure; SameSite=None
iprc48c8f1ced3f39aee585ed409082976f3=3570421; expires=Mon, 19 Sep 2022 13:53:16 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
uncs=1; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
pdhtkv32=true; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
uncs32=1; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: be1b7723510e5319b2d318a8654685b0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 56433b6932f28a949ac82fec1caa9e99
017c5a1ccc0f6e68fd60a9d0658c0526b81b4156
a6fe9208db3d30b3a81378a59aa588480ab2080c33f1d0921752c2dfdc76d1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 56433b6932f28a949ac82fec1caa9e99
017c5a1ccc0f6e68fd60a9d0658c0526b81b4156
a6fe9208db3d30b3a81378a59aa588480ab2080c33f1d0921752c2dfdc76d1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 09:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Mon, 19 Sep 2022 09:53:17 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+266; expires=Wed, 18-Sep-2024 09:53:17 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 09:53:17 GMT
cache-control: private
X-Firefox-Spdy: h2
refutationtiptoe.com/watch.1130781649049.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=2ef3e205-997f-459e-93de-2f82e3ad6872%3A2%3A1&shu=740b445f1f47befd91aa734b76042ea765a896b2379e041dfcd36dadd750cc104d68b0355815943b1b4ac74c89d76cd4909b14644395604f9ca152d95d5eabfda74447949aa72b23930c8578efb853790accaac25d6867c4976aec8359cf&pst=1663581256&rmtc=t
173.233.139.164200 OK 2.1 kB URL HTTP/1.1 refutationtiptoe.com/watch.1130781649049.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=2ef3e205-997f-459e-93de-2f82e3ad6872%3A2%3A1&shu=740b445f1f47befd91aa734b76042ea765a896b2379e041dfcd36dadd750cc104d68b0355815943b1b4ac74c89d76cd4909b14644395604f9ca152d95d5eabfda74447949aa72b23930c8578efb853790accaac25d6867c4976aec8359cf&pst=1663581256&rmtc=t
IP 173.233.139.164:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (2650)
Hash 674e2a212285b69044113d76ca31a40e
81c2a14ffab34ec7c9dc5b5c7fc19d774a52db75
4a83e436f9b455d893f17743d540510c328da32af6160ee8787c2695f16961b8
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1130781649049.js?key=d648397c2f4ceb2049e9dbaf98cf46ac&kw=%5B%22companies%22%2C%22can%22%2C%22improve%22%2C%22job%22%2C%22cost%22%2C%22accuracy%22%2C%22by%22%2C%22using%22%5D&refer=https%3A%2F%2Ftyshawn-ksimmons.blogspot.com%2F2022%2F04%2Fcompanies-can-improve-job-cost-accuracy.html&tz=0&dev=r&res=12.31&uuid=2ef3e205-997f-459e-93de-2f82e3ad6872%3A2%3A1&shu=740b445f1f47befd91aa734b76042ea765a896b2379e041dfcd36dadd750cc104d68b0355815943b1b4ac74c89d76cd4909b14644395604f9ca152d95d5eabfda74447949aa72b23930c8578efb853790accaac25d6867c4976aec8359cf&pst=1663581256&rmtc=t HTTP/1.1
Host: refutationtiptoe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tyshawn-ksimmons.blogspot.com
Referer: https://tyshawn-ksimmons.blogspot.com/
Connection: keep-alive
Cookie: u_pl=16006454; ain=eyJhbGciOiJIUzI1NiJ9.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.skIGCEozTgUFPQxJm76XkLaDi0U9obi_AsPpIztwi3U
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Sep 2022 09:53:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Origin: https://tyshawn-ksimmons.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=2ef3e205-997f-459e-93de-2f82e3ad6872:2:1; expires=Mon, 26 Sep 2022 09:53:16 GMT; secure; SameSite=None
iprc15a5916aed853448cf902901895635c6=3569806; expires=Mon, 19 Sep 2022 13:53:16 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
uncs=1; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 20 Sep 2022 09:53:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 19968bc0bce1ec767818af6825da834f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2974
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 19 Sep 2022 09:53:17 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+027; expires=Wed, 18-Sep-2024 09:53:17 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 09:53:17 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e9645643e1a43d77b51841592522035e
f68948762b7c3e69fab5f71bf690f77b6cd76155
aa340c2215536bc9f307bd8c245f43b792f19dd5ee4b528621054ea8bcac9ca3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA340C2215536BC9F307BD8C245F43B792F19DD5EE4B528621054EA8BCAC9CA3"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8686
Expires: Mon, 19 Sep 2022 12:18:03 GMT
Date: Mon, 19 Sep 2022 09:53:17 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 9b284e63627e0d292e873e35b0eac55c
07e1cfff1ccdf5c61997b7b4875f0a4ebaec65ab
9d02993843dbdb4a77da65f16cc0c2b507ae1b1dbb2a6869468d381ef10b1d7d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 19 Sep 2022 09:53:17 GMT
Last-Modified: Mon, 19 Sep 2022 09:17:50 GMT
Server: ECS (dcb/7EA7)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s3Mes29J3tiALcrb0vWaO6viD0rS927CvjsmhQvEGaE93mj6AWz1Ww==
Age: 2127
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 9b284e63627e0d292e873e35b0eac55c
07e1cfff1ccdf5c61997b7b4875f0a4ebaec65ab
9d02993843dbdb4a77da65f16cc0c2b507ae1b1dbb2a6869468d381ef10b1d7d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 19 Sep 2022 09:53:17 GMT
Last-Modified: Mon, 19 Sep 2022 09:17:50 GMT
Server: ECS (dcb/7ECA)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: N-A_6pfENyq-JeUyS33XjzmprI2RTPRIXeUK4BU36Q8QChzR2LFcmg==
Age: 2127
cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
45.133.44.10200 OK 106 kB URL HTTP/2 cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105910 bytes)
Hash a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e
GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:17 GMT
content-type: image/png
content-length: 105910
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Wed, 21 Sep 2022 09:53:17 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg
45.133.44.10200 OK 25 kB URL HTTP/2 cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, baseline, precision 8, 320x50, components 3\012- data
Hash d465d02b90e928dfd9d9846e102a9dac
22f7333777bec813bd9a7b870913a2b79b6d2fe4
e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd
GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:17 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Wed, 21 Sep 2022 09:53:17 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
45.133.44.10200 OK 144 kB URL HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:17 GMT
content-type: image/png
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Wed, 21 Sep 2022 09:53:17 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 9b284e63627e0d292e873e35b0eac55c
07e1cfff1ccdf5c61997b7b4875f0a4ebaec65ab
9d02993843dbdb4a77da65f16cc0c2b507ae1b1dbb2a6869468d381ef10b1d7d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 19 Sep 2022 09:53:17 GMT
Server: ECS (dcb/7F5D)
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jQi73CTIw8QylMpShO9lKizxKzgIG_Owmp1lMUhgFkN12ANrap6u8g==
qualaroo.com/customer-journey-map/img/customer-journey-map.png
44.209.118.12200 OK 115 kB URL HTTP/2 qualaroo.com/customer-journey-map/img/customer-journey-map.png
IP 44.209.118.12:0
File type PNG image data, 898 x 635, 8-bit/color RGBA, non-interlaced\012- data
Size 115 kB (114649 bytes)
Hash d766df8f5e5f68763946055d3db19439
1eb2c77e5355cd2cd1783e0ab255c602a81105bf
78f1a983dfd6e427933eb1766f97b8f2a993232846c9d4efbc8078ea504490fd
GET /customer-journey-map/img/customer-journey-map.png HTTP/1.1
Host: qualaroo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:17 GMT
content-type: image/png
content-length: 114649
server: nginx
last-modified: Fri, 12 Nov 2021 09:27:42 GMT
etag: "618e338e-1bfd9"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-ua-compatible: IE=Edge
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2
iklan.diraya.my.id/320.js
104.21.24.51200 OK 72 kB URL HTTP/2 iklan.diraya.my.id/320.js
IP 104.21.24.51:0
Hash ef19a67b0693a7c45e89f499ebf18ea5
c0e4359afa3e26c4278cf876965331156527d855
a331a7860242652e2d002b43c8a42bf0e01d7df6140c130d5a8536dc85c9a381
GET /320.js HTTP/1.1
Host: iklan.diraya.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:15 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"fdf3e92cf4c48be06352047003166dc2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FuzQa5WNGc90ubrABfNpqpAmz7hEQBRMiZQsa53%2BWhiQ1G%2BcABVwIlIScXtGlvVY8pTNZ6qRuhrjy6a7UWX4d1lk9I0N3nix1QwLw%2BUVF6rSyCZeqtrBmOidvwm2mJrwuTNX3mM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 74d16ee52adf1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
qualaroo.com/customer-journey-map/img/FutureCustomerJourneyMap.jpeg
44.209.118.12200 OK 604 kB URL HTTP/2 qualaroo.com/customer-journey-map/img/FutureCustomerJourneyMap.jpeg
IP 44.209.118.12:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 5343x3960, components 3\012- data
Size 604 kB (604084 bytes)
Hash 4d9093d6ad91886b76253f800983e2f9
fcc16bd1d9bc27ceedf0f3987c6d65e8de1995c0
5a6702a3dadadd71c5c1dee44f12b0d60ccdfe103cacd8946ee667c5af7244cb
GET /customer-journey-map/img/FutureCustomerJourneyMap.jpeg HTTP/1.1
Host: qualaroo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:17 GMT
content-type: image/jpeg
content-length: 604084
server: nginx
last-modified: Fri, 12 Nov 2021 09:27:43 GMT
etag: "618e338f-937b4"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-ua-compatible: IE=Edge
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d9fd171b51b27aa84e06e7d5a40116e
a81660dcace8f232018ce9a6d027b271d1f8a863
2c80ffd2c0c451c61623a677d1b17e8e58a40a0a7bdb5ef1cac2610bb0a7e0a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: bee7087d-6431-457a-8fdc-a9eff7b14afd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOAZHcCIAMFTSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63279068-4a7d282e1860a131491a4f2d;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: EClCCFFn_OCwRqXC7W0g-msDSm1WsTRB5kDJsAQyxIPmIwSQBSbJ9g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:01 GMT
etag: "a81660dcace8f232018ce9a6d027b271d1f8a863"
content-type: image/jpeg
age: 42981
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
iklan.diraya.my.id/300.js
104.21.24.51200 OK 0 B URL HTTP/2 iklan.diraya.my.id/300.js
IP 104.21.24.51:0
GET /300.js HTTP/1.1
Host: iklan.diraya.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tyshawn-ksimmons.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 09:53:15 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"ff1ea8c488e06bcc2d3b1433005c36b7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xHOXwtczM2vHIYRAS3MOk2HqeEl4Bwvjg9QQm0AKm4TTjr2b%2Fwg3Sa%2F1Vk%2B5eCsC4MeOsA%2F2%2BwLdbn4SDHjCNcpYwK%2FFHbWBZchSAU%2BR7G0ZICzK3OxVIoX%2BJ%2FY%2BP7gK1Gf59Ms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 74d16ee52ae01bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2