kimkardashian-ring.blogspot.co.uk/2011/05/cool-black-ops-emblems-designs.html
172.217.21.161302 Moved Temporarily 220 B URL HTTP/1.1 kimkardashian-ring.blogspot.co.uk/2011/05/cool-black-ops-emblems-designs.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 5566228495045a831aa4c6216ee1e5c1
e97206e14369a860c8c921694742330fee81d680
f0fdd2bc5a7a82ca1747bf5ee724009eaed9bbcd66009df583a75c2ba07159d2
GET /2011/05/cool-black-ops-emblems-designs.html HTTP/1.1
Host: kimkardashian-ring.blogspot.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://kimkardashian-ring.blogspot.com/2011/05/cool-black-ops-emblems-designs.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 16 Dec 2022 14:33:19 GMT
Expires: Fri, 16 Dec 2022 14:33:19 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 220
Server: GSE
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4a5e9bc8b7891ac5f4552c29bcbaedb0
39735081eeb64eae477c61c1147daeb68fb37b22
c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7577
Expires: Fri, 16 Dec 2022 16:39:37 GMT
Date: Fri, 16 Dec 2022 14:33:20 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 381442da2a14cb93770f4c8f6e19d35b
31c48467751e2450a63004c57eea0c7872023eaf
61b0985f47033bd7020ab3b8cdcbc6c17be6ab9b6feba69e006088b78e21c0f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61B0985F47033BD7020AB3B8CDCBC6C17BE6AB9B6FEBA69E006088B78E21C0F0"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11756
Expires: Fri, 16 Dec 2022 17:49:16 GMT
Date: Fri, 16 Dec 2022 14:33:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 16 Dec 2022 13:34:01 GMT
content-type: application/json
age: 3559
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 51bd0cc75ed746fd33c950eb12936b7e
4a1007ea6c6e4f5e8b4a7d1f85f7a3e329dc8f50
188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "188D4A0D544F40048DC7476CB4F5E478F1EB49A8EF1D51699FB155D2AE258655"
Last-Modified: Tue, 13 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3078
Expires: Fri, 16 Dec 2022 15:24:38 GMT
Date: Fri, 16 Dec 2022 14:33:20 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NwSh5ikWUKaaldcjRkFTsXAQGmLyZ2YY/rcpYGASfjJaBWI42H0hyoFfclSNBd+caQAC9mFnDC0=
x-amz-request-id: HA8AKXYRQPA0900V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 16 Dec 2022 13:53:16 GMT
age: 2404
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 14:33:20 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 16 Dec 2022 14:08:00 GMT
age: 1520
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
kimkardashian-ring.blogspot.com/2011/05/cool-black-ops-emblems-designs.html
172.217.21.161200 OK 20 kB URL HTTP/1.1 kimkardashian-ring.blogspot.com/2011/05/cool-black-ops-emblems-designs.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (17967)
Hash ac0f1dfaeda08f8bcb0001b95c92d0c3
55510e02c255892ede17d207d39f340b963540cc
888331c0875f7e475dd4ae2a338fa1ce7bff04ea4da28456646abd7169f608c9
GET /2011/05/cool-black-ops-emblems-designs.html HTTP/1.1
Host: kimkardashian-ring.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 16 Dec 2022 14:33:20 GMT
Date: Fri, 16 Dec 2022 14:33:20 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 13 Dec 2021 08:02:28 GMT
ETag: W/"6032a83887dc148a7893284e66892470e9b949df84577d71c30262aa0c877d63"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 19688
Server: GSE
scripts.chitika.net/eminimalls/amm.js
143.204.55.12301 Moved Permanently 167 B URL HTTP/1.1 scripts.chitika.net/eminimalls/amm.js
IP 143.204.55.12:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Dec 2022 14:33:20 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://scripts.chitika.net/eminimalls/amm.js
X-Cache: Redirect from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KtQjWn2w1qPJ5VEClqbXLlLz3UaN8shugdYb3s8KAmm__6M5EE-P7Q==
kimkardashian-ring.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 kimkardashian-ring.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: kimkardashian-ring.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/2011/05/cool-black-ops-emblems-designs.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 12 Dec 2022 09:25:49 GMT
Expires: Mon, 19 Dec 2022 09:25:49 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 11 Dec 2022 20:50:25 GMT
Content-Type: text/javascript
Age: 364051
ymads.com/banner.php?ad=t1rdrm&u=ahk845&w=728&h=90
23.23.103.83301 Moved Permanently 178 B URL HTTP/1.1 ymads.com/banner.php?ad=t1rdrm&u=ahk845&w=728&h=90
IP 23.23.103.83:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /banner.php?ad=t1rdrm&u=ahk845&w=728&h=90 HTTP/1.1
Host: ymads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Dec 2022 14:33:20 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Set-Cookie: AWSALB=68n2aPbFtl6/ZTEkeNufyGqwvU1n2O92fEfXAdvbr1pf6nKLZ5vvIHuy2m4kGIZiFPcbozLv0xsoz9aTzwOQCn8HWoiICwjWxC9p2cw/aXsxkFcOxnfXpOGOvbVM; Expires=Fri, 23 Dec 2022 14:33:20 GMT; Path=/
AWSALBCORS=68n2aPbFtl6/ZTEkeNufyGqwvU1n2O92fEfXAdvbr1pf6nKLZ5vvIHuy2m4kGIZiFPcbozLv0xsoz9aTzwOQCn8HWoiICwjWxC9p2cw/aXsxkFcOxnfXpOGOvbVM; Expires=Fri, 23 Dec 2022 14:33:20 GMT; Path=/; SameSite=None
Server: nginx/1.18.0 (Ubuntu)
Location: https://www.domainmarket.com/buynow/ymads.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 142400be99b933ea5e0c68ea6a6b3e89
80e94132940e5ebe69dd0a03396764127b8fda49
20e8cde3c6907a3c5d97fe9fbcf6a44035e1f7482f7e166adb2c38a30a9084ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 40
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Last-Modified: Fri, 16 Dec 2022 14:32:41 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 37171948da980d7b6bedc69dbe47a213
685807bbc34ba9bd854b0baaf812f0aeb71af3e9
cbe9fa5059ecc7cb5a0dd340b67cb2f3b9f7d2b47343edf50787c880eb4d2000
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash dc83a74840bd6372bb34a4c520823ae7
8629740f3f6b404f966b28e2ebfd97fdb680d8ba
33b2ce9d6b2cfd7ab2a399abcb38fcdf1138891ca374d5353bc98cbf4d464221
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash dc83a74840bd6372bb34a4c520823ae7
8629740f3f6b404f966b28e2ebfd97fdb680d8ba
33b2ce9d6b2cfd7ab2a399abcb38fcdf1138891ca374d5353bc98cbf4d464221
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash dc83a74840bd6372bb34a4c520823ae7
8629740f3f6b404f966b28e2ebfd97fdb680d8ba
33b2ce9d6b2cfd7ab2a399abcb38fcdf1138891ca374d5353bc98cbf4d464221
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.ad-u.com/ad.php
3.94.41.167302 Found 0 B IP 3.94.41.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad.php HTTP/1.1
Host: ad.ad-u.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 302 Found
content-length: 0
date: Fri, 16 Dec 2022 14:33:20 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=ad-u.com
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 14:01:44 GMT
expires: Wed, 13 Dec 2023 14:01:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Dec 2022 06:58:47 GMT
content-type: text/css
age: 261097
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.46200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Fri, 16 Dec 2022 14:33:21 GMT
expires: Fri, 16 Dec 2022 14:33:21 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2092647672-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2092647672-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 689971018982703ab88ce528368b9190
be9697d57e5c19d36c52aacd8b04a6a159a2f3bd
cf8b513cfd596cffc3a7e456eccc198b8e409f5aaf624d5dbeecdd748dce0cef
GET /static/v1/widgets/2092647672-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56341
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 02:10:48 GMT
expires: Fri, 15 Dec 2023 02:10:48 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 10 Dec 2022 00:52:24 GMT
content-type: text/javascript
age: 130953
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:13 GMT
expires: Sat, 16 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 16 Dec 2022 03:52:09 GMT
content-type: text/javascript
age: 3608
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 459f9fd1828f501715c61b25c548140b
b5e18a4586e7ad61c55290689dd4a8f690cb8798
8d47e939ce3adcd98d3771cf79cb090ed0d6b56a5f0cf05f14a174a69db73986
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3688
Cache-Control: max-age=98586
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Etag: "639b5163-116"
Expires: Sat, 17 Dec 2022 17:56:27 GMT
Last-Modified: Thu, 15 Dec 2022 16:54:59 GMT
Server: ECS (amb/6BA7)
X-Cache: HIT
Content-Length: 278
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
142.250.74.46200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
IP 142.250.74.46:0
File type ASCII text, with very long lines (580)
Hash 3e7852e3ac3d1921ddb7302c569bdb8f
85e8bdb23ef407fb3770ec0a9588d85c725930d3
20cd515349665d62191e0c15ea1b9f3b5c4e35d36313d1e7fdc8af83b9663a78
GET /_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57931
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 19:13:54 GMT
expires: Wed, 13 Dec 2023 19:13:54 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Dec 2022 15:21:53 GMT
content-type: text/javascript; charset=UTF-8
age: 242367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.trafficrevenue.net/loadad.js?username=billymoon
3.64.163.50410 Gone 116 B URL HTTP/1.1 www.trafficrevenue.net/loadad.js?username=billymoon
IP 3.64.163.50:0
File type HTML document text\012- HTML document, ASCII text
Hash 7e37c232569e05596774eb66fd89525d
eed21e3ca5f77ee2888166f1f93cca980256c4ed
7c6af88410ff1468360df55dafbef8744266f8fdd16fe8f3e309a717b73f3d75
GET /loadad.js?username=billymoon HTTP/1.1
Host: www.trafficrevenue.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 410 Gone
Server: openresty
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.34200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.34:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 15 Dec 2022 18:06:43 GMT
Expires: Thu, 29 Dec 2022 18:06:43 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 73598
resources.blogblog.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 14:19:02 GMT
expires: Tue, 20 Dec 2022 14:19:02 GMT
cache-control: public, max-age=604800
last-modified: Mon, 12 Dec 2022 15:55:44 GMT
content-type: image/gif
age: 260059
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.240.57.100101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.57.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YFEtddNMTl78JGch4ZZC5Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 63T4X4UNS0W5jraN6DV7C0H+h88=
www.theshirtlist.com/wp-content/uploads/2010/11/Call-of-Duty-Black-Ops-SOG-Vintage-Emblem-T-Shirt-480x640.jpg
199.16.173.56301 Moved Permanently 162 B URL HTTP/1.1 www.theshirtlist.com/wp-content/uploads/2010/11/Call-of-Duty-Black-Ops-SOG-Vintage-Emblem-T-Shirt-480x640.jpg
IP 199.16.173.56:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2010/11/Call-of-Duty-Black-Ops-SOG-Vintage-Emblem-T-Shirt-480x640.jpg HTTP/1.1
Host: www.theshirtlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.theshirtlist.com/wp-content/uploads/2010/11/Call-of-Duty-Black-Ops-SOG-Vintage-Emblem-T-Shirt-480x640.jpg
X-ac: 1.arn _atomic_ams BYPASS
www.feedcat.net/js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion=
3.33.152.147404 Not Found 125 B URL HTTP/1.1 www.feedcat.net/js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion=
IP 3.33.152.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 2995357b538ef792ce59b1b7cca539c4
d33d8ce38719b45d0731f075f71593351023318c
aef27e8433e35954afe1798da5bde96145b020160cc2f16b1424425253fb545b
GET /js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion= HTTP/1.1
Host: www.feedcat.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 125
Connection: keep-alive
Server: ip-100-74-3-165.eu-west-2.compute.internal
X-Request-Id: 99038324-d37c-4e10-877e-3819bcfefbde
furiousfanboys.com/wp-content/uploads/2010/11/Halo-Noble-Pack-e1287150140456.jpg
104.21.79.192301 Moved Permanently 0 B URL HTTP/1.1 furiousfanboys.com/wp-content/uploads/2010/11/Halo-Noble-Pack-e1287150140456.jpg
IP 104.21.79.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2010/11/Halo-Noble-Pack-e1287150140456.jpg HTTP/1.1
Host: furiousfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Dec 2022 14:33:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 16 Dec 2022 15:33:21 GMT
Location: https://artdaily.com/bocoran-rtp-slot-online-slot88.html
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLiTHS%2FXjYN4%2FQG%2FOptJALfFzoG90YMfkYOww28tufB8yBYg%2FZT%2FezOegDVmRkBgEGkhr%2BdojlIvcayH4ckKgsVtA76Bl7j95bMQ2clL2qlPpdJ%2Fyl3DCd%2FVDDnMewDHDppeSTQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77a822338bb9b52d-OSL
alt-svc: h2=":443"; ma=60
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 684679524a372bc2fafae00b8fa04c8f
76ae59f80aa7071c99597c4a3ab20caf5ae731f4
97933b48a75d4dbe558e2bc3c31e18db8e93a185353b7459128c7ded62ac1af4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119350
Date: Fri, 16 Dec 2022 14:33:21 GMT
Etag: "639bb0e7-1d7"
Expires: Sat, 17 Dec 2022 23:42:31 GMT
Last-Modified: Thu, 15 Dec 2022 23:42:31 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1CZhzuate-u9OteSxMTlcpxDpQNEhxInm0eKhHlN2upnhY1nLATrXg==
scripts.chitika.net/eminimalls/amm.js
143.204.55.12200 OK 0 B URL HTTP/2 scripts.chitika.net/eminimalls/amm.js
IP 143.204.55.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Fri, 19 Apr 2019 16:37:52 GMT
server: AmazonS3
date: Fri, 16 Dec 2022 06:34:43 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vmW3luDBOTHHmhz7Mjq528oN3z3NaQFfM5V8Nt7g-J4O4_OGL75K3w==
age: 30885
X-Firefox-Spdy: h2
i655.photobucket.com/albums/uu276/Sarah-Rainerly/CallofDutyBlackOps/Page4.jpg
143.204.55.79301 Moved Permanently 167 B URL HTTP/1.1 i655.photobucket.com/albums/uu276/Sarah-Rainerly/CallofDutyBlackOps/Page4.jpg
IP 143.204.55.79:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/uu276/Sarah-Rainerly/CallofDutyBlackOps/Page4.jpg HTTP/1.1
Host: i655.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i655.photobucket.com/albums/uu276/Sarah-Rainerly/CallofDutyBlackOps/Page4.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jJrdWkqdu5eQN_o9IUATkhHmWz40drfvkNQcQfXBt_hW4vwyuhdgSg==
Vary: Origin
cdn6.wn.com/vp/i/38/c21572de051116.jpg
192.229.133.115200 OK 24 kB URL HTTP/1.1 cdn6.wn.com/vp/i/38/c21572de051116.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 38c21572de0511163acee5b6c5f7a8e6
1863762f0a2e3d82f5ef67bbd64d01f1feec92a5
d5d4f377f63d759b3b8f9bd937bdbc3b8eeb7a7452b68fc4b50faa8264fa8749
GET /vp/i/38/c21572de051116.jpg HTTP/1.1
Host: cdn6.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Date: Fri, 16 Dec 2022 14:33:21 GMT
Etag: "4e4ade52-5d22"
Expires: Sun, 15 Jan 2023 14:33:21 GMT
Last-Modified: Tue, 16 Aug 2011 21:17:06 GMT
Server: nginx/1.8.1
Content-Length: 23842
my.blueadvertise.com/__adserver/opt.js
103.224.182.251404 Not Found 196 B URL HTTP/1.1 my.blueadvertise.com/__adserver/opt.js
IP 103.224.182.251:0
ASN #133618 Trellian Pty. Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /__adserver/opt.js HTTP/1.1
Host: my.blueadvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:21 GMT
Server: Apache/2.4.38 (Debian)
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1
s1.hubimg.com/u/4196140_f520.jpg
44.199.149.155301 Moved Permanently 178 B URL HTTP/1.1 s1.hubimg.com/u/4196140_f520.jpg
IP 44.199.149.155:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /u/4196140_f520.jpg HTTP/1.1
Host: s1.hubimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Server: nginx
Location: https://usercontent2.hubstatic.com/4196140_f520.jpg
www.ontoplist.com/images/ontoplist1.jpg?id=4de4c75617d7e
8.12.18.87200 OK 1.5 kB URL HTTP/1.1 www.ontoplist.com/images/ontoplist1.jpg?id=4de4c75617d7e
IP 8.12.18.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x15, components 3\012- data
Hash dda3230a0cf65ec41104a213e3e3c7a2
85042dff76d2da1e1b51eac2c05af39bd6538cff
470c5ba103d8363cf816859c235e05f55c7c081616bff2b5def64d915a91fcf6
GET /images/ontoplist1.jpg?id=4de4c75617d7e HTTP/1.1
Host: www.ontoplist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 14:33:21 GMT
Server: Apache/2.4.54 (Debian)
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 20 Aug 2019 06:56:34 GMT
ETag: "5ab-59086f5002c80"
Accept-Ranges: bytes
Content-Length: 1451
Cache-Control: max-age=2592000
Expires: Sun, 15 Jan 2023 14:33:21 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Content-Type: image/jpeg
dualshockers.com/wp-content/uploads/2010/11/CharlieNazi.png
44.209.155.7301 Moved Permanently 162 B URL HTTP/1.1 dualshockers.com/wp-content/uploads/2010/11/CharlieNazi.png
IP 44.209.155.7:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2010/11/CharlieNazi.png HTTP/1.1
Host: dualshockers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.dualshockers.com/wp-content/uploads/2010/11/CharlieNazi.png
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline' blob:
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
www.blogflare.com/world.png
104.21.2.106404 Not Found 1.2 kB URL HTTP/1.1 www.blogflare.com/world.png
IP 104.21.2.106:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 3f9136525e5b9cc404aad0d358b45728
d45d1242843b00d2007acb1e9c8ebe082123f82b
e4dbf7a6c3855cda95fd2e9a5877c7fa74ea16b56d1e6516fbe5189124d677d8
GET /world.png HTTP/1.1
Host: www.blogflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 26 Jul 2021 12:39:01 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=7200
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ViNyQSvxClEeHJVPs3LgqqQ6KkhXunzA00qhZ%2FDMjM%2B85mfvVN7WTB5P0DDRRtwKr%2B2qJZHMXNdOsH8KPjH7AzgiVwDPlP3tNprqjsORGDbXsJEUpkSrjJY4%2BvYcdr6U3W32LQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77a82232a8b3b524-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.blogflare.com/flare_19497.gif
104.21.2.106404 Not Found 1.2 kB URL HTTP/1.1 www.blogflare.com/flare_19497.gif
IP 104.21.2.106:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 71993bf9c42998b985ab4274e6bd022e
48d7febd6d8bfebce8330fc0ac40f80700d09dfc
1c2e4d95172e405ef8f3b73a4a0a2d38d5e7ea77190e957e4bef835594648522
GET /flare_19497.gif HTTP/1.1
Host: www.blogflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 26 Jul 2021 12:39:01 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=7200
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qEz0%2BWv1nKXFwKBnx%2F4SM%2FhQMbHZqopidcsHQwH5dOY67VfbtqCQ0FeMPt9Po19QLQhFAM0%2B1Oneo6x6B3IZTQxxxpsNk%2Bq4%2BUO4EXEVNxo3XqKBHQFFFrMlJcMy%2B182goeFDA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77a82232abda0b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80301 Moved Permanently 178 B URL HTTP/1.1 www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: www.auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
www.blogtopsites.com/v_109185.gif
3.223.164.191200 OK 185 B URL HTTP/1.1 www.blogtopsites.com/v_109185.gif
IP 3.223.164.191:0
File type GIF image data, version 89a, 80 x 15\012- data
Hash 5f14c44739c2bd7108c87aecacdb3f34
5316a24cedc1860110609228c4f4f18520758a82
e807830b738c02817b04e7d725a00a0de59aa882a4fefd93795e11957e728a83
GET /v_109185.gif HTTP/1.1
Host: www.blogtopsites.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: image/gif
Content-Length: 185
Connection: keep-alive
Server: Apache
img571.imageshack.us/img571/1549/error343crop.jpg
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img571.imageshack.us/img571/1549/error343crop.jpg
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img571/1549/error343crop.jpg HTTP/1.1
Host: img571.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
4playerpodcast.com/wp-content/uploads/2010/10/halo-reach-logo.jpg
67.225.249.253301 Moved Permanently 280 B URL HTTP/1.1 4playerpodcast.com/wp-content/uploads/2010/10/halo-reach-logo.jpg
IP 67.225.249.253:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 30e49d7c118202d33461f8b8abc135f6
90ba3c5005c4e31fe729d2f7b05a41bc2b6f1b88
f94939ac44748be3aa183053188cac5b2c6544c93a85594962bebb9aa281be2d
GET /wp-content/uploads/2010/10/halo-reach-logo.jpg HTTP/1.1
Host: 4playerpodcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Dec 2022 14:33:21 GMT
Server: Apache
Location: http://4playernetwork.com/wp-content/uploads/2010/10/halo-reach-logo.jpg
Cache-Control: max-age=600
Expires: Fri, 16 Dec 2022 14:43:21 GMT
Content-Length: 280
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash dc83a74840bd6372bb34a4c520823ae7
8629740f3f6b404f966b28e2ebfd97fdb680d8ba
33b2ce9d6b2cfd7ab2a399abcb38fcdf1138891ca374d5353bc98cbf4d464221
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3972e23b068a857e4b879417ecbf1d1a
c5593984f70d07200faa6a1ca10572cb8670665d
db8f4f555c201994b386c718409b4f7b9dc75ef6910891a3d27097a0cb425e24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 755beda21d10bf48716d3bd29afedf71
a7e67a4c2922a8be0300cf8127317c0f1f72fc79
688127f76b4aeb06ed16f205ccaa272382f65e705e7f89f4e208d228abe9eed5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=152138
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Etag: "639c30fb-116"
Expires: Sun, 18 Dec 2022 08:48:59 GMT
Last-Modified: Fri, 16 Dec 2022 08:48:59 GMT
Server: nginx
Content-Length: 278
i55.tinypic.com/1214vgg.jpg
143.204.55.72301 Moved Permanently 0 B URL HTTP/1.1 i55.tinypic.com/1214vgg.jpg
IP 143.204.55.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1214vgg.jpg HTTP/1.1
Host: i55.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 16 Dec 2022 14:33:22 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: m-GnWqblQVyRA7wAGsgOc0_s2XChPMQe66oHuPEa7HYUPs-trNOsVg==
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash dc83a74840bd6372bb34a4c520823ae7
8629740f3f6b404f966b28e2ebfd97fdb680d8ba
33b2ce9d6b2cfd7ab2a399abcb38fcdf1138891ca374d5353bc98cbf4d464221
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fc01.deviantart.net/fs70/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg
35.164.123.148301 Moved Permanently 178 B URL HTTP/1.1 fc01.deviantart.net/fs70/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg
IP 35.164.123.148:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /fs70/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg HTTP/1.1
Host: fc01.deviantart.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Server: nginx
Location: http://img03.deviantart.net/3db7/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg
tinypic.com/images/goodbye.jpg
143.204.55.64200 OK 16 kB URL HTTP/1.1 tinypic.com/images/goodbye.jpg
IP 143.204.55.64:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Hash 32af06ac4b80d728f7e4c8780eb6b6d7
dd3198f4361e94f2c3606474e04a629e42402d02
f610dc2752e938d77dab1c4e9fb1f0f7f53b25e527d130ce4e034b7de09da053
GET /images/goodbye.jpg HTTP/1.1
Host: tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 15616
Connection: keep-alive
Last-Modified: Wed, 18 Sep 2019 21:23:53 GMT
Server: AmazonS3
Date: Fri, 16 Dec 2022 05:44:55 GMT
ETag: "32af06ac4b80d728f7e4c8780eb6b6d7"
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iJddpNmfpud-kDmKWKeHDa3oxAjX8CSgShQMA_eGLlkdkAAnj1hcjg==
Age: 31716
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 27c999b21c041c1bf52e86734de2b4ed
b889b5403af602907ae45a1c6ca7c238696d0cc0
3fa8d6d578666b6f9101f5c57527af8c9d26a02aab76be2f663db0ce4ea2b53d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3725
Cache-Control: max-age=160918
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:21 GMT
Etag: "639c44ba-116"
Expires: Sun, 18 Dec 2022 11:15:19 GMT
Last-Modified: Fri, 16 Dec 2022 10:13:14 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
www.blogger.com/dyn-css/authorization.css?targetBlogID=1250069118049223412&zx=6476019a-70c2-4b77-ac32-c8910d9d4a57
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=1250069118049223412&zx=6476019a-70c2-4b77-ac32-c8910d9d4a57
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=1250069118049223412&zx=6476019a-70c2-4b77-ac32-c8910d9d4a57 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 16 Dec 2022 14:33:21 GMT
last-modified: Fri, 16 Dec 2022 14:33:21 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/navbar.g?targetBlogID=1250069118049223412&blogName=Kim+Kardashian+Ring&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://kimkardashian-ring.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://kimkardashian-ring.blogspot.com/&targetPostID=5958996817691501500&blogPostOrPageUrl=http://kimkardashian-ring.blogspot.com/2011/05/cool-black-ops-emblems-designs.html&vt=1783201792013899732&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__
216.58.207.233200 OK 2.7 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=1250069118049223412&blogName=Kim+Kardashian+Ring&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://kimkardashian-ring.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://kimkardashian-ring.blogspot.com/&targetPostID=5958996817691501500&blogPostOrPageUrl=http://kimkardashian-ring.blogspot.com/2011/05/cool-black-ops-emblems-designs.html&vt=1783201792013899732&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__
IP 216.58.207.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3172)
Hash 5f9209188ca7faddac678c16de39cf56
4c1650706b829142ea0d3dbf50ca9150f24a9a04
b78980e4b31839c7be5ba4b180511ad546fec6fc2a1e4b0e69009a8d375fb58a
GET /navbar.g?targetBlogID=1250069118049223412&blogName=Kim+Kardashian+Ring&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://kimkardashian-ring.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://kimkardashian-ring.blogspot.com/&targetPostID=5958996817691501500&blogPostOrPageUrl=http://kimkardashian-ring.blogspot.com/2011/05/cool-black-ops-emblems-designs.html&vt=1783201792013899732&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 16 Dec 2022 14:33:21 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2656
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7168a4ad1e7e1f224c955a7a27d8d322
08b59256d626e2cc22917fd650f1b1ef2de7bcf1
7ed0bcdcfd467aed68d27dd7afd992901ad32e85090adfca15cd560e3822d978
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7ED0BCDCFD467AED68D27DD7AFD992901AD32E85090ADFCA15CD560E3822D978"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19863
Expires: Fri, 16 Dec 2022 20:04:24 GMT
Date: Fri, 16 Dec 2022 14:33:21 GMT
Connection: keep-alive
1.bp.blogspot.com/-uHmrLx4g2SY/TZTO4cTRzeI/AAAAAAAAAAU/dN--rkuMx9E/s1600/prestige_emblems.jpg
142.250.74.161200 OK 56 kB URL HTTP/1.1 1.bp.blogspot.com/-uHmrLx4g2SY/TZTO4cTRzeI/AAAAAAAAAAU/dN--rkuMx9E/s1600/prestige_emblems.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 560x460, components 3\012- data
Hash a28929144f0dcf591db17c6b58e3c8e6
77e40347563e555681bc73c81428b1c8ab39f985
cd12b5c68184317f56c7fb8125d3effe7361d001143fdd5a1253b576f2db3e15
GET /-uHmrLx4g2SY/TZTO4cTRzeI/AAAAAAAAAAU/dN--rkuMx9E/s1600/prestige_emblems.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5"
Expires: Sat, 17 Dec 2022 14:33:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="prestige_emblems.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 14:33:21 GMT
Server: fife
Content-Length: 56416
X-XSS-Protection: 0
www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80301 Moved Permanently 178 B URL HTTP/2 www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: www.auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx/1.18.0 (Ubuntu)
date: Fri, 16 Dec 2022 14:33:21 GMT
content-type: text/html
content-length: 178
location: https://auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
X-Firefox-Spdy: h2
www.777seo.com/seo.php?username=billymoon
103.224.182.251302 Found 0 B URL HTTP/1.1 www.777seo.com/seo.php?username=billymoon
IP 103.224.182.251:0
ASN #133618 Trellian Pty. Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /seo.php?username=billymoon HTTP/1.1
Host: www.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 16 Dec 2022 14:33:21 GMT
Server: Apache/2.4.38 (Debian)
Set-Cookie: __tad=1671201201.7010186; expires=Mon, 13-Dec-2032 14:33:21 GMT; Max-Age=315360000
Location: http://ww38.777seo.com/seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
media.onsugar.com/files/2011/04/17/4/1608/16082144/2a/black-ops-emblem31.jpg
151.101.65.91200 OK 30 kB URL HTTP/1.1 media.onsugar.com/files/2011/04/17/4/1608/16082144/2a/black-ops-emblem31.jpg
IP 151.101.65.91:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 410x498, components 3\012- data
Hash 56f695d0760943b285f922d65cf58de1
88b2c54a78a96d4c3cdf51be193d67d7d289ac2e
a99b140ca0e2d7748a7e3bff8d14a3fa10321469d5db682637bc7909479fb3f0
GET /files/2011/04/17/4/1608/16082144/2a/black-ops-emblem31.jpg HTTP/1.1
Host: media.onsugar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 29707
Last-Modified: Wed, 11 Jan 2017 08:14:25 GMT
ETag: "56f695d0760943b285f922d65cf58de1"
Content-Type: image/jpeg
Server: AmazonS3
cache-control: max-age=2592000
Accept-Ranges: bytes
Date: Fri, 16 Dec 2022 14:33:21 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1645-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1671201201.292796,VS0,VE562
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
i655.photobucket.com/albums/uu276/Sarah-Rainerly/CallofDutyBlackOps/Page4.jpg
143.204.55.79200 OK 20 kB URL HTTP/2 i655.photobucket.com/albums/uu276/Sarah-Rainerly/CallofDutyBlackOps/Page4.jpg
IP 143.204.55.79:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 21d7e966cc149af60c375cf61e003191
0bebecf36442dabd6d58c88d7a70e0c5ea63cf5e
e339230d86949ec35502f08bede6e901c680fdf7ff296bb62b8e513421ad65e9
GET /albums/uu276/Sarah-Rainerly/CallofDutyBlackOps/Page4.jpg HTTP/1.1
Host: i655.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 20122
date: Fri, 16 Dec 2022 14:33:21 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="Page4.webp"
expires: Sat, 16 Dec 2023 14:33:21 GMT
server: photobucket
x-amzn-trace-id: Root=1-639c81b1-66ac22a27475ca3162f3bee2
x-request-id: Y3cFxDiXCfV8r1tKjc-NV
x-cache: Miss from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ytiIztqdB-Kwm4bJkPA8cRLetNI2EUfRrgxRU0tDAM81IFz4FH1qmA==
vary: Accept, Origin
X-Firefox-Spdy: h2
4playernetwork.com/wp-content/uploads/2010/10/halo-reach-logo.jpg
67.225.249.253302 Found 257 B URL HTTP/1.1 4playernetwork.com/wp-content/uploads/2010/10/halo-reach-logo.jpg
IP 67.225.249.253:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 663407231caea995a3dfe2cce6713f0f
8a8899f3cff11b069939281a3be2c4ba95d9a193
279b2a6f3e20a4434571d8e952193ae8cfef1aeafae7c07146c5a0d1f0c9c989
GET /wp-content/uploads/2010/10/halo-reach-logo.jpg HTTP/1.1
Host: 4playernetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 302 Found
Date: Fri, 16 Dec 2022 14:33:21 GMT
Server: Apache
Location: https://4playernetwork.com/wp-content/uploads/2010/10/halo-reach-logo.jpg
Cache-Control: max-age=600
Expires: Fri, 16 Dec 2022 14:43:21 GMT
Content-Length: 257
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.besthitsnow.com/b1.php?id=billymoon
95.211.219.66302 Found 11 B URL HTTP/1.1 www.besthitsnow.com/b1.php?id=billymoon
IP 95.211.219.66:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /b1.php?id=billymoon HTTP/1.1
Host: www.besthitsnow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Fri, 16 Dec 2022 14:33:21 GMT
location: http://ww1.besthitsnow.com
server: nginx
set-cookie: sid=972da486-7d4e-11ed-b6be-8ca401d1ec11; path=/; domain=.besthitsnow.com; expires=Wed, 03 Jan 2091 17:47:28 GMT; max-age=2147483647; HttpOnly
img03.deviantart.net/3db7/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg
35.82.34.224404 Not Found 0 B URL HTTP/1.1 img03.deviantart.net/3db7/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg
IP 35.82.34.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /3db7/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg HTTP/1.1
Host: img03.deviantart.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:21 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Server: da-redirector/0.5.2
artdaily.com/bocoran-rtp-slot-online-slot88.html
70.38.57.69200 OK 13 kB URL HTTP/2 artdaily.com/bocoran-rtp-slot-online-slot88.html
IP 70.38.57.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (738), with CRLF line terminators
Hash d9b49b6ad88de7f26ebd15b048a0a2a6
f5e9bfe49e5318a7b63b17cbf091ed1369658477
d5768feb5008d4768a971301926b361d6764ef3ef96459ed0ab7412eb5b8253f
GET /bocoran-rtp-slot-online-slot88.html HTTP/1.1
Host: artdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-encoding: gzip
last-modified: Mon, 14 Nov 2022 17:49:19 GMT
accept-ranges: bytes
etag: "fc57c06b51f8d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 16 Dec 2022 14:33:21 GMT
content-length: 12971
X-Firefox-Spdy: h2
my.blueadvertise.com/__adserver/opt.js
103.224.182.251404 Not Found 196 B URL HTTP/1.1 my.blueadvertise.com/__adserver/opt.js
IP 103.224.182.251:0
ASN #133618 Trellian Pty. Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /__adserver/opt.js HTTP/1.1
Host: my.blueadvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:22 GMT
Server: Apache/2.4.38 (Debian)
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1
ww1.besthitsnow.com/
199.59.243.222200 OK 728 B IP 199.59.243.222:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (935), with no line terminators
Hash 79b08fb728e4e06b1e0777e34f264ee6
a92e8401396d5b6754172266562d40554d370e8f
8ac1f7adc3b90afc4885c3c278a1978ac3f00d45329c3329a8323b20a3af0a7b
GET / HTTP/1.1
Host: ww1.besthitsnow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: parking_session=65d45d67-f7ee-ad8e-901c-57eb1d63bd3f; expires=Fri, 16-Dec-2022 14:48:22 GMT; Max-Age=900; path=/; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_LJ3iEuT62c0exEmL/g6EUprxMqAfQgm/pDeQqE/mJH2UigX+HkVuIctdJYr1UDPn+14zvQVNUDRXBJDDKCk9rA==
Accept-CH: sec-ch-prefers-color-scheme
Critical-CH: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
www.dualshockers.com/wp-content/uploads/2010/11/CharlieNazi.png
44.209.155.7200 OK 161 kB URL HTTP/2 www.dualshockers.com/wp-content/uploads/2010/11/CharlieNazi.png
IP 44.209.155.7:0
File type PNG image data, 512 x 384, 8-bit/color RGB, non-interlaced\012- data
Size 161 kB (160630 bytes)
Hash c5a3e1a9e93a1fac4ec1470c3b73a944
b8b14be0cc3104907572b92bfef0ba1f649b2290
15fbb31c8766284ba6d384be8e58555a2edbfa60b44814c0d4ea01971e521e5e
GET /wp-content/uploads/2010/11/CharlieNazi.png HTTP/1.1
Host: www.dualshockers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 14:33:21 GMT
content-type: image/png
content-length: 160630
last-modified: Fri, 29 Jan 2021 18:15:22 GMT
etag: "601450ba-27376"
expires: Sat, 16 Dec 2023 14:33:21 GMT
pragma: public
cache-control: max-age=31536000, max-age=31536000, public
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline' blob:
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21242
Expires: Fri, 16 Dec 2022 20:27:24 GMT
Date: Fri, 16 Dec 2022 14:33:22 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21242
Expires: Fri, 16 Dec 2022 20:27:24 GMT
Date: Fri, 16 Dec 2022 14:33:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae976ce-079c-4e5f-b8b9-c1ee2adaa868.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae976ce-079c-4e5f-b8b9-c1ee2adaa868.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78c629538ec0e3052bbfc30143472461
4730867561c6116e461a82d5448d7fb10d5df533
8987e66414a582c18eaf65e0c2139213817cdc524dcffe2abc4f4a7c7cb3342e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae976ce-079c-4e5f-b8b9-c1ee2adaa868.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12785
x-amzn-requestid: 55fe73e5-e843-4f9b-88ee-fc3aa5365dc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQQLFqaoAMFQHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9400-0a135ed9618b37ea59813d56;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WKzermMXjxJ_I7wum86KjSEfxd-OvBXbsYdNCshK0n7mhnfb2fPHVw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 21:57:04 GMT
age: 59778
etag: "4730867561c6116e461a82d5448d7fb10d5df533"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62fa3452-e15b-41dd-b257-cd6d8cfaea78.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62fa3452-e15b-41dd-b257-cd6d8cfaea78.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c89c607de35e59fa4b8f79762af0f269
362e1b907abcaccb16b3750c21ed04e4fa91f04c
7b9a28ad984bc7544d0798ff38cf8e1ce9f2f21a0112c18ee127a7566ba683e4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62fa3452-e15b-41dd-b257-cd6d8cfaea78.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5791
x-amzn-requestid: 2fb8518c-1fe3-426e-94ed-eea686005473
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNRKYHeoIAMFgKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9575-0e312c40469090d033c6fc6a;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:45:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6olOOvZFj56PITpWNzTgBluV3ax4I4WaJdqPJR_XigifUWYFKhOuaQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 22:00:51 GMT
etag: "362e1b907abcaccb16b3750c21ed04e4fa91f04c"
content-type: image/jpeg
age: 59551
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21242
Expires: Fri, 16 Dec 2022 20:27:24 GMT
Date: Fri, 16 Dec 2022 14:33:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d782d01-6608-4338-b97b-e67de1b79501.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d782d01-6608-4338-b97b-e67de1b79501.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 61f4298f623f1d3736e5a4e34d42cb29
d183592b6efcd90bc1b10b11641999e82b30b813
3f69949de6c2328a1cb564d90338220812b05b50acafd02051619a0777b90a57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d782d01-6608-4338-b97b-e67de1b79501.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11517
x-amzn-requestid: 0a7dcdfb-d929-402d-9c1b-3fb369ae56d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNRJJELFIAMFRVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b956d-2a8feedd7c51991c1fb9676c;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:45:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yY9aZt0gOtAQqHwjsE8j5xFqZDgiZJnYjotAdHkitAQPEDknHYsIIw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 22:00:39 GMT
etag: "d183592b6efcd90bc1b10b11641999e82b30b813"
content-type: image/jpeg
age: 59563
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21242
Expires: Fri, 16 Dec 2022 20:27:24 GMT
Date: Fri, 16 Dec 2022 14:33:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d2294cdacdc84b8b19874ba56035a6d
53009a81b15e464d5529d36b1e04b841b2ae034e
67d59aa026b43ed3f698f3853b986fc7c07e4e6e5f7b3551e59238f79978480a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 71bbe208-11e3-4280-bf09-bff8bd18fcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c82fXGmPoAMF3Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63950462-12393ca432808b7f0b2771dc;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:12:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G1MopDnv-WOAbIBMe0v-V9xXeJIVDReKWSMG33dQt1q5GpK41RU0PQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 07:05:11 GMT
age: 26891
etag: "53009a81b15e464d5529d36b1e04b841b2ae034e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.feedcat.net/js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion=
3.33.152.147404 Not Found 125 B URL HTTP/1.1 www.feedcat.net/js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion=
IP 3.33.152.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 2995357b538ef792ce59b1b7cca539c4
d33d8ce38719b45d0731f075f71593351023318c
aef27e8433e35954afe1798da5bde96145b020160cc2f16b1424425253fb545b
GET /js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion= HTTP/1.1
Host: www.feedcat.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 125
Connection: keep-alive
Server: ip-100-74-2-188.eu-west-2.compute.internal
X-Request-Id: 0b926d7e-44ab-4fec-9e30-bd9bc8423b2f
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21242
Expires: Fri, 16 Dec 2022 20:27:24 GMT
Date: Fri, 16 Dec 2022 14:33:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83be48c5771e071d94ac0d912357ac99
97e31d3e2c268fe9335e1111bd2eb8cc9dd729d1
dc7eaffae4521f6bc297ce21c0abe99fe92bf8938266b550f8e38ff9705bdeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11196
x-amzn-requestid: 1bcdd4c6-14db-40bc-90aa-226a0e411a09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQQJFFeIAMFQgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9400-65c676d06a24e0252e8828dc;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vUSF9t0-H5wLQ6vjt5IR5xraq0i-m6kTYbiGmUbZTA43i_257ieS_Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 22:10:30 GMT
etag: "97e31d3e2c268fe9335e1111bd2eb8cc9dd729d1"
content-type: image/jpeg
age: 58972
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad9b3731-4e58-4b83-86cf-7f2ecd6c4eb1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad9b3731-4e58-4b83-86cf-7f2ecd6c4eb1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cab96eaa42941683dff4d1b6b093c007
ba5269c77dd0422ab275c9a3529fb2e1a1af6bc3
4fe48e9a35a50b7ae88f4b4de67aa82c4acbbe43aab655921f7bacb5524789f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad9b3731-4e58-4b83-86cf-7f2ecd6c4eb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10132
x-amzn-requestid: 075387b5-fc9d-45da-ad0f-2faf3a28a82b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dH-GQF8QIAMFxBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639976f4-37bdee6f5cbfa3cf7e6506f3;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 07:10:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rQ3NLdItHAIiesA__oEVId8Esu5w4CC0S_06EsbcEp6lVDMQZBwikg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 07:36:13 GMT
age: 25029
etag: "ba5269c77dd0422ab275c9a3529fb2e1a1af6bc3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80404 Not Found 22 kB URL HTTP/2 auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65374), with CRLF line terminators
Hash 5f373b7008e2c15c015151411ea3b9de
3e12090e215ef0da97edb8b2ce5a7eab8c7f9e45
bd7fb066e17dc37eb95fe8e1819126797f2222238b5ac3e6e891228cc6e66687
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 16 Dec 2022 14:33:21 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
www.blogger.com/img/logo-16.png
216.58.207.233200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.233:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Dec 2022 07:09:35 GMT
Expires: Tue, 20 Dec 2022 07:09:35 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 12 Dec 2022 12:50:23 GMT
Content-Type: image/png
Age: 285827
ww38.777seo.com/seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b
75.2.11.242200 OK 5.9 kB URL HTTP/1.1 ww38.777seo.com/seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b
IP 75.2.11.242:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2638)
Hash 69fda2f0fc8ef5e345861a00919eafa4
eb39d71e4035d8879027939e6654d124b8607fd2
f5094ba31dfdfa05c4fe03dced9c169e279b3936bf7f6b4cbbe2b0a1d1be7fb5
GET /seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket103
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_eaycO2rK9myqjFQqzTVSZL4cy3neDilawDuZDAG5xPOqOia1gmNZwwTKPSdG6zCk6RXVQpJvx/7okozhvff78w==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
www.blogflare.com/world.png
104.21.2.106404 Not Found 1.2 kB URL HTTP/1.1 www.blogflare.com/world.png
IP 104.21.2.106:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 1d5f83895a290f2abffd96630eca67a9
a64c55f8d0ac1cb5b02824bbedf6eaa8ca6b279e
ab19843325307d4ee959708c3dbfdc2b4721d36e7d8a8ba4176c7db62f42b7ce
GET /world.png HTTP/1.1
Host: www.blogflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 26 Jul 2021 12:39:01 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=7200
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fhsTQbFpMc5og%2FScAOCv%2BIIGxzAXQq73x1MMzA0LCf8be%2FA8XmXuqdbGfAWiM%2B0YNrVRtD5oNy9vnL7N3N%2B8E9JfT5xOM6ZWI5zDkhIJkEIXyQl6%2BermZCo1v3%2FvQusMoO1bzg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77a8223abb81b524-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
img571.imageshack.us/img571/1549/error343crop.jpg
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img571.imageshack.us/img571/1549/error343crop.jpg
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img571/1549/error343crop.jpg HTTP/1.1
Host: img571.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
usercontent2.hubstatic.com/4196140_f520.jpg
172.67.74.123200 OK 39 kB URL HTTP/2 usercontent2.hubstatic.com/4196140_f520.jpg
IP 172.67.74.123:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", progressive, precision 8, 520x554, components 3\012- data
Hash a5ebb554f9aff010acc3ce11caa81613
6c9e5aa3725f056acef49484af43607813172a1e
840e3e7c6c5ccfe700282d92434e9bef2e14760ea88fd327427c1f0583951d3a
GET /4196140_f520.jpg HTTP/1.1
Host: usercontent2.hubstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 14:33:22 GMT
content-type: image/jpeg
content-length: 38890
cache-control: max-age=31536000
etag: "a5ebb554f9aff010acc3ce11caa81613"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bo%2FmreArUb%2FCbuORwfIZcYp9FsggFlefx%2Bj5wEMW%2F%2BcIVkoyw9ihWh17sNHn3Umil%2BMGczuh5B97UV7z6TvDufZcr0fmRuA6R8mR7l766Ih0jNSBk33Il9dazQcMYO338EAGcJDANmppsGeF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a822367d4a1c0a-OSL
X-Firefox-Spdy: h2
img03.deviantart.net/3db7/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg
35.82.34.224404 Not Found 0 B URL HTTP/1.1 img03.deviantart.net/3db7/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg
IP 35.82.34.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /3db7/i/2011/093/f/f/spawn__black_ops_emblems__by_wolf0606-d3d5dyd.jpg HTTP/1.1
Host: img03.deviantart.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Server: da-redirector/0.5.2
d38psrni17bvxu.cloudfront.net/scripts/maincaf.js
54.230.245.130200 OK 7.0 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/scripts/maincaf.js
IP 54.230.245.130:0
File type ASCII text, with very long lines (316)
Hash 3c7567521347bf95b105ffa7fdc7da86
08739adacbf1300c74d8ae1cf100d00d9fbd0e5f
0e32bca6b67dfdeed3f9b988ddcec1adf0502549a130a78c4ace64c318a7ea29
GET /scripts/maincaf.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 7006
Connection: keep-alive
Server: nginx
Date: Fri, 16 Dec 2022 02:41:56 GMT
Last-Modified: Tue, 15 Nov 2022 15:10:24 GMT
Accept-Ranges: bytes
ETag: "6373abe0-1b5e"
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EntTSMqAei8w7ZdMUGYDP6_VcDFl_uEXsqkhc8KihWewbyVqtCYGFw==
Age: 42686
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 90c113383ae4e96b2af027ec46836569
38721800e265ea57ff98c3a77a0ed1722237968b
1f59ec06a24ef27c2ae789f0bf6b0fba77fd8da3176f96ce477124b0db9dd663
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash dad7abd58f5da6a611a0f3259100ff55
09d2649b4c8bbec7a671f3eaca2b61155474dc22
80f17b0f4d305d27125867e87dcba70f122803cd0ec7da31c3b4a8c02b2ab733
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80404 Not Found 54 kB URL HTTP/2 auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1885), with CRLF, LF line terminators
Hash 1602a40076fca7ab7f8581854071af3c
786d52722b06a3ea798415f73d7307292985b546
f6ba964bb06efc2a084768aeb16a33d4f8c0484353e9d458cf5ca622d43cc331
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 16 Dec 2022 14:33:22 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
dexplatform.com/publishers/adserving/show.php?token=MTExMXw3Mjh4OTB8NzI4fDkw
72.52.179.174200 OK 2.0 kB URL HTTP/1.1 dexplatform.com/publishers/adserving/show.php?token=MTExMXw3Mjh4OTB8NzI4fDkw
IP 72.52.179.174:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (536)
Hash 27ac60e78d079bc6be4b3fd4fa92d4d9
eb59b6616de2339bdf9768e873e401611ca9468b
e1ac61ecd028494fde93795916669aafbb8e8ae49b9379b63f8c9ce84fcb3a3c
GET /publishers/adserving/show.php?token=MTExMXw3Mjh4OTB8NzI4fDkw HTTP/1.1
Host: dexplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 14:33:21 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5958996817691501500%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5958996817691501500%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
142.250.74.109302 Found 496 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5958996817691501500%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5958996817691501500%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (541)
Hash 3a08afc14970c48e855c04247dcf9492
3a4052ac35f47097dc7cd520dbdc2ce1f45d9a18
4c5b070839acfd8a245518085908cd3eee975bda97c701314cb8e086c3af0e71
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5958996817691501500%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5958996817691501500%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 16 Dec 2022 14:33:22 GMT
location: https://www.blogger.com/followers.g?blogID=1250069118049223412&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50&pageSize=21&postID=5958996817691501500&origin=http%3A%2F%2Fkimkardashian-ring.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-H62p2DYph-rzwLEwTQ42zA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 496
server: GSE
set-cookie: __Host-GAPS=1:xSqHnHMMw5tQGGhk--S0kag-af78QQ:zX2HukpSgFXOLmwm;Path=/;Expires=Sun, 15-Dec-2024 14:33:22 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/adsense/domains/caf.js
216.58.207.228200 OK 79 kB URL HTTP/2 www.google.com/adsense/domains/caf.js
IP 216.58.207.228:0
File type ASCII text, with very long lines (1885)
Hash 0953b3d84332c3d6861226c94c9c1f72
374e2b4d89b7c31ed1e6fa216e3fde0fc6692ef0
2401f9dee786e7fb3ab66ea875e9f83b6b6de9dbc4cd88b6491f315c20177f48
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww1.besthitsnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Fri, 16 Dec 2022 14:33:22 GMT
expires: Fri, 16 Dec 2022 14:33:22 GMT
cache-control: private, max-age=3600
etag: "4168607944686720504"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ww1.besthitsnow.com/_fd
199.59.243.222200 OK 2.4 kB IP 199.59.243.222:0
File type ASCII text, with very long lines (4501), with no line terminators
Hash c1d716f8aa1362a5ab6351186636dd12
9f80577a88e688320d22de9bff910643b1e55936
2bf329f3c6893eb2a4c79705c820bf3e5fc5ae6dfc4c582135f6f477d61aa73e
POST /_fd HTTP/1.1
Host: ww1.besthitsnow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.besthitsnow.com/
Content-Type: application/json
Origin: http://ww1.besthitsnow.com
Connection: keep-alive
Content-Length: 0
HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 16 Dec 2022 14:33:22 GMT
X-Version: 2.101.0
Set-Cookie: parking_session=66abe502-c971-4dfb-b4e4-8366e79ec4cf; expires=Fri, 16-Dec-2022 14:48:22 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
c.parkingcrew.net/scripts/sale_form.js
185.53.178.30200 OK 761 B URL HTTP/1.1 c.parkingcrew.net/scripts/sale_form.js
IP 185.53.178.30:0
Hash 64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3
GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes
ww1.besthitsnow.com/px.gif?ch=1&rn=8.076465993587508
199.59.243.222200 OK 42 B URL HTTP/1.1 ww1.besthitsnow.com/px.gif?ch=1&rn=8.076465993587508
IP 199.59.243.222:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=1&rn=8.076465993587508 HTTP/1.1
Host: ww1.besthitsnow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.besthitsnow.com/
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ww1.besthitsnow.com/px.gif?ch=2&rn=8.076465993587508
199.59.243.222200 OK 42 B URL HTTP/1.1 ww1.besthitsnow.com/px.gif?ch=2&rn=8.076465993587508
IP 199.59.243.222:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=2&rn=8.076465993587508 HTTP/1.1
Host: ww1.besthitsnow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.besthitsnow.com/
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
4playernetwork.com/wp-content/uploads/2010/10/halo-reach-logo.jpg
67.225.249.253200 OK 153 kB URL HTTP/2 4playernetwork.com/wp-content/uploads/2010/10/halo-reach-logo.jpg
IP 67.225.249.253:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 600x600, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2010:10:05 04:01:40], baseline, precision 8, 620x300, components 3\012- data
Size 153 kB (153251 bytes)
Hash 28aca27c8818db63807200a15243b274
4c2bb70ff9b8c7b9c41420f9dce53d1ce716ccb8
4f1ae4e04890e35a0124b7d208f13046e19cbea24ca26c302d82539f7b98980a
GET /wp-content/uploads/2010/10/halo-reach-logo.jpg HTTP/1.1
Host: 4playernetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 06 Nov 2011 23:31:50 GMT
accept-ranges: bytes
content-length: 153251
cache-control: max-age=2592000
expires: Sun, 15 Jan 2023 14:33:22 GMT
content-type: image/jpeg
date: Fri, 16 Dec 2022 14:33:22 GMT
server: Apache
X-Firefox-Spdy: h2
dexplatform.com/page/bouncy.php?&bpae=GbhGdK0mpUx%2FjnOcMP9XIEf3SaW9It0rRtfzFhlARVwjBWlvkz0jz7uaXKn%2FLa6disY2me6scP3mnGGq5V0mN3q46DA547jZ4%2F4gTx94b23pPDNDDGcJcVF2V7TDIPK8xb95a9UpraSOhJPBWIHbjp0bPCucUbF0kx1UXrtcRH4hvcDFd0XBvxB6AarvVo2lT8kdUDYYgucq8GwfefcEA5tIUthhAQh%2FQ4gqSItBhx7ESNtx7gm8nU5Dm39S%2B9SmkmvzHqDFos8CNfsSqiE58Y%2BL98XFoo9lrnx4DPHIUAjoeEqHhZfJddgUvBvouEo%2BswDlCJAuBgskg7KZIX2up9Wp0z38P9y8DGD%2BK33EfDqC3AimPHlpz%2BheL6k5hG5yyoACc0ubd6XG1zSS9UykjtCXbVz11rz2VanCxjhETJU2&redirectType=js&inIframe=true&inPopUp=false
72.52.179.174404 Not Found 0 B URL HTTP/1.1 dexplatform.com/page/bouncy.php?&bpae=GbhGdK0mpUx%2FjnOcMP9XIEf3SaW9It0rRtfzFhlARVwjBWlvkz0jz7uaXKn%2FLa6disY2me6scP3mnGGq5V0mN3q46DA547jZ4%2F4gTx94b23pPDNDDGcJcVF2V7TDIPK8xb95a9UpraSOhJPBWIHbjp0bPCucUbF0kx1UXrtcRH4hvcDFd0XBvxB6AarvVo2lT8kdUDYYgucq8GwfefcEA5tIUthhAQh%2FQ4gqSItBhx7ESNtx7gm8nU5Dm39S%2B9SmkmvzHqDFos8CNfsSqiE58Y%2BL98XFoo9lrnx4DPHIUAjoeEqHhZfJddgUvBvouEo%2BswDlCJAuBgskg7KZIX2up9Wp0z38P9y8DGD%2BK33EfDqC3AimPHlpz%2BheL6k5hG5yyoACc0ubd6XG1zSS9UykjtCXbVz11rz2VanCxjhETJU2&redirectType=js&inIframe=true&inPopUp=false
IP 72.52.179.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /page/bouncy.php?&bpae=GbhGdK0mpUx%2FjnOcMP9XIEf3SaW9It0rRtfzFhlARVwjBWlvkz0jz7uaXKn%2FLa6disY2me6scP3mnGGq5V0mN3q46DA547jZ4%2F4gTx94b23pPDNDDGcJcVF2V7TDIPK8xb95a9UpraSOhJPBWIHbjp0bPCucUbF0kx1UXrtcRH4hvcDFd0XBvxB6AarvVo2lT8kdUDYYgucq8GwfefcEA5tIUthhAQh%2FQ4gqSItBhx7ESNtx7gm8nU5Dm39S%2B9SmkmvzHqDFos8CNfsSqiE58Y%2BL98XFoo9lrnx4DPHIUAjoeEqHhZfJddgUvBvouEo%2BswDlCJAuBgskg7KZIX2up9Wp0z38P9y8DGD%2BK33EfDqC3AimPHlpz%2BheL6k5hG5yyoACc0ubd6XG1zSS9UykjtCXbVz11rz2VanCxjhETJU2&redirectType=js&inIframe=true&inPopUp=false HTTP/1.1
Host: dexplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dexplatform.com/publishers/adserving/show.php?token=MTExMXw3Mjh4OTB8NzI4fDkw
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:22 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/bottom.png
54.230.245.130200 OK 3.4 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/bottom.png
IP 54.230.245.130:0
File type PNG image data, 459 x 156, 8-bit colormap, non-interlaced\012- data
Hash 8f00618489c9024bc741a161effb2e32
7e3146cfd561806169d6201b01ccbe37a256dfc5
ee13da8e8d4bd49a7fdd595de382a3c7dbfef6f8555aeca5292c8c80da75f355
GET /themes/cleanPeppermintBlack_657d9013/img/bottom.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3359
Connection: keep-alive
Server: nginx
Date: Thu, 15 Dec 2022 18:04:07 GMT
Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT
Accept-Ranges: bytes
ETag: "62b4441b-d1f"
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2X4MghnPCnFsVw9Wau_VR4pIyoluN0l2wpx3TSiriHL9njRkgjoaCA==
Age: 73755
ww38.777seo.com/seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b&_xafvr=MWE0YWE4ZTc1NzhlNjRmYjc0NzBhM2VjNmZkZDcwODMzNDhhYjI1Miw2MzljODFiMjRiODM1
75.2.11.242200 OK 2.7 kB URL HTTP/1.1 ww38.777seo.com/seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b&_xafvr=MWE0YWE4ZTc1NzhlNjRmYjc0NzBhM2VjNmZkZDcwODMzNDhhYjI1Miw2MzljODFiMjRiODM1
IP 75.2.11.242:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f3b93edc55c615ac9c469d5cecc1df17
46ed8f6872f64259e131e40569dc1169bcd44041
3c327432d66df6eedcbb132b5e75430724f7096a6bd370bfc9f4c647b38d86e7
GET /seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b&_xafvr=MWE0YWE4ZTc1NzhlNjRmYjc0NzBhM2VjNmZkZDcwODMzNDhhYjI1Miw2MzljODFiMjRiODM1 HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_yahoo
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
c.parkingcrew.net/scripts/sale_form.js
185.53.178.30200 OK 761 B URL HTTP/1.1 c.parkingcrew.net/scripts/sale_form.js
IP 185.53.178.30:0
Hash 64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3
GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Dec 2022 14:33:23 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes
ww38.777seo.com/favicon.ico
75.2.11.242200 OK 0 B URL HTTP/1.1 ww38.777seo.com/favicon.ico
IP 75.2.11.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/seo.php?username=billymoon&subid1=20221217-0133-21af-8f91-48605cb0a53b&_xafvr=MWE0YWE4ZTc1NzhlNjRmYjc0NzBhM2VjNmZkZDcwODMzNDhhYjI1Miw2MzljODFiMjRiODM1
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 14:33:23 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 4c4d5750764811ab40bbaa2ecf42ce9e
bca7e97f92e65adc1fb8a9aadf025ca1fd8f3689
32aedd00c453b7256d76f79053d0fd15629d9c39b2e4f7084cf6060920515098
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=117592
Date: Fri, 16 Dec 2022 14:33:23 GMT
Etag: "639baa0b-1d7"
Expires: Sat, 17 Dec 2022 23:13:15 GMT
Last-Modified: Thu, 15 Dec 2022 23:13:15 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n90jZTa4S60UTb_risUyWjwdDXOAm11BPjQBvxJMdMks97xkYa2qaQ==
brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
35.170.174.54200 OK 11 kB URL HTTP/2 brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
IP 35.170.174.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1924)
Hash 99d0383ebe2dd0bd39550cd858d8a3c0
8dd7b3f95ff461e99d9ab4ce859caf72fbca0154
d33f5c7759a36f09b1c7884799feda74d3437c523c6f0eb20335b26eab8866bf
GET /lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1 HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww38.777seo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 14:33:24 GMT
content-type: text/html;charset=UTF-8
content-length: 10723
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f8d21614a5f07dffe6f4fb52c6133ce1
aefac3c1cd05fd22634f71247cd4dd2e6fa1be88
b0f085491438d08c58906100ae4ddc2fea2e4b34b333c8f3a5a2258fdfd7a51e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.theshirtlist.com/wp-content/uploads/2010/11/Call-of-Duty-Black-Ops-SOG-Vintage-Emblem-T-Shirt-480x640.jpg
199.16.173.56404 Not Found 27 kB URL HTTP/2 www.theshirtlist.com/wp-content/uploads/2010/11/Call-of-Duty-Black-Ops-SOG-Vintage-Emblem-T-Shirt-480x640.jpg
IP 199.16.173.56:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (47964), with CRLF, LF line terminators
Hash 8b2a1e07a008a96c3f68b4f26964f22e
48126dd6aabb5c5fe12bff0911bb8aef013da02b
ddb0eb6a57ea50bb7c601fc23cbba32687443ec40de1b7b816ca07dc3e22adf4
GET /wp-content/uploads/2010/11/Call-of-Duty-Black-Ops-SOG-Vintage-Emblem-T-Shirt-480x640.jpg HTTP/1.1
Host: www.theshirtlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Fri, 16 Dec 2022 14:33:22 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
host-header: Pressable
vary: Accept-Encoding, Cookie
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.theshirtlist.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
brigi-jar.com/style.css
35.170.174.54200 OK 6.0 kB IP 35.170.174.54:0
Hash 2eb024ad11ef5f2e503bfb60117c25d8
235b5ca1205cc2ca3d0b8e4f98ce022512b05c0f
d8efc1d8e1100baf07f4105119fde6f8fe760a9efebf189adc5d9b3dfccc9e0a
GET /style.css HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 14:33:24 GMT
content-type: text/css
content-length: 5981
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 16 Dec 2022 08:31:10 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:300
142.250.74.106200 OK 870 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:300
IP 142.250.74.106:0
Hash bfe7b70bf0250aafc8cd67bfb0ce15c4
7f6b9c0da035de72ec9a9dee4ba9a1289cb59725
0a8c3b2fa92c02dbd4de77c62a646281c3d25ec0fc346e0ba8e8c671269adfdd
GET /css?family=Poppins:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Dec 2022 14:33:24 GMT
date: Fri, 16 Dec 2022 14:33:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 11cfeda2802547afadbbd10fd45ea039
d7118ea09cce13c5ae5192d24e0b71d380153db0
e9db2ce30643914af2d2572e96bae9c74a4824f4bd0c5ff22086465f2b77cef7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brigi-jar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 21:48:50 GMT
expires: Thu, 14 Dec 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 146674
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Mate+SC
142.250.74.106200 OK 309 B URL HTTP/2 fonts.googleapis.com/css?family=Mate+SC
IP 142.250.74.106:0
Hash 44f9d6e11ab6e9b704deacbd1e8579fd
ccab42cd4e742fda14d5996bb71fcd77e6f227e4
018635657037e23fa8fe991fa25adf6b954534aee58b08b0f970350f2725537a
GET /css?family=Mate+SC HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Dec 2022 14:33:24 GMT
date: Fri, 16 Dec 2022 14:33:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 11cfeda2802547afadbbd10fd45ea039
d7118ea09cce13c5ae5192d24e0b71d380153db0
e9db2ce30643914af2d2572e96bae9c74a4824f4bd0c5ff22086465f2b77cef7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 14:33:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 1e8267545dcb75ff7d5cd27b7b0fc497
f130f06cf0f7b5f36fdd25fc7bdc69c7c0be20de
ae53a4b08cca5106e8b74c8327af2a7deaaedda9b877164a634758e1cab53107
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=124608
Date: Fri, 16 Dec 2022 14:33:24 GMT
Etag: "639bb0fb-1d7"
Expires: Sun, 18 Dec 2022 01:10:12 GMT
Last-Modified: Thu, 15 Dec 2022 23:42:51 GMT
Server: ECS (dcb/7F13)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3BspLLzS8onKnXZpSFO5IpZgtRCddKk_0l_hD_zuDPqbXxKJ0l8oqQ==
Age: 5241
fonts.googleapis.com/css?family=Poppins
142.250.74.106200 OK 25 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins
IP 142.250.74.106:0
Hash 9b515faff9f2b01db4f92f6f8c843a47
a34e8b0be8fa5f6d7d178feeac70b9be9fa204f8
a37e145535935b18b4cf23ca791db97e2e08b1b296c11ddff7d85c0cdfd661bc
GET /css?family=Poppins HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Dec 2022 14:33:24 GMT
date: Fri, 16 Dec 2022 14:33:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.domainmarket.com/buynow/ymads.com
172.66.40.121200 OK 0 B URL HTTP/2 www.domainmarket.com/buynow/ymads.com
IP 172.66.40.121:0
GET /buynow/ymads.com HTTP/1.1
Host: www.domainmarket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 14:33:21 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=172800
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Fri, 16 Dec 2022 05:32:57 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Bve2lUMTqdKx6RFcAkq3YdLZ6AxFO0zapPk8uKfpG5A%2FFpGLy4MYoR%2B3Fmw1TM4C02%2BbvQDfYEsGtSIPm4cs9461xSaoiYwqJuBwm85uTmiiBUIkHJOCoEzZGROnIuFSS%2BNDLBO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a82232bc8f0b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hugedomains.com/domain_profile.cfm?d=ad-u.com
104.26.6.37200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=ad-u.com
IP 104.26.6.37:0
GET /domain_profile.cfm?d=ad-u.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 14:33:21 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Mon, 11-Dec-2023 14:33:21 GMT; path=/
site_version=HDv3; expires=Mon, 11-Dec-2023 14:33:21 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FyROfPlrCUo9Kd7c5AMrSFwclhFdoXy80Kojoi8Qf52EZpFORSuqDFQeYMQQM8Z6CFP1iupblj8Zg8Va2fT01nFZPh%2BcfBdVM%2FX3aKADknS6Q7ra5xBDfb1JCgJkLrdSq%2Fa6eOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a822357f9db50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.blogflare.com/flare_19497.gif
104.21.2.106404 Not Found 0 B URL HTTP/1.1 www.blogflare.com/flare_19497.gif
IP 104.21.2.106:0
GET /flare_19497.gif HTTP/1.1
Host: www.blogflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 16 Dec 2022 14:33:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 26 Jul 2021 12:39:01 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=7200
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AAHyMvy1lBnGCIVNEMDZpDahrFhNyaKE1kIf2pQSHVCnxN9pJ0fnHRadeL1IAUOE%2Bu%2FUXIOiv1mhatbodtpAMvjXMrinzm7R2bcGN7zFtFMA43NGYn7Swtf3HxbWtak4m58gsA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77a8223a99a00b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
fonts.googleapis.com/css?family=Mate
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Mate
IP 142.250.74.106:0
GET /css?family=Mate HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Dec 2022 14:33:24 GMT
date: Fri, 16 Dec 2022 14:33:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2