r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10632
Expires: Tue, 29 Nov 2022 04:36:01 GMT
Date: Tue, 29 Nov 2022 01:38:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Tue, 29 Nov 2022 04:13:42 GMT
Date: Tue, 29 Nov 2022 01:38:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3207
Cache-Control: max-age=121558
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:24:48 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DzoroHa9kbDXyB7EpF7jFREHTLtAsvZCbpE8BwyTQUpS7SyA2EiFkTj4yu2fyt+aDWgUmovVQdI=
x-amz-request-id: SEBMYFWCDJ4G5SJM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 00:42:18 GMT
age: 3392
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 01:19:34 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1156
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:38:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
g2.gumgum.com/javascripts/ggv2.js
99.81.198.242301 Moved Permanently 162 B URL HTTP/1.1 g2.gumgum.com/javascripts/ggv2.js
IP 99.81.198.242:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /javascripts/ggv2.js HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 01:38:50 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Server: nginx
Location: https://js.gumgum.com/services.js
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash e16bd266c88eb80e84b5e036b8ee3cbb
3d8b0e5c7a6dc0631a6f8760582643b6e5bdcfba
cf791532099e27f14dd5c928a8a3b8c319578d671fb67fa51b3a360140e9b918
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 13c870f9d0256a3e5dd72fc47aea94e9
55b39d22353b9f020626c9ad5067adbb4e0a4761
a7af66142920ccb78d06c97456b0c48fc4596b853bf3f5eef60940857bcd6fd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
142.250.74.105200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:12:52 GMT
expires: Wed, 22 Nov 2023 18:12:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: text/css
age: 545158
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/uds/solutions/slideshow/gfslideshow.js
142.250.74.164404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/uds/solutions/slideshow/gfslideshow.js
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 717fb58c6b1cdf824dffb387bae569e3
e498a5dfd6e51d99c5a48ce37df669b15a4865c2
4c560b3e2ebb5a130877816d46d0d4f7d2d7596aad0421f8de3739c8933a3d59
GET /uds/solutions/slideshow/gfslideshow.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1599
Date: Tue, 29 Nov 2022 01:38:50 GMT
www.google.com/jsapi
142.250.74.164301 Moved Permanently 237 B IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 362d5b448e14803e150656f8f2b2064f
46e929aad5f6323e61c895d51c8fa5f46171f16e
9361792c2d970710b9e66bb86b6dc9b17dab59a9294a30a5790bdb1e92b38021
GET /jsapi HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://www.gstatic.com/charts/loader.js
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 237
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 01:34:14 GMT
Expires: Tue, 29 Nov 2022 02:04:14 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 276
apis.google.com/js/platform.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Tue, 29 Nov 2022 01:38:50 GMT
expires: Tue, 29 Nov 2022 01:38:50 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
142.250.74.105200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:55 GMT
expires: Tue, 29 Nov 2022 14:43:55 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 15:52:34 GMT
content-type: image/gif
age: 557695
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.162200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (3577)
Hash c66203798fd7f14c5b17d269d6a2c61f
05f51cffe429beca7395e387ceff8f50c333a6b0
a27f5981b40d4587fafd4fab39210478f62b5def9be6832b587541bcb422683f
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Tue, 29 Nov 2022 01:38:50 GMT
Expires: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 2934408339847050195
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36282
X-XSS-Protection: 0
img1.blogblog.com/img/icon18_wrench_allbkg.png
142.250.74.105200 OK 475 B URL HTTP/1.1 img1.blogblog.com/img/icon18_wrench_allbkg.png
IP 142.250.74.105:0
File type PNG image data, 18 x 18, 8-bit colormap, non-interlaced\012- data
Hash f617effe6d96c15acfea8b2e8aae551f
6d676af11ad2e84b620cce4d5992b657cb2d8ab6
d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b
GET /img/icon18_wrench_allbkg.png HTTP/1.1
Host: img1.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 475
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 13:16:05 GMT
Expires: Wed, 30 Nov 2022 13:16:05 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 23 Nov 2022 07:50:07 GMT
Content-Type: image/png
Age: 476565
guidetoline.blogspot.com/search/label/Pilot%20in%20SF%20crash%20had%20little%20experience%20with%20777s
142.250.74.161200 OK 98 kB URL HTTP/1.1 guidetoline.blogspot.com/search/label/Pilot%20in%20SF%20crash%20had%20little%20experience%20with%20777s
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2038)
Hash 67b6684c0f490cf807a1f514c7b8c09c
11c462869b625342b3d6f8dea6758fcaeb540979
d69022eda1555152388c84b18f41459c7cf106c62460ba4280d353b834e6805e
Analyzer Verdict Alert fortinet Malware
GET /search/label/Pilot%20in%20SF%20crash%20had%20little%20experience%20with%20777s HTTP/1.1
Host: guidetoline.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Tue, 29 Nov 2022 01:38:50 GMT
Date: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 21 Nov 2022 03:41:23 GMT
ETag: W/"22bf067ba7bda110081644e7fb65a7869d98ccca259b765dcb8e75b9f4b95144"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 98340
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Mon, 28 Nov 2022 17:27:09 GMT
Expires: Mon, 12 Dec 2022 17:27:09 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 29501
guidetoline.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 guidetoline.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: guidetoline.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/search/label/Pilot%20in%20SF%20crash%20had%20little%20experience%20with%20777s
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Tue, 29 Nov 2022 01:38:50 GMT
Expires: Tue, 06 Dec 2022 01:38:50 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 23:54:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/2342155703-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 16:02:03 GMT
expires: Tue, 28 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 27 Nov 2022 15:52:40 GMT
content-type: text/javascript
age: 34607
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5011c3ae54f0ee02e53eee57d47da352
ad893bb5928ff835231652809cc9af62d5219f0a
d840efa1d29eff50fc07c0c31315c004f60db98e7da8c8a232e40e3595bba0a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bdv.bidvertiser.com/BidVertiser.dbm?pid=299498%26bid=1107747
54.241.51.109200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=299498%26bid=1107747
IP 54.241.51.109:0
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=299498%26bid=1107747 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2CrohNLQfAhdDaMKXkF7X_xwatyCnnWYArf1gkY6OvZokyC4mQeVCOLfKmPGl_gPGi2DeMmcfLTRKrKpkWGhgNXFgGSKMtjd1aNcrpTVRPEAY0_TViUfdO9s8ea_KyWGH2d6n8xkpaxShIzE8qRUbAAM0q9h_279pE=w72-h72-p-k-no-nu
142.250.74.33404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2CrohNLQfAhdDaMKXkF7X_xwatyCnnWYArf1gkY6OvZokyC4mQeVCOLfKmPGl_gPGi2DeMmcfLTRKrKpkWGhgNXFgGSKMtjd1aNcrpTVRPEAY0_TViUfdO9s8ea_KyWGH2d6n8xkpaxShIzE8qRUbAAM0q9h_279pE=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 148a6c65d6fac40864fee61ae0e71da6
11c672c2007e13b84a076eb75be98574060c684e
81a0978d32e87804176be9818d309746356fe4e833fc55ba4eaebcf06aca1936
GET /blogger_img_proxy/ANbyha2CrohNLQfAhdDaMKXkF7X_xwatyCnnWYArf1gkY6OvZokyC4mQeVCOLfKmPGl_gPGi2DeMmcfLTRKrKpkWGhgNXFgGSKMtjd1aNcrpTVRPEAY0_TViUfdO9s8ea_KyWGH2d6n8xkpaxShIzE8qRUbAAM0q9h_279pE=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 01:38:50 GMT
server: fife
content-length: 1765
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.linkwithin.com/pixel.png
3.19.188.212200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP 3.19.188.212:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 29 Nov 2022 01:38:50 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46301 Moved Permanently 0 B URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Tue, 29 Nov 2022 01:38:50 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
yllix.com/slider.php?pub=719463§ion=General&ga=g&side=random
185.66.200.224301 Moved Permanently 162 B URL HTTP/1.1 yllix.com/slider.php?pub=719463§ion=General&ga=g&side=random
IP 185.66.200.224:0
ASN #201702 skHosting.eu s.r.o.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /slider.php?pub=719463§ion=General&ga=g&side=random HTTP/1.1
Host: yllix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 01:38:50 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://yllix.com/slider.php?pub=719463§ion=General&ga=g&side=random
binaryapi.ap.org/c7cbdd330ad04f0db24c92c16fed41f0/460x.jpg
23.13.252.248200 OK 57 kB URL HTTP/1.1 binaryapi.ap.org/c7cbdd330ad04f0db24c92c16fed41f0/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Generated by IJG JPEG Library", baseline, precision 8, 398x512, components 3\012- data
Hash e751324276c98c714715c1141d8b76c5
d0b285faf8f21c44e7400a11afacce768a76d023
117aaf01f3188c60c4da14d6f35b2b1bd7c62aa809f0bcfb7223deab41424395
GET /c7cbdd330ad04f0db24c92c16fed41f0/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 56832
Last-Modified: Mon, 14 Jan 2019 20:50:03 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 512
x-amz-meta-ap-width: 398
x-amz-meta-ap-binaryversion: 0
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-mediatype: Photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
ETag: "e751324276c98c714715c1141d8b76c5"
X-Amz-Cf-Pop: ORD52-C2
X-Amz-Cf-Id: I1GpEJngKwpfFJidOCP46nup6E22M3GF8dEVYfOdOyqC04C_ZvxyuQ==
Expires: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:50 GMT
Connection: keep-alive
1.bp.blogspot.com/-C_YyJ-ASKOg/Tva9UcIkmpI/AAAAAAAADP8/uy0K5vd8O-k/w72-h72-p-k-no-nu/b-grade-actress-rosa.jpg
142.250.74.161200 OK 3.7 kB URL HTTP/1.1 1.bp.blogspot.com/-C_YyJ-ASKOg/Tva9UcIkmpI/AAAAAAAADP8/uy0K5vd8O-k/w72-h72-p-k-no-nu/b-grade-actress-rosa.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 561537e860f2f4d93b8ed0fb0175d6ae
7e1f7edfd6206031621716f61e32d6c12a6d3346
2cc2ab31405480046f8652b18b5d5175585e3e7a231a21d5d312c19b4b32a119
GET /-C_YyJ-ASKOg/Tva9UcIkmpI/AAAAAAAADP8/uy0K5vd8O-k/w72-h72-p-k-no-nu/b-grade-actress-rosa.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v45ab"
Expires: Wed, 30 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="b-grade-actress-rosa.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 29 Nov 2022 01:38:50 GMT
Server: fife
Content-Length: 3662
X-XSS-Protection: 0
binaryapi.ap.org/97344cd40e2a4d9d8befac5523daf739/460x.jpg
23.13.252.248200 OK 19 kB URL HTTP/1.1 binaryapi.ap.org/97344cd40e2a4d9d8befac5523daf739/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x303, components 3\012- data
Hash 65db38cb086f8aeac32162df0a67e30b
d4053782b0fdc3b34ff82856153cc0ff82bfa352
896e85efc427d5088799db6755ca80a1d3c19af8607a7b66fc9b9042fb36db42
GET /97344cd40e2a4d9d8befac5523daf739/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 06 Jul 2013 23:45:06 GMT
Accept-Ranges: bytes
ETag: "f098df0690220291664425b251d8131f"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 338
x-amz-meta-ap-width: 512
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: b58fdf859737d716360f6a7067005fb0
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD58-P2
X-Amz-Cf-Id: 5JrtQKG9wYsEnzvp-mhddV-MDseEgiL3SWpBwDm8wKZqfbvW3Uzcvw==
Content-Length: 19395
Expires: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:50 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ce182bf4da446af91c7e5562006de39
04a3bffa405645fb06932346c6d61b3a20b9c491
2e9d7f33041a8c0eb78a717173b26eca2c92136d2d8fe7f20087bd40d6c13f04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-6DoLkJZcm5s/UAzPEjypstI/AAAAAAAACi8/Q_0pRYSYdZA/w72-h72-p-k-no-nu/Chaitya+painting+1.jpg
142.250.74.161200 OK 3.3 kB URL HTTP/1.1 2.bp.blogspot.com/-6DoLkJZcm5s/UAzPEjypstI/AAAAAAAACi8/Q_0pRYSYdZA/w72-h72-p-k-no-nu/Chaitya+painting+1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 70f60cfb229896d8bd4c3af7424f07f9
947121050a70502c23b039858f8de269671cadb6
0359ee845b0a458ad050721eb26d926238fa0afbb2cfbcf0360227fc3532c135
GET /-6DoLkJZcm5s/UAzPEjypstI/AAAAAAAACi8/Q_0pRYSYdZA/w72-h72-p-k-no-nu/Chaitya+painting+1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3de4"
Expires: Wed, 30 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Chaitya painting 1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 29 Nov 2022 01:38:50 GMT
Server: fife
Content-Length: 3271
X-XSS-Protection: 0
binaryapi.ap.org/ce942170535b4983bb21f61577a9bac3/460x.jpg
23.13.252.248200 OK 12 kB URL HTTP/1.1 binaryapi.ap.org/ce942170535b4983bb21f61577a9bac3/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x270, components 3\012- data
Hash f8cedce5fee22c5e143b07b65684e6ff
32f32c404a6a6a203809b58e0551ba015e78acb0
799255fc1c2a2c58676c47ac139a73fd340a93917a4ca0847155e1c5a3444883
GET /ce942170535b4983bb21f61577a9bac3/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 06 Jul 2013 20:56:29 GMT
Accept-Ranges: bytes
ETag: "085f2bc043dfc9fbaee58508e674adf2"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 301
x-amz-meta-ap-width: 512
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: 65ac2e16969dd416360f6a706700e9ec
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD52-C2
X-Amz-Cf-Id: TklLRSHBkTu6NEUYWWCFBNU3ig98tGMznUrGPGYK9K8SJ0hiawUqUQ==
Content-Length: 12460
Expires: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5606
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Last-Modified: Tue, 29 Nov 2022 00:05:24 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 13c870f9d0256a3e5dd72fc47aea94e9
55b39d22353b9f020626c9ad5067adbb4e0a4761
a7af66142920ccb78d06c97456b0c48fc4596b853bf3f5eef60940857bcd6fd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
eclkmpbn.com/adServe/banners?tid=16976_73856_0&type=slider&size=728x90
173.192.101.26301 Moved Permanently 162 B URL HTTP/1.1 eclkmpbn.com/adServe/banners?tid=16976_73856_0&type=slider&size=728x90
IP 173.192.101.26:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /adServe/banners?tid=16976_73856_0&type=slider&size=728x90 HTTP/1.1
Host: eclkmpbn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 01:38:50 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://mybettermb.com/adServe/banners?tid=16976_73856_0&type=slider&size=728x90
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.googleusercontent.com/image?id=0BwVBOzw_-hbMODkzNDVjYTEtYzNiYi00YjRkLThkZjAtOGM0MGI5NzRhZjM4&options=w1600
142.250.74.33301 Moved Permanently 0 B URL HTTP/1.1 themes.googleusercontent.com/image?id=0BwVBOzw_-hbMODkzNDVjYTEtYzNiYi00YjRkLThkZjAtOGM0MGI5NzRhZjM4&options=w1600
IP 142.250.74.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /image?id=0BwVBOzw_-hbMODkzNDVjYTEtYzNiYi00YjRkLThkZjAtOGM0MGI5NzRhZjM4&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Tue, 29 Nov 2022 01:38:50 GMT
Location: https://themes.googleusercontent.com/image?id=0BwVBOzw_-hbMODkzNDVjYTEtYzNiYi00YjRkLThkZjAtOGM0MGI5NzRhZjM4&options=w1600
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
binaryapi.ap.org/44c24c847131476fafe93900fe8dc95d/460x.jpg
23.13.252.248200 OK 10 kB URL HTTP/1.1 binaryapi.ap.org/44c24c847131476fafe93900fe8dc95d/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x283, components 3\012- data
Hash baa219c247a3cc058835399fc6132585
099c68bf6a64e3950b3a997fecd2228b4462ec9c
07234feceed26cecc5c2afac19b57579be6cd3fc2bef0aa144e9dbca2d48e4f0
GET /44c24c847131476fafe93900fe8dc95d/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 06 Jul 2013 20:57:59 GMT
Accept-Ranges: bytes
ETag: "64e4f05880a0c6867d3e16ddb5bec205"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 316
x-amz-meta-ap-width: 512
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: c5a37617969ed416360f6a7067005946
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD52-C2
X-Amz-Cf-Id: 7-L4Ej1EgecOm6INEGCykNTesDS60YxgsyfjGdlPNdFUwPzE8_BLmg==
Content-Length: 10073
Expires: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:50 GMT
Connection: keep-alive
binaryapi.ap.org/b2f872de0f774818850d827402302e7d/460x.jpg
23.13.252.248200 OK 18 kB URL HTTP/1.1 binaryapi.ap.org/b2f872de0f774818850d827402302e7d/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x345, components 3\012- data
Hash 4241a444ab2c19b073d3d853eeab33ee
0950ae03d6d89ed00ed27fe5d0f204aaca40eff3
b4423293a945f93728ea8398e41e17394e47559a576fff4b6ca6019edc35a0f9
GET /b2f872de0f774818850d827402302e7d/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 06 Jul 2013 20:56:57 GMT
Accept-Ranges: bytes
ETag: "8f215756c411850922a352bb5ec6d8ee"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 384
x-amz-meta-ap-width: 512
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: dec45e7c969dd416360f6a706700c344
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD58-P2
X-Amz-Cf-Id: FPOss5oVe-wfjXec3lSWE7ktr63BopoLPfFDhmvf0_HAQPAaAcU9jA==
Content-Length: 18443
Expires: Tue, 29 Nov 2022 01:38:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:50 GMT
Connection: keep-alive
www.blogblog.com/1kt/simple/gradients_deep.png
142.250.74.105200 OK 262 B URL HTTP/1.1 www.blogblog.com/1kt/simple/gradients_deep.png
IP 142.250.74.105:0
File type PNG image data, 10 x 800, 8-bit/color RGBA, non-interlaced\012- data
Hash 4533e4c8e93ff6347b92e38d64a36ce0
b5dcb41bf899b346c7224bad6f195e50e71c3944
6a754486a01497a52e0df2209e23d9e5d594028caa6615fc912c2babd3ea42fb
GET /1kt/simple/gradients_deep.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 262
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 16:37:08 GMT
Expires: Tue, 29 Nov 2022 16:37:08 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 06:50:29 GMT
Content-Type: image/png
Age: 550902
cdn.widgetserver.com/syndication/subscriber/InsertWidget.js
45.33.2.79200 OK 157 B URL HTTP/1.1 cdn.widgetserver.com/syndication/subscriber/InsertWidget.js
IP 45.33.2.79:0
Hash 67e216a27dda24bdcb086c2385b0cb99
17141c80f5d32bec3691c5ab24741d8b7dd5f0c6
9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7
GET /syndication/subscriber/InsertWidget.js HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Tue, 29 Nov 2022 01:38:50 GMT
content-type: application/javascript
content-length: 157
last-modified: Wed, 07 Mar 2018 18:30:37 GMT
etag: "5aa02fcd-9d"
accept-ranges: bytes
connection: close
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5011c3ae54f0ee02e53eee57d47da352
ad893bb5928ff835231652809cc9af62d5219f0a
d840efa1d29eff50fc07c0c31315c004f60db98e7da8c8a232e40e3595bba0a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mediacenter.smugmug.com/photos/i-TjGX6nj/0/L/070713_Asiana_Plane_Crash_03-L.jpg
143.204.54.68200 OK 184 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-TjGX6nj/0/L/070713_Asiana_Plane_Crash_03-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x533, components 3\012- data
Size 184 kB (183901 bytes)
Hash 27814dec65e283b5182848f3e6c0e508
18259a7f974b6a9a683b742bae0075cb67c7d3f3
ff0007670cae414baefef69cc5ed3f13b312b665747711254f6422bd634aee99
GET /photos/i-TjGX6nj/0/L/070713_Asiana_Plane_Crash_03-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 183901
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: J4FN7GXig7UYKEjz5sDlCA==
Date: Tue, 29 Nov 2022 01:38:50 GMT
ETag: "27814dec65e283b5182848f3e6c0e508"
Expires: Wed, 29 Nov 2023 01:38:50 GMT
Last-Modified: Sun, 07 Jul 2013 19:59:51 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 183901
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=4cf206a9, d=i-0c218edb69a0a5b46
X-Frame-Options: DENY
X-Request-Id: 6a7dbf41
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:50 PST
X-Smug-PH: 0.032
X-Smug-V: 5
X-TTFB: 0.3954
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IuUcTLQs5dEyl4KU9wR3tPxOkk77vtEKKD2cC__8P_1MseH73oOpBw==
mediacenter.smugmug.com/photos/i-wQwqzLX/0/L/asiana-plane-crash-san-francisco-070613-001-L.jpg
143.204.54.68200 OK 67 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-wQwqzLX/0/L/asiana-plane-crash-san-francisco-070613-001-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x491, components 3\012- data
Hash 2686a8a8e3087a882e980c916dc3a8ee
d1474e12ccab92ba749c36bd72fe418d790f7bd6
20e40cfc57c84e7ee07f8d8bf7f9d317bbbf246ba705711d9e869f0f3939920e
GET /photos/i-wQwqzLX/0/L/asiana-plane-crash-san-francisco-070613-001-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 66946
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: JoaoqOMIeogumAyRbcOo7g==
Date: Tue, 29 Nov 2022 01:38:50 GMT
ETag: "2686a8a8e3087a882e980c916dc3a8ee"
Expires: Wed, 29 Nov 2023 01:38:50 GMT
Last-Modified: Sun, 07 Jul 2013 00:21:58 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 66946
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=4cf206a9, d=i-002a1a017eda7630c
X-Frame-Options: DENY
X-Request-Id: 0d58a88f
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:50 PST
X-Smug-PH: 0.0236
X-Smug-V: 5
X-TTFB: 0.0735
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -7XjMeADlq-sXENT93OhkZhBWPZX8qgMFEZN511hqFqHyMulON5UYQ==
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-wo_qeJNRg9g/TpWcX7dfHYI/AAAAAAAAAQ0/Yr8BBPFAt7s/s1600/hanuman-ram.jpg
142.250.74.161200 OK 53 kB URL HTTP/1.1 2.bp.blogspot.com/-wo_qeJNRg9g/TpWcX7dfHYI/AAAAAAAAAQ0/Yr8BBPFAt7s/s1600/hanuman-ram.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 201x725, components 3\012- data
Hash fc1223de4283470675157b139aa611a5
e43de1a51ad37a54e1defe25b6be9746c13e55fa
4e7efeb32e839d126146df5d1470909e9cc74aed366975fd51d39b16d7aa5c6c
GET /-wo_qeJNRg9g/TpWcX7dfHYI/AAAAAAAAAQ0/Yr8BBPFAt7s/s1600/hanuman-ram.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3c2"
Expires: Wed, 30 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="hanuman-ram.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 29 Nov 2022 01:38:51 GMT
Server: fife
Content-Length: 52820
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 01:08:55 GMT
cache-control: public,max-age=3600
age: 1796
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.kizoa.com/embed-23327981-6503323o1l1
141.94.30.95301 Moved Permanently 178 B URL HTTP/1.1 www.kizoa.com/embed-23327981-6503323o1l1
IP 141.94.30.95:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /embed-23327981-6503323o1l1 HTTP/1.1
Host: www.kizoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 01:38:51 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.kizoa.com/embed-23327981-6503323o1l1
www.gstatic.com/charts/loader.js
142.250.74.163200 OK 20 kB URL HTTP/2 www.gstatic.com/charts/loader.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2134)
Hash f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77
GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 00:48:50 GMT
expires: Tue, 29 Nov 2022 01:48:50 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
content-type: text/javascript
age: 3001
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.187.31.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.31.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8g4P2UEv9ahghWpaj4vX8w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G0n6SpIwWvfMipe0MJVmUBjRAUM=
www.blogger.com/img/share_buttons_20_2.png
142.250.74.105200 OK 3.9 kB URL HTTP/1.1 www.blogger.com/img/share_buttons_20_2.png
IP 142.250.74.105:0
File type PNG image data, 100 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 55f1867cc38945ac55188da5a1fa3eb2
230f7ab6cecc25bc96922429ba4624910e5d7b8a
5cd1bdc9c84f17c1fa5b5e38449e65b7835ef8d20161ba7062a987e3c3b37cb1
GET /img/share_buttons_20_2.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 3946
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 18:44:09 GMT
Expires: Tue, 29 Nov 2022 18:44:09 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 17:53:03 GMT
Content-Type: image/png
Age: 543282
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2GDa_D8QzDxNCDZpkMmJyhBsQzFb8pfKjHQ1maOnmS2okFqZ1wpql2gAZraVhMpi6vC_V5p5fE_XPdCHm4-CkOp1bDOuJxjVN0MK4GXI4kTohqcAfC=w72-h72-p-k-no-nu
142.250.74.33404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2GDa_D8QzDxNCDZpkMmJyhBsQzFb8pfKjHQ1maOnmS2okFqZ1wpql2gAZraVhMpi6vC_V5p5fE_XPdCHm4-CkOp1bDOuJxjVN0MK4GXI4kTohqcAfC=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 91e27d85d4314366c18bce4c44784379
fa4e780f9875697a66d244087f82a3005dac84ba
a53c0c74f8ada14a78f94c13780c987761949d239e2ee461196e63f3c07a04d0
GET /blogger_img_proxy/ANbyha2GDa_D8QzDxNCDZpkMmJyhBsQzFb8pfKjHQ1maOnmS2okFqZ1wpql2gAZraVhMpi6vC_V5p5fE_XPdCHm4-CkOp1bDOuJxjVN0MK4GXI4kTohqcAfC=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 01:38:51 GMT
server: fife
content-length: 1717
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mediacenter.smugmug.com/photos/i-XmvWRPz/0/L/070713_Asiana_Plane_Crash_10-L.jpg
143.204.54.68200 OK 126 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-XmvWRPz/0/L/070713_Asiana_Plane_Crash_10-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x533, components 3\012- data
Size 126 kB (126504 bytes)
Hash 0b4f79f453452042707773787a75dcb7
c9666bf24c856ef6059cc1980571812f8ffee9c0
930c4c9ad26b9275ebd0dd3684ae7475e257f2e4bb5743ba95f5942776dedffd
GET /photos/i-XmvWRPz/0/L/070713_Asiana_Plane_Crash_10-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 126504
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: C0959FNFIEJwd3N4enXctw==
Date: Tue, 29 Nov 2022 01:38:50 GMT
ETag: "0b4f79f453452042707773787a75dcb7"
Expires: Wed, 29 Nov 2023 01:38:50 GMT
Last-Modified: Sun, 07 Jul 2013 19:59:57 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 126504
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=4cf206a9, d=i-0c218edb69a0a5b46
X-Frame-Options: DENY
X-Request-Id: ac6c06e4
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:50 PST
X-Smug-PH: 0.024
X-Smug-V: 5
X-TTFB: 0.1212
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ps70QAgbjSfBKcpGZsPsSeN1n1wLkNswKZIM170MG4yHme1arVD7WA==
binaryapi.ap.org/13aa12faa8254e5dafe76a05e7264020/460x.jpg
23.13.252.248200 OK 28 kB URL HTTP/1.1 binaryapi.ap.org/13aa12faa8254e5dafe76a05e7264020/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 348x512, components 3\012- data
Hash b3199953634848cc4bb1377e44910de7
d6dd486fc76d2cbbce39d1f7ad71f7abd0aade32
9f5a15e8541bf5e12b2b596ef3e602660953a6ca6b46750de7544d4b0f41455e
GET /13aa12faa8254e5dafe76a05e7264020/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 27667
Last-Modified: Sat, 06 Jul 2013 23:45:21 GMT
Accept-Ranges: bytes
ETag: "b3199953634848cc4bb1377e44910de7"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 512
x-amz-meta-ap-width: 348
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: ec3f220c9737d716360f6a706700d400
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD58-P2
X-Amz-Cf-Id: CEKyjp10TJ5RVLQisGdfEW4seCvN0r8PTeSDae7_FxYKRwt4E1fWvA==
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
binaryapi.ap.org/46f2a14f053743528f7f50c56d3cb8dd/460x.jpg
23.13.252.248200 OK 28 kB URL HTTP/1.1 binaryapi.ap.org/46f2a14f053743528f7f50c56d3cb8dd/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x304, components 3\012- data
Hash 43a4a1dc5c3bef11d86e65251ba767d2
b1139a4114fdebf92b413dc62a860910992f879a
be55adf0bf8323596a46095dc0f6c91940f8dfe1fd5cb495042cc710b65044a7
GET /46f2a14f053743528f7f50c56d3cb8dd/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 14 Jan 2019 20:50:01 GMT
Accept-Ranges: bytes
ETag: "f5f7bdb9007ac46178ce79421be49df4"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 338
x-amz-meta-ap-width: 512
x-amz-meta-ap-binaryversion: 0
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-mediatype: Photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD52-C2
X-Amz-Cf-Id: 00lJoFFCu7aT3bTogS_jxfGziz2PUJBNXOotKijran4CIk0FxnLKhQ==
Content-Length: 27967
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0nyN8nesR1ZHiMdl7Nu-Kdi5DF47k1hiQ_osc5enXvEJWUUFMwgDQ2BCMtDitkbC6fkzMBSG2KUPNlNqvl0MtEYpzuH4rMGS1fkx_QLzQQuGZtR7v9fIY=w72-h72-p-k-no-nu
142.250.74.33404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0nyN8nesR1ZHiMdl7Nu-Kdi5DF47k1hiQ_osc5enXvEJWUUFMwgDQ2BCMtDitkbC6fkzMBSG2KUPNlNqvl0MtEYpzuH4rMGS1fkx_QLzQQuGZtR7v9fIY=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 3a6148e3b4cd67417782f12039ede218
fa19b92ae44e88f00efe238ef87a654d9848b69f
4c5e412ae7059cbd51524d6590171e2da660dd3add1962df65bc8de5bc211834
GET /blogger_img_proxy/ANbyha0nyN8nesR1ZHiMdl7Nu-Kdi5DF47k1hiQ_osc5enXvEJWUUFMwgDQ2BCMtDitkbC6fkzMBSG2KUPNlNqvl0MtEYpzuH4rMGS1fkx_QLzQQuGZtR7v9fIY=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 01:38:51 GMT
server: fife
content-length: 1720
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mediacenter.smugmug.com/photos/i-dNbBt5r/0/L/070713_Asiana_Plane_Crash_02-L.jpg
143.204.54.68200 OK 194 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-dNbBt5r/0/L/070713_Asiana_Plane_Crash_02-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=SAN FRANCISCO, CA - JULY 06: A Boeing 777 airplane lies burned near the runway after it crash-landed at San Francisco Internat, manufacturer=Canon, model=Canon EOS-1D X, xresolution=518, yresolution=526, resolutionunit=2], progressive, precision 8, 800x522, components 3\012- data
Size 194 kB (193983 bytes)
Hash cf7de943774710c008bc58df555512fc
5555eb3c168f0ef16c57ed6dde2ed89499c4e8b9
84aa189e3c8b01f1f5c62d70ac69efd40f591961f7db48111a491f530f15ca55
GET /photos/i-dNbBt5r/0/L/070713_Asiana_Plane_Crash_02-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 193983
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: z33pQ3dHEMAIvFjfVVUS/A==
Date: Tue, 29 Nov 2022 01:38:50 GMT
ETag: "cf7de943774710c008bc58df555512fc"
Expires: Wed, 29 Nov 2023 01:38:50 GMT
Last-Modified: Sun, 07 Jul 2013 19:59:49 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 193983
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=ec58e149, d=i-0cdd7d11a6db95bbb
X-Frame-Options: DENY
X-Request-Id: 39c15443
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:50 PST
X-Smug-PH: 0.0388
X-Smug-V: 5
X-TTFB: 0.1528
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _o2CCtdjOKfTTs3kVRVaUH2VO6or8NaWF7RECdVRrGI-pUfnvC0lGA==
mediacenter.smugmug.com/photos/i-5dcCrvB/0/L/070713_Asiana_Plane_Crash_12-L.jpg
143.204.54.68200 OK 119 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-5dcCrvB/0/L/070713_Asiana_Plane_Crash_12-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x533, components 3\012- data
Size 119 kB (118881 bytes)
Hash bb54b1a737697e1f020c72b3900f4baf
b95ffdeff4b84bb84c60a04f07f66f84e040038f
728c7015000714cafc872040e22ff00dfad307a57e52bfe3b9785ae54749f986
GET /photos/i-5dcCrvB/0/L/070713_Asiana_Plane_Crash_12-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 118881
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: u1Sxpzdpfh8CDHKzkA9Lrw==
Date: Tue, 29 Nov 2022 01:38:50 GMT
ETag: "bb54b1a737697e1f020c72b3900f4baf"
Expires: Wed, 29 Nov 2023 01:38:50 GMT
Last-Modified: Sun, 07 Jul 2013 19:59:57 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 118881
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=e8889be1, d=i-022a21da97b8eb694
X-Frame-Options: DENY
X-Request-Id: 3650475c
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:50 PST
X-Smug-PH: 0.0412
X-Smug-V: 5
X-TTFB: 0.0851
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _R9M1wp_RHdgMKxTg9-qPoBI12S3HiVhZ7FYo05WjhQlkzb4x4JBuQ==
platform.twitter.com/widgets/tweet_button.1372833608.html
93.184.220.66200 OK 24 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.1372833608.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (63229), with no line terminators
Hash aa8ab9a14adaaae2bd35f85b55dc6320
810c90d9df4d8313789a8856486dc6579b6f919c
f876cd2d264ccf674a9fb9c8a3b4aff05d5bbd5e3c2c30f0a05f3a93298775f6
GET /widgets/tweet_button.1372833608.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 667835
Cache-Control: public, max-age=315569260
Content-Type: text/html; charset=utf-8
Date: Tue, 29 Nov 2022 01:38:51 GMT
Etag: "6abc036e4b0bca4c6fd083e804da46cd+gzip"
Last-Modified: Mon, 31 Aug 2015 21:31:19 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 24496
mediacenter.smugmug.com/photos/i-txMsVdw/0/L/asiana-plane-crash-san-francisco-070613-002-L.jpg
143.204.54.68200 OK 222 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-txMsVdw/0/L/asiana-plane-crash-san-francisco-070613-002-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x554, components 3\012- data
Size 222 kB (221541 bytes)
Hash a5cf0470e93c5de541d420378272509b
714e10e2465468e5affd36f004a01d62d43d87b6
e74d25cda57b6ef7f6a7d4145fd276054e7bd18e7ab4954b4a6d966fac4ef9ea
GET /photos/i-txMsVdw/0/L/asiana-plane-crash-san-francisco-070613-002-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 221541
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: pc8EcOk8XeVB1CA3gnJQmw==
Date: Tue, 29 Nov 2022 01:38:50 GMT
ETag: "a5cf0470e93c5de541d420378272509b"
Expires: Wed, 29 Nov 2023 01:38:50 GMT
Last-Modified: Sun, 07 Jul 2013 20:43:30 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 221541
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=ec58e149, d=i-014c8f3ddb5da5e9d
X-Frame-Options: DENY
X-Request-Id: 7c13b2ba
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:50 PST
X-Smug-PH: 0.0232
X-Smug-V: 5
X-TTFB: 0.1107
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5L6XuXm3Y8iYJ_sNBnJxry556dkeNOK9drNOraigcftm6yzEhElmqg==
binaryapi.ap.org/ec3299b44a394547b7a7a880e0d89ab8/460x.jpg
23.13.252.248200 OK 23 kB URL HTTP/1.1 binaryapi.ap.org/ec3299b44a394547b7a7a880e0d89ab8/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x423, components 3\012- data
Hash bc5f1e39b9d2a6733b1780839b78968b
3cce6fdce5d65722f977a9d07f3ddc926648f55d
b78c284168b31e62543523035e3cc8bc9ea203d02ab4ef80854e4223c12472f3
GET /ec3299b44a394547b7a7a880e0d89ab8/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 06 Jul 2013 20:55:56 GMT
Accept-Ranges: bytes
ETag: "cad93d7d1aab408976597550e84ca913"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 471
x-amz-meta-ap-width: 512
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: ed8e0824969cd416360f6a7067003ca6
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD52-C2
X-Amz-Cf-Id: 9xQgctatQA3sGy36IkagiZ52RpX_qzTd1excbX5n5dSN0ZG1CC_kpQ==
Content-Length: 23347
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
1.bp.blogspot.com/-pkAqbAIfmlM/TiJ6tq176DI/AAAAAAAAAug/hoQwvA1drpM/w72-h72-p-k-no-nu/Zarine+Khan+hot+photos.jpg
142.250.74.161200 OK 3.2 kB URL HTTP/1.1 1.bp.blogspot.com/-pkAqbAIfmlM/TiJ6tq176DI/AAAAAAAAAug/hoQwvA1drpM/w72-h72-p-k-no-nu/Zarine+Khan+hot+photos.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 90d7d19ada57746d84958a60c4b986f4
743bbd0d7a38dd3e9c85502c57975f1c6639cf5a
de497e31a92ef1b181c0d913a30400c59dbc8fda306f2209638760ea4cbbd184
GET /-pkAqbAIfmlM/TiJ6tq176DI/AAAAAAAAAug/hoQwvA1drpM/w72-h72-p-k-no-nu/Zarine+Khan+hot+photos.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2e8"
Expires: Wed, 30 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Zarine Khan hot photos.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 29 Nov 2022 01:38:51 GMT
Server: fife
Content-Length: 3248
X-XSS-Protection: 0
www.google.com/uds/solutions/slideshow/gfslideshow.js
142.250.74.164404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/uds/solutions/slideshow/gfslideshow.js
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 717fb58c6b1cdf824dffb387bae569e3
e498a5dfd6e51d99c5a48ce37df669b15a4865c2
4c560b3e2ebb5a130877816d46d0d4f7d2d7596aad0421f8de3739c8933a3d59
GET /uds/solutions/slideshow/gfslideshow.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1599
Date: Tue, 29 Nov 2022 01:38:51 GMT
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46200 OK 26 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
File type ASCII text, with very long lines (560)
Hash 39eb3f0d3ef612c9757fec248a8dd4ec
a1176626d053e01688ce4552ead9f73b814f7727
b7bb937d4cf2ddc012b2c27a936469b1d3c48a3f243d17890148ce98b53f42ae
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 29 Nov 2022 01:38:50 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+586; expires=Thu, 28-Nov-2024 01:38:50 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=962619344860001329&zx=f70ee256-dfe8-4374-a049-1b6e288321fd
142.250.74.105200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=962619344860001329&zx=f70ee256-dfe8-4374-a049-1b6e288321fd
IP 142.250.74.105:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=962619344860001329&zx=f70ee256-dfe8-4374-a049-1b6e288321fd HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 29 Nov 2022 01:38:51 GMT
last-modified: Tue, 29 Nov 2022 01:38:51 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
binaryapi.ap.org/33310ce4ee6b412ab55fa687bff320ef/460x.jpg
23.13.252.248200 OK 21 kB URL HTTP/1.1 binaryapi.ap.org/33310ce4ee6b412ab55fa687bff320ef/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x258, components 3\012- data
Hash dde329f3a67e5fad59603a5ab4bb4014
736b094a41ad59026f57eb02719ded9673ba563b
dea57b015b420ab64de6b898a0052520b435b5b53d46590f54fcdbf5f3ed752c
GET /33310ce4ee6b412ab55fa687bff320ef/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 14 Jan 2019 20:51:43 GMT
Accept-Ranges: bytes
ETag: "4986d3f63985b7cc42deeddb258f1d18"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 287
x-amz-meta-ap-width: 512
x-amz-meta-ap-binaryversion: 0
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-mediatype: Photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD58-P2
X-Amz-Cf-Id: ATHI4gWnt5r14rwwxnmy2WhGilMzaQCMZv5zIZrXgdFOZo4hxqpEjA==
Content-Length: 20909
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
binaryapi.ap.org/16b8ce4cee754c59b6e120da25a6d390/460x.jpg
23.13.252.248200 OK 18 kB URL HTTP/1.1 binaryapi.ap.org/16b8ce4cee754c59b6e120da25a6d390/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x461, components 3\012- data
Hash 5c5cf1dccb0a4df80cd9f06ece652aab
0b6e7d0190811f0280a197ed108e5161958d69de
e85d9d26a8143ae4b768c0cb448f0d7d1ed1af44504cedec8e1f94c26dcabaf4
GET /16b8ce4cee754c59b6e120da25a6d390/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 06 Jul 2013 20:56:47 GMT
Accept-Ranges: bytes
ETag: "2be9e28191d3642db409bc0d31c0deed"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 512
x-amz-meta-ap-width: 510
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: a526cfa6969dd416360f6a7067004eaf
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD58-P2
X-Amz-Cf-Id: 0SABS94u9DtG91uq2G48fib3B2sw0XAVUhgIPV-tsV_ECn7ElbaaAQ==
Content-Length: 17767
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
www.blogger.com/navbar.g?targetBlogID=962619344860001329&blogName=ALL+HUNGAMA&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://guidetoline.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://guidetoline.blogspot.com/&vt=8063079606720582474&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
142.250.74.105200 OK 2.6 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=962619344860001329&blogName=ALL+HUNGAMA&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://guidetoline.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://guidetoline.blogspot.com/&vt=8063079606720582474&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
IP 142.250.74.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash 8d7ef8112342e9f92c814691c90ee74d
0c2f998032d9e413f43fe71b3526b3bd6c8622f1
9c9f6989c2e3eba6bfe9f9b62c9a4c6d81495b7a1ff3f02a88a0c9e14b880d9e
GET /navbar.g?targetBlogID=962619344860001329&blogName=ALL+HUNGAMA&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://guidetoline.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://guidetoline.blogspot.com/&vt=8063079606720582474&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 29 Nov 2022 01:38:51 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2570
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/_a3ZI07KGbwA/TLQnzojRE-I/AAAAAAAADGA/dgbLREiGQiQ/w72-h72-p-k-no-nu/Samantha-hot-stills%281%29.jpg
142.250.74.161200 OK 4.5 kB URL HTTP/1.1 3.bp.blogspot.com/_a3ZI07KGbwA/TLQnzojRE-I/AAAAAAAADGA/dgbLREiGQiQ/w72-h72-p-k-no-nu/Samantha-hot-stills%281%29.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash f8a22fa0cdae55191c71546e6856eb9f
8397d278bdbd3d24fea29ad23a1c8938cbeb7645
8f51212f37fdabf66b76019db0745c3b9fc01cc138261a10d81f9cf7533a80fb
GET /_a3ZI07KGbwA/TLQnzojRE-I/AAAAAAAADGA/dgbLREiGQiQ/w72-h72-p-k-no-nu/Samantha-hot-stills%281%29.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2912"
Expires: Wed, 30 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Samantha-hot-stills(1).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 29 Nov 2022 01:38:51 GMT
Server: fife
Content-Length: 4476
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 7a27ed85dfb3adfa205943c8ced4cd56
12fa8864873725bb6ab0e5ee042570846c55bdb6
830f284a851bc3ad8395871824058e1278f3510982170ddd4722c161e573832c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 01:38:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 09:35:57 GMT
Expires: Sat, 03 Dec 2022 09:35:56 GMT
Etag: "12fa8864873725bb6ab0e5ee042570846c55bdb6"
Cache-Control: max-age=373624,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7717a04d5b8cb509-OSL
extras.mnginteractive.com/live/media/site36/2008/0303/20080303_101049_bullet_gray.gif
96.45.83.7301 Moved Permanently 0 B URL HTTP/1.1 extras.mnginteractive.com/live/media/site36/2008/0303/20080303_101049_bullet_gray.gif
IP 96.45.83.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /live/media/site36/2008/0303/20080303_101049_bullet_gray.gif HTTP/1.1
Host: extras.mnginteractive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 01:38:51 GMT
Content-Length: 0
Connection: close
Location: http://www.medianewsgroup.com/live/media/site36/2008/0303/20080303_101049_bullet_gray.gif
Server: DNSME HTTP Redirection
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4728
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:51 GMT
Last-Modified: Tue, 29 Nov 2022 00:20:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=pub-9361233454292407&plah=guidetoline.blogspot.com
142.250.74.162200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=pub-9361233454292407&plah=guidetoline.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with very long lines (6090)
Size 120 kB (119613 bytes)
Hash 09c30f5fdf76b41bc96100760d58235c
185d45e3edc2eb51efc708a39b54da5736ea6fcf
f5011edb956f54fe9dd77b0730ae8b8d08e9414d8e13e30a10834fb88528a5a0
GET /pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=pub-9361233454292407&plah=guidetoline.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 29 Nov 2022 01:38:51 GMT
expires: Tue, 29 Nov 2022 01:38:51 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 4919938042880988905
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119613
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
binaryapi.ap.org/ffb08d647b614c8d9d6084677395e938/460x.jpg
23.13.252.248200 OK 18 kB URL HTTP/1.1 binaryapi.ap.org/ffb08d647b614c8d9d6084677395e938/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x243, components 3\012- data
Hash 438f1757b91222e70d353ecd5caee79a
9a303919bb41ab18d5eacd675815436754dad9d2
e4c9d879b0218ac24a0a6459057f8809e29d7385fb4ff374262f906f0dea3e42
GET /ffb08d647b614c8d9d6084677395e938/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 06 Jul 2013 22:13:47 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 271
x-amz-meta-ap-width: 512
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: 33b7a20396e4d616360f6a706700be95
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
ETag: "d412c264a98a217a533fc01751102580"
X-Amz-Cf-Pop: ORD58-P2
X-Amz-Cf-Id: eNds0gYCV9ORKBfuSTVkrUloQgF4dQ2v3p6w8LORn0YYdxiR2g0hQQ==
Content-Length: 17493
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
1.bp.blogspot.com/-5RFdkzBWksY/VesHrY1SCeI/AAAAAAAAC48/h49TstJvmyk/s1600-r/033.jpg
142.250.74.161200 OK 576 kB URL HTTP/1.1 1.bp.blogspot.com/-5RFdkzBWksY/VesHrY1SCeI/AAAAAAAAC48/h49TstJvmyk/s1600-r/033.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x1200, components 3\012- data
Size 576 kB (576088 bytes)
Hash 60809719553c8d5666aa3e168abbc345
26659fe2962eb5f3b16d0b889cfa233a038dfb3c
edb648ec2eaa53d3820d1392bbbf054e4b8b9a20f6819908880992e854957b16
GET /-5RFdkzBWksY/VesHrY1SCeI/AAAAAAAAC48/h49TstJvmyk/s1600-r/033.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb90"
Expires: Wed, 30 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="033.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 29 Nov 2022 01:38:51 GMT
Server: fife
Content-Length: 576088
X-XSS-Protection: 0
yllix.com/slider.php?pub=719463§ion=General&ga=g&side=random
185.66.200.224301 Moved Permanently 162 B URL HTTP/2 yllix.com/slider.php?pub=719463§ion=General&ga=g&side=random
IP 185.66.200.224:0
ASN #201702 skHosting.eu s.r.o.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /slider.php?pub=719463§ion=General&ga=g&side=random HTTP/1.1
Host: yllix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 29 Nov 2022 01:38:51 GMT
content-type: text/html
content-length: 162
location: https://yllix.com/warn.php?pub=719463§ion=General&ga=g&side=random
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
binaryapi.ap.org/bf986825fa15463aa7503d86c3bfbae8/460x.jpg
23.13.252.248200 OK 13 kB URL HTTP/1.1 binaryapi.ap.org/bf986825fa15463aa7503d86c3bfbae8/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x358, components 3\012- data
Hash a48116c759790198918e02b9fad1366d
e1ac88d728d193300a9e23175541bf5d843f87b6
804f0020f782adae800cf36c990abd38a8a19aa098530c739e08fbcb10136f5f
GET /bf986825fa15463aa7503d86c3bfbae8/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 06 Jul 2013 20:56:10 GMT
Accept-Ranges: bytes
ETag: "12f75e6cf8f4dc46edb1bab16d5aee13"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 399
x-amz-meta-ap-width: 512
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-id: 2826aacc969dd416360f6a7067009e58
x-amz-meta-ap-mediatype: photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD52-C2
X-Amz-Cf-Id: v2edUx58Qvx3Ds17Fahm_AkHG2Iez5TvMZAA02FpCLsavTiDfmwwNw==
Content-Length: 13263
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
developers.google.com/
142.250.74.14301 Moved Permanently 0 B IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: de2d6db9614abc64a9b2650ff5851e6c
Date: Tue, 29 Nov 2022 01:38:51 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
mediacenter.smugmug.com/photos/i-qtQwzf5/0/L/070713_Asiana_Plane_Crash_14-L.jpg
143.204.54.68200 OK 154 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-qtQwzf5/0/L/070713_Asiana_Plane_Crash_14-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x509, components 3\012- data
Size 154 kB (154509 bytes)
Hash 22a596be2ccd1d34f0ce6326e188f37e
585038b4c3dc0d6f88ba04b46edea14dc03bec21
f0e25921667a121ee0812281f82c4ac48d2d0b83b21a0e2723ed7ae13ea5602a
GET /photos/i-qtQwzf5/0/L/070713_Asiana_Plane_Crash_14-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 154509
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: IqWWvizNHTTwzmMm4Yjzfg==
Date: Tue, 29 Nov 2022 01:38:51 GMT
ETag: "22a596be2ccd1d34f0ce6326e188f37e"
Expires: Wed, 29 Nov 2023 01:38:51 GMT
Last-Modified: Sun, 07 Jul 2013 19:59:59 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 154509
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=ec58e149, d=i-0a6967eec3e0e4d41
X-Frame-Options: DENY
X-Request-Id: 33699e02
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:51 PST
X-Smug-PH: 0.0261
X-Smug-V: 5
X-TTFB: 0.1109
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PTwYvc3dqirX13QL4D7-IXN4AG6cVKqocD5lerH2OIz9nM2KB0ipQQ==
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
binaryapi.ap.org/07d564a81222434588e410ba69f91439/460x.jpg
23.13.252.248200 OK 13 kB URL HTTP/1.1 binaryapi.ap.org/07d564a81222434588e410ba69f91439/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x321, components 3\012- data
Hash 848971b3f9c96c36f4cc7c5152980564
611a9528139bdd91276a8bd1230724ac46081a2d
c82371c10fb4bec1482845c4161c59dff70589f72d0e0cc9a59be2f782a97596
GET /07d564a81222434588e410ba69f91439/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 14 Jan 2019 20:48:19 GMT
Accept-Ranges: bytes
ETag: "e0c0f98d1d1189d45526e37b27a369c6"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 358
x-amz-meta-ap-width: 512
x-amz-meta-ap-binaryversion: 1
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-mediatype: Photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD52-C2
X-Amz-Cf-Id: 6O-zeaaWTHGsrTbeaGJykIqzL3vHaGs1DuJe4K0Uhnhi9KOXwfZHEw==
Content-Length: 12756
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
www.medianewsgroup.com/live/media/site36/2008/0303/20080303_101049_bullet_gray.gif
192.0.66.27301 Moved Permanently 162 B URL HTTP/1.1 www.medianewsgroup.com/live/media/site36/2008/0303/20080303_101049_bullet_gray.gif
IP 192.0.66.27:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /live/media/site36/2008/0303/20080303_101049_bullet_gray.gif HTTP/1.1
Host: www.medianewsgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 01:38:51 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.medianewsgroup.com/live/media/site36/2008/0303/20080303_101049_bullet_gray.gif
d2b9l3u54v5v39.cloudfront.net/css/default.css
54.230.245.149200 OK 1.5 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/default.css
IP 54.230.245.149:0
File type ASCII text, with CRLF line terminators
Hash 8ea20baef891abad5a169261301f1b0d
b983c5b36da773d38fc2d9d56fb1e462080ac0f8
27306e4a14ab04d39e59d9d73d6fac0fca90bbab3da5d9358c0000b9119c90af
GET /css/default.css HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1489
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Mon, 28 Nov 2022 07:35:56 GMT
ETag: "70d0ec1947f4d01:0"
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n_dXf2HYMYXiIUZ6skXPjBfP27wQiFTPRMF7IWJK4a_bPAzFUzZUTA==
Age: 64975
d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
54.230.245.149200 OK 1.2 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
IP 54.230.245.149:0
File type ASCII text, with CRLF line terminators
Hash 263303c015aaddbd3c417327b3b50823
c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb
871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617
GET /activejs/bdv_fsthd.js HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1199
Connection: keep-alive
Date: Mon, 28 Nov 2022 06:13:35 GMT
Last-Modified: Thu, 14 Jan 2021 11:27:17 GMT
Accept-Ranges: bytes
ETag: "977ef3668ead61:0"
Server: Microsoft-IIS/10.0
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UzjlGNcW88iGcgQZDN5zgmeOLS473RFGSPpTqLuE2g7nHTLwZzJLmQ==
Age: 69916
bdv.bidvertiser.com/BidVertiser.dbm?pid=299498&bid=1107747&RD=8742214325389&DIF=1&bd_ref_v=guidetoline.blogspot.com&tref=1&win_name=null&docref=&jsrand=8742214325389&js1loc=-&loctitle=%20ALL%20HUNGAMA%3A%20Pilot%20in%20SF
54.241.51.109200 OK 7.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=299498&bid=1107747&RD=8742214325389&DIF=1&bd_ref_v=guidetoline.blogspot.com&tref=1&win_name=null&docref=&jsrand=8742214325389&js1loc=-&loctitle=%20ALL%20HUNGAMA%3A%20Pilot%20in%20SF
IP 54.241.51.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (405), with CRLF, LF line terminators
Hash 3aff4e29b1ddc57fb8568b1de7dbf7b1
b1a1eedbd4a25bc14552eaf6d613d987e8b30d39
c1b9c90d8e3731855ef62ebc3ac7e8c00b617ff2bfbc337c4de8d9755646656c
GET /BidVertiser.dbm?pid=299498&bid=1107747&RD=8742214325389&DIF=1&bd_ref_v=guidetoline.blogspot.com&tref=1&win_name=null&docref=&jsrand=8742214325389&js1loc=-&loctitle=%20ALL%20HUNGAMA%3A%20Pilot%20in%20SF HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tuesday, 29-Nov-2022 01:38:51 GMT
Cache-Control: no-store
Last-Modified: Monday, 29-Nov-2021 01:38:51 GMT
Set-Cookie: bdv_c11p=244; domain=.bidvertiser.com; path=/; expires=Wed, 30-Nov-2022 01:38:51 GMT
bdv_c11p=1_1_1; domain=.bidvertiser.com; path=/; expires=Wed, 30-Nov-2022 01:38:51 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 4161
CONNECTION: Close
www.facebook.com/plugins/like.php?href=http://photos.denverpost.com/2013/07/06/photos-asiana-airplane-crashes-at-san-francisco-airport/&layout=standard&show_faces=true&width=450&action=recommend&colorscheme=light&height=80
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://photos.denverpost.com/2013/07/06/photos-asiana-airplane-crashes-at-san-francisco-airport/&layout=standard&show_faces=true&width=450&action=recommend&colorscheme=light&height=80
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://photos.denverpost.com/2013/07/06/photos-asiana-airplane-crashes-at-san-francisco-airport/&layout=standard&show_faces=true&width=450&action=recommend&colorscheme=light&height=80 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: ngR5/5R10mvoi66v3lE9AZsioOcJS3PJLftdifgtHhpEl4hhtKLZJtyROBSEg8kcH7FHSQimaYrTXOz6Z3chZA==
content-length: 0
date: Tue, 29 Nov 2022 01:38:51 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 13e032c85dbbd7a95c878848f30d4a9f
8404cebb97d1d2b8cf0340310600800c98741334
0b602fadb5971fb13f1b86aee9f921fcd9bad8b45a9f63c3659b6686b94be435
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 01:38:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 19:25:43 GMT
Expires: Sun, 04 Dec 2022 19:25:42 GMT
Etag: "8404cebb97d1d2b8cf0340310600800c98741334"
Cache-Control: max-age=495410,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7717a04e8a48b51e-OSL
www.kizoa.com/embed-23327981-6503323o1l1
141.94.30.95200 OK 1.2 kB URL HTTP/2 www.kizoa.com/embed-23327981-6503323o1l1
IP 141.94.30.95:0
Hash 0c887d8666bda80da1c698957dd29e51
8554b8f9b6eb56294fff61804b55f681fa536cba
c5843b7190c475260c8864f582baa35b4480e84b20c69b8327cda1c4e096b27b
GET /embed-23327981-6503323o1l1 HTTP/1.1
Host: www.kizoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:38:51 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Tue, 29 Nov 2022 02:38:51 GMT
pragma: cache
cache-control: max-age=3600
x-cache: BYPASS
x-req: slideshow=23327981&keycode=6503323&options=1&loop=1
x-uri: /embed.php
strict-transport-security: max-age=31536000; preload
content-encoding: gzip
X-Firefox-Spdy: h2
3.bp.blogspot.com/-_qaDrYQCK8A/T3BISlwX_XI/AAAAAAAAADU/uy8wd0z-eiw/w72-h72-p-k-no-nu/1zLOHe7eDaVl.jpg
142.250.74.161200 OK 3.7 kB URL HTTP/1.1 3.bp.blogspot.com/-_qaDrYQCK8A/T3BISlwX_XI/AAAAAAAAADU/uy8wd0z-eiw/w72-h72-p-k-no-nu/1zLOHe7eDaVl.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 02248ec378964edc9003300fb5665333
78a7517f8c5b1d0b5e29723f40eda0802df517f1
71b05d5ad0e7b363aa0eec8fe71fe4e0902eb4f7fbfd28b4d6245fbd93ab3916
GET /-_qaDrYQCK8A/T3BISlwX_XI/AAAAAAAAADU/uy8wd0z-eiw/w72-h72-p-k-no-nu/1zLOHe7eDaVl.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v35"
Expires: Wed, 30 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1zLOHe7eDaVl.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 29 Nov 2022 01:38:51 GMT
Server: fife
Content-Length: 3682
X-XSS-Protection: 0
binaryapi.ap.org/fa7362bcf4c84444ad86413436ba10f0/460x.jpg
23.13.252.248200 OK 12 kB URL HTTP/1.1 binaryapi.ap.org/fa7362bcf4c84444ad86413436ba10f0/460x.jpg
IP 23.13.252.248:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x282, components 3\012- data
Hash e8e84664f3cce9ba98f749e50afdb065
3156ebb8b324764a2f8fbb414d3a2cb253f799b6
1fff630d8bcc99c67f24128105844fca077b9908ee039e6a0ccabffc1c28ef6f
GET /fa7362bcf4c84444ad86413436ba10f0/460x.jpg HTTP/1.1
Host: binaryapi.ap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 14 Jan 2019 20:50:04 GMT
Accept-Ranges: bytes
ETag: "237ed8c9b0e5d977793dd46e6834b2b2"
Server: Microsoft-IIS/7.5
x-amz-meta-ap-height: 314
x-amz-meta-ap-width: 512
x-amz-meta-ap-binaryversion: 1
x-amz-meta-ap-format: JPEG Baseline
x-amz-meta-ap-fileextension: jpg
x-amz-meta-ap-mediatype: Photo
x-amz-meta-ap-mimetype: image/jpeg
x-amz-version-id: null
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5, ASP.NET
Access-Control-Allow-Origin: *
X-Amz-Cf-Pop: ORD52-C2
X-Amz-Cf-Id: PfKsaH9Rgu4Nfz5JUP1g0Lo0Ya9sR6PeYGeU9WC5yCgUQeThzx9_dw==
Content-Length: 11613
Expires: Tue, 29 Nov 2022 01:38:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 29 Nov 2022 01:38:51 GMT
Connection: keep-alive
bdv.bidvertiser.com/BidVertiser.dbm?pid=299498%26bid=1107747
54.241.51.109200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=299498%26bid=1107747
IP 54.241.51.109:0
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=299498%26bid=1107747 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
www.medianewsgroup.com/live/media/site36/2008/0303/20080303_101049_bullet_gray.gif
192.0.66.27404 Not Found 146 B URL HTTP/2 www.medianewsgroup.com/live/media/site36/2008/0303/20080303_101049_bullet_gray.gif
IP 192.0.66.27:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /live/media/site36/2008/0303/20080303_101049_bullet_gray.gif HTTP/1.1
Host: www.medianewsgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Tue, 29 Nov 2022 01:38:51 GMT
content-type: text/html
content-length: 146
x-rq: arn1 0 2 9980
age: 0
x-cache: miss
X-Firefox-Spdy: h2
mediacenter.smugmug.com/photos/i-pGdSQNZ/0/L/070713_Asiana_Plane_Crash_25-L.jpg
143.204.54.68200 OK 136 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-pGdSQNZ/0/L/070713_Asiana_Plane_Crash_25-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x534, components 3\012- data
Size 136 kB (135538 bytes)
Hash 9f012e655ce537b6c7cee9490b9fe5b5
19b85728262c9f8517ba127c94c09f5c97a91877
410e56a3df2c62c39753c0a6659d5b4df4fb4a7808d6f6de5366c3111fcea510
GET /photos/i-pGdSQNZ/0/L/070713_Asiana_Plane_Crash_25-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 135538
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: nwEuZVzlN7bHzulJC5/ltQ==
Date: Tue, 29 Nov 2022 01:38:51 GMT
ETag: "9f012e655ce537b6c7cee9490b9fe5b5"
Expires: Wed, 29 Nov 2023 01:38:51 GMT
Last-Modified: Sun, 07 Jul 2013 20:56:27 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 135538
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=ec58e149, d=i-0fc60ad0186406716
X-Frame-Options: DENY
X-Request-Id: 0ede84be
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:51 PST
X-Smug-PH: 0.0236
X-Smug-V: 5
X-TTFB: 0.1915
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yWCsgdy65kk5eZ7Om-JUfWYvLHBTe8XjiK4rC9WJlSIZYFI7Yo-7GA==
mediacenter.smugmug.com/photos/i-4XZTBTs/0/L/asiana-plane-crash-san-francisco-070613-006-L.jpg
143.204.54.68200 OK 112 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-4XZTBTs/0/L/asiana-plane-crash-san-francisco-070613-006-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, manufacturer=Canon, model=Canon EOS 5D Mark III, xresolution=138, yresolution=146, resolutionunit=2, datetime=2013:06:01 12:19:37], progressive, precision 8, 800x492, components 3\012- data
Size 112 kB (112182 bytes)
Hash a24f49460856f523b22e7d2637885fa3
966ac1d76346c59821c452062af8fbb2640fcc0a
a6eaf3e850522948713dbf77152c090730355a3fa32d8bf7f597ccb54095b0ca
GET /photos/i-4XZTBTs/0/L/asiana-plane-crash-san-francisco-070613-006-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 112182
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: ok9JRghW9SOyLn0mN4hfow==
Date: Tue, 29 Nov 2022 01:38:51 GMT
ETag: "a24f49460856f523b22e7d2637885fa3"
Expires: Wed, 29 Nov 2023 01:38:51 GMT
Last-Modified: Sun, 07 Jul 2013 00:21:50 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 112182
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=4cf206a9, d=i-07d298f5686a07a6b
X-Frame-Options: DENY
X-Request-Id: fe49f8e6
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:51 PST
X-Smug-PH: 0.0314
X-Smug-V: 5
X-TTFB: 0.0905
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JNhnLR5eQpCwMGoiIGqmt5s0gnuvoXwesBeYpOGJs6SyCL3F7sMtuw==
mediacenter.smugmug.com/photos/i-W3V3tdd/0/L/070713_Asiana_Plane_Crash_15-L.jpg
143.204.54.68200 OK 183 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-W3V3tdd/0/L/070713_Asiana_Plane_Crash_15-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x533, components 3\012- data
Size 183 kB (182942 bytes)
Hash 75c7dd31894b34b2e0c8549ad633e4f3
d6555daac97a84bac3bd2d6045b7ede139095f45
77f7cfba19a381854e607e0addfd6d04f83b5533cf9edacda63beb072bcdda65
GET /photos/i-W3V3tdd/0/L/070713_Asiana_Plane_Crash_15-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 182942
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: dcfdMYlLNLLgyFSa1jPk8w==
Date: Tue, 29 Nov 2022 01:38:51 GMT
ETag: "75c7dd31894b34b2e0c8549ad633e4f3"
Expires: Wed, 29 Nov 2023 01:38:51 GMT
Last-Modified: Sun, 07 Jul 2013 20:00:00 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 182942
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=ec58e149, d=i-0a6967eec3e0e4d41
X-Frame-Options: DENY
X-Request-Id: a97e5e54
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:51 PST
X-Smug-PH: 0.026
X-Smug-V: 5
X-TTFB: 0.2542
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gZavSzrq837eDy_asLh_wGxrrL4sNz86F3Yh6okWYrJ7fzDOmkYl-w==
s10.histats.com/js15.js
46.105.201.240200 OK 4.4 kB IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11088), with no line terminators
Hash 688a4c6f6b98b3bfb618172e90695341
432a0d43c31e466673d13308db9e1ba5e519619c
becf42e9318b096cf691c11947c601c75b0b5ba2a6421fd2e676f62c646c17c5
GET /js15.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
date: Tue, 29 Nov 2022 01:30:45 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 51544285
etag: W/"980881274"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4405
x-iplb-request-id: 5B5A2A9A:9332_2E69C9F0:0050_638562AB_125126:B20E
x-iplb-instance: 40743
mediacenter.smugmug.com/photos/i-kWh4kXQ/0/L/asiana-plane-crash-san-francisco-070613-012-L.jpg
143.204.54.68200 OK 197 kB URL HTTP/1.1 mediacenter.smugmug.com/photos/i-kWh4kXQ/0/L/asiana-plane-crash-san-francisco-070613-012-L.jpg
IP 143.204.54.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 800x534, components 3\012- data
Size 197 kB (197410 bytes)
Hash 2b9ca18085d61cf776515f4426802d2f
b8222f1878ad5fa512032c75f8c0466e70a663a0
2396ab55d1d303c9c074fb2cc7ddfcc5d2b2dd9cdfc532613e93d7e0475be804
GET /photos/i-kWh4kXQ/0/L/asiana-plane-crash-san-francisco-070613-012-L.jpg HTTP/1.1
Host: mediacenter.smugmug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 197410
Connection: keep-alive
Cache-Control: public, max-age=31536000, must-revalidate
Content-MD5: K5yhgIXWHPd2UV9EJoAtLw==
Date: Tue, 29 Nov 2022 01:38:51 GMT
ETag: "2b9ca18085d61cf776515f4426802d2f"
Expires: Wed, 29 Nov 2023 01:38:51 GMT
Last-Modified: Sun, 07 Jul 2013 00:22:13 GMT
P3P: CP="This is not a P3P policy. We respect your privacy."
Server: nginx
Smug-Content-Length: 197410
Smug-S: 0
Strict-Transport-Security: max-age=31536000
X-Env: a=live, b=photoserve, c=4cf206a9, d=i-002a1a017eda7630c
X-Frame-Options: DENY
X-Request-Id: 9a2bd8ed
X-Response: Buffer
X-Robots-Tag: noarchive, noindex, nosnippet
X-Smug-CT: m
X-Smug-D: Mon, 28 Nov 2022 17:38:51 PST
X-Smug-PH: 0.025
X-Smug-V: 5
X-TTFB: 0.1711
X-TTFB-L: 0
X-UA-Compatible: IE=edge
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1UG6qyz1tFRX7VdMzM3MvBMCObucgR1hRl6Bk5cLalAglJagvqmoQA==
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2-ZJHzTUiCnNbbtARw1Z92GvJ5W7-JJw73_Ajrc4IEH54gLHCQ-P5pLUSqF3jDCVae3YEp_va_pPvRATo23zdPXfJ8yi6xKakFuCUgLJDFa0bxZsh4ogzPplr5Fy6o32Ev7gLA2T4QNERfPrTwPYb6-rRvb4C3sB0y33yvr9MilEDFIyua938FlYfj__U=w72-h72-p-k-no-nu
142.250.74.33404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2-ZJHzTUiCnNbbtARw1Z92GvJ5W7-JJw73_Ajrc4IEH54gLHCQ-P5pLUSqF3jDCVae3YEp_va_pPvRATo23zdPXfJ8yi6xKakFuCUgLJDFa0bxZsh4ogzPplr5Fy6o32Ev7gLA2T4QNERfPrTwPYb6-rRvb4C3sB0y33yvr9MilEDFIyua938FlYfj__U=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 3f7f9d3b13b29f5cc6206cc0d5221222
24ea11076650caa507669f96a375c990cbc8e861
0ab6b191d3658d9da9a33c398cb883a17481b92ed0e7a373a7572e835bd72899
GET /blogger_img_proxy/ANbyha2-ZJHzTUiCnNbbtARw1Z92GvJ5W7-JJw73_Ajrc4IEH54gLHCQ-P5pLUSqF3jDCVae3YEp_va_pPvRATo23zdPXfJ8yi6xKakFuCUgLJDFa0bxZsh4ogzPplr5Fy6o32Ev7gLA2T4QNERfPrTwPYb6-rRvb4C3sB0y33yvr9MilEDFIyua938FlYfj__U=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 01:38:51 GMT
server: fife
content-length: 1792
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 29 Nov 2022 01:38:51 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
ugc.kizoa.app/kpo/23327981_6503323.mp4
141.94.30.95206 Partial Content 12 kB URL HTTP/2 ugc.kizoa.app/kpo/23327981_6503323.mp4
IP 141.94.30.95:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 7e186b3047ee860658358f4c1c3ac9fa
20b314db8bd41a7e6997a3db4c169316c04532ae
dde1fdfac9c57f58bdb4d06a7e5655f790f35fa92f44dbce4e3e4d9467247423
GET /kpo/23327981_6503323.mp4 HTTP/1.1
Host: ugc.kizoa.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.kizoa.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: nginx
date: Tue, 29 Nov 2022 01:38:51 GMT
content-type: video/mp4
content-length: 6653009
last-modified: Thu, 09 Jun 2022 15:23:51 GMT
etag: af63ffad3163cd6a8cc08475a341809c
x-timestamp: 1654788230.57887
x-trans-id: tx16f8d7a9ac2841908c8b8-00638562ab
x-openstack-request-id: tx16f8d7a9ac2841908c8b8-00638562ab
x-iplb-request-id: 8D5E1E5F:6E80_3626E64B:01BB_638562AB_7B3151B:75D0
x-iplb-instance: 12308
expires: Tue, 29 Nov 2022 02:38:51 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000; preload
access-control-allow-origin: *
content-range: bytes 0-6653008/6653009
X-Firefox-Spdy: h2
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 29 Nov 2022 01:38:52 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 29 Nov 2022 01:38:52 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 29 Nov 2022 01:38:52 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 29 Nov 2022 01:38:52 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9214
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 01:38:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9214
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 01:38:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9214
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 01:38:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c808183085a429c53515508678fc7ab2
6567069d9f5199205ba1ca7a937fcb0a52f95d06
c7ca95730cbc97d7c243e05b23520166faefcd2dfe90f36f70fad1f7e4537e4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9162
x-amzn-requestid: f7fb3b99-6f1c-4ab3-9547-a337d54e8c9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVjI8E9poAMFaQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63854bd2-0679b83d1aa3b7c71aa6bf1c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 00:01:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DVS-FTO93p2gjrvMYzKgNjZmrPxmUuiJHWLuZqOMZzJFwEcWJbW35Q==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 00:36:14 GMT
etag: "6567069d9f5199205ba1ca7a937fcb0a52f95d06"
content-type: image/jpeg
age: 3758
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:38:02 GMT
age: 64850
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rmBhEB-x2sOvI7XfEpZQ0-lXEDWZ4los77q017Im-Lwb32ZLA0Zvcg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:45:02 GMT
age: 75230
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae2e2986caa15a90b615147f229b51ec
c6dfd277cdbd057472e6df6ad1a200f50684d442
ec3799922c38ee6394601744ff4b2c405ee44c4718a2b90c104134657f8b480b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9015
x-amzn-requestid: 9f657586-a44e-46f0-8c38-f1bf26142486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVOlEE6ZoAMFUPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852aed-1da2400f4165dd553418f8b9;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:41:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mqdz1NhVCqmSrhYLIF0miDzrBiS82SUU6ZRFzDMllbCwS70hC0rMRQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 13917
etag: "c6dfd277cdbd057472e6df6ad1a200f50684d442"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lzXj01ht9kpuwONgKM0xM0QRu8G9M9oX6rwYzv_Q_sI09Y3-RIVF-A==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:47:05 GMT
age: 78707
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9cd333c474420e235831d96ed881167e
5008d7344dd85ae61a598c17e7baf427def3e25d
2178a96e120661e43d8e8ed0df1fcf500caf4c58db9e1bedaf0706af0a80b286
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3944
x-amzn-requestid: 8a6732c1-72da-4a73-ba51-8533c6a01a9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNmfFgeIAMFjLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385295c-0c807d93277bfb7f6b13c2ee;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:20 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oW4xFfsPp-Jmf28Uc88iZ2jLgtMRjn2gW0orrJ4K201r6Y6OlHkacQ==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:51 GMT
age: 13921
etag: "5008d7344dd85ae61a598c17e7baf427def3e25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
developers.google.com/
142.250.74.14200 OK 13 kB IP 142.250.74.14:0
Hash 66fa3ffacdf753e28ffecfbad1202393
136a2b17417f4b99ed18704e5b326398f9700976
dcbf96f4c419b5e0667758ae3c5c8b80dc5ddc05f42d00e46634fbd470b33765
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 18:10:23 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.1900357236.1669685932; Expires=Thu, 28 Nov 2024 01:38:52 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-WYXiHJwjXrSeeM5XK38eOKsadD8gO/' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: 606e8a97777cd32089f5c75a2aeba528
vary: Accept-Encoding
date: Tue, 29 Nov 2022 01:38:52 GMT
server: Google Frontend
content-length: 25390
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.42200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.42:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 00:44:29 GMT
expires: Tue, 29 Nov 2022 01:44:29 GMT
cache-control: public, max-age=3600
age: 3263
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:38:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main
142.250.74.42200 OK 75 kB URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main
IP 142.250.74.42:0
File type ASCII text, with very long lines (1613)
Hash 110765e1accf41111543c29721c78b52
3eeceb853d592a297162325f20f0420e136c875a
b5fb084ee4491e64fca48643106c0eb338212638caafdad88ff91e0d4198b589
GET /_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75035
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 16:18:10 GMT
expires: Wed, 22 Nov 2023 16:18:10 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 12 Nov 2022 06:10:12 GMT
content-type: text/javascript; charset=UTF-8
age: 552042
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.widgetserver.com/
173.255.194.134200 OK 4.8 kB IP 173.255.194.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (333)
Hash 9e0cbe1017ba8bd2bcbeadfa2d9efa28
e10666b886570b4969771877225da386a9b934f3
98d9950bbf4b1c5c3a174bf9fbdf33b15b72813205870074e03d8042f6892a02
GET / HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Tue, 29 Nov 2022 01:38:53 GMT
content-type: text/html; charset=utf-8
content-length: 4788
vary: Accept-Language
content-language: en
connection: close
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash eb1ec9463bd4f82594f89420f33ec61c
dc6a659e84098d6afc244d09f9ab92cff1696fd7
920a7e74d3612b5bee84590baf81c0d53df2404c4fa22019a4167b42f460a08d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121487
Date: Tue, 29 Nov 2022 01:38:53 GMT
Etag: "63849093-1d7"
Expires: Wed, 30 Nov 2022 11:23:40 GMT
Last-Modified: Mon, 28 Nov 2022 10:42:27 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aqS4t31G9DgZUjb6fv_1Fu-thox4ED-dm5I8UhbrGlY_c5vAKAKl-g==
Age: 2473
cdn.widgetserver.com/mtm/async/.eJxdjMkOwiAQht-FYyXgUWt8FkNhSidhc5guifHdBePJ2_evL7ESilFoIYUhXxs2IpiBgJpYmMuotV_RAeeACdQUsq8ls7I59tmSKz-SidDq1iW1o_PAFWgD6p3-bC0UbjnDwXrhGKQpJaA1jDnpozun49-N4fa8n9VVYjQetNlw_uEOU5GDHr75Rbw_LaREBw:1ozpaH:fBRZF3bKjMvxtsSluNFpNFiq33s/1/
173.255.194.134200 OK 252 B URL HTTP/1.1 cdn.widgetserver.com/mtm/async/.eJxdjMkOwiAQht-FYyXgUWt8FkNhSidhc5guifHdBePJ2_evL7ESilFoIYUhXxs2IpiBgJpYmMuotV_RAeeACdQUsq8ls7I59tmSKz-SidDq1iW1o_PAFWgD6p3-bC0UbjnDwXrhGKQpJaA1jDnpozun49-N4fa8n9VVYjQetNlw_uEOU5GDHr75Rbw_LaREBw:1ozpaH:fBRZF3bKjMvxtsSluNFpNFiq33s/1/
IP 173.255.194.134:0
File type ASCII text, with no line terminators
Hash 638b25bf9299171983ab8bc85a34a249
b971cb9bed875d778586c87cda475eccec354559
b7fb5e3b410b84aff0b00e9e3b48ac3a21d8db0dd4cc963020aa67d3c27165ca
GET /mtm/async/.eJxdjMkOwiAQht-FYyXgUWt8FkNhSidhc5guifHdBePJ2_evL7ESilFoIYUhXxs2IpiBgJpYmMuotV_RAeeACdQUsq8ls7I59tmSKz-SidDq1iW1o_PAFWgD6p3-bC0UbjnDwXrhGKQpJaA1jDnpozun49-N4fa8n9VVYjQetNlw_uEOU5GDHr75Rbw_LaREBw:1ozpaH:fBRZF3bKjMvxtsSluNFpNFiq33s/1/ HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://cdn.widgetserver.com/
Connection: keep-alive
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Tue, 29 Nov 2022 01:38:53 GMT
content-type: text/html; charset=utf-8
content-length: 252
x-mtm-path: 4
x-mtm-prov: 1:4.06;70:0.00
x-mtm-rd: 0.51
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJjZG4ud2lkZ2V0c2VydmVyLmNvbSIsImh0dHA6Ly93d3cxLndpZGdldHNlcnZlci5jb20vP3RtPTEmc3ViaWQ0PTE2Njk2ODU5MzMuMDIwNzk5MDAwMCZLVzE9RXVyb3BlJTIwRGVkaWNhdGVkJTIwU2VydmVycyZLVzI9Tm9yd2F5JTIwRGVkaWNhdGVkJTIwU2VydmVycyZLVzM9UmVnaW9uYWwlMjBEZWRpY2F0ZWQlMjBTZXJ2ZXJzJktXND1Mb2NhbCUyMERlZGljYXRlZCUyMFNlcnZlcnMmS1c1PUN1c3RvbSUyMERlZGljYXRlZCUyMFNlcnZlcnMmc2VhcmNoYm94PTAmYmFja2ZpbGw9MCIsMSwiMjAyMi0xMS0yOSAwMTozODo1MyIsMSwiMTY2OTY4NTkzMy4wMjA3OTkwMDAwIiwxLG51bGwsbnVsbF0:1ozpaH:xZXf8A57gm6V5-_-ifU-zZHrt1c; expires=Tue, 29-Nov-2022 02:38:53 GMT; Max-Age=3600; Path=/
connection: close
4.bp.blogspot.com/-cbSdq9VIyzQ/TpVfueVXIVI/AAAAAAAAAQo/TjMSe1C_Mn8/s1600/Untitled-1.jpg
142.250.74.161200 OK 0 B URL HTTP/1.1 4.bp.blogspot.com/-cbSdq9VIyzQ/TpVfueVXIVI/AAAAAAAAAQo/TjMSe1C_Mn8/s1600/Untitled-1.jpg
IP 142.250.74.161:0
GET /-cbSdq9VIyzQ/TpVfueVXIVI/AAAAAAAAAQo/TjMSe1C_Mn8/s1600/Untitled-1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3c1"
Expires: Wed, 30 Nov 2022 01:38:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Untitled-1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 29 Nov 2022 01:38:51 GMT
Server: fife
Content-Length: 58589
X-XSS-Protection: 0
mybettermb.com/adServe/banners?tid=16976_73856_0&type=slider&size=728x90
108.168.193.189403 Forbidden 0 B URL HTTP/2 mybettermb.com/adServe/banners?tid=16976_73856_0&type=slider&size=728x90
IP 108.168.193.189:0
GET /adServe/banners?tid=16976_73856_0&type=slider&size=728x90 HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Tue, 29 Nov 2022 01:38:52 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-language: en
content-encoding: gzip
X-Firefox-Spdy: h2
www.kizoa.com/js/jquery-1.11.0.min.js
141.94.30.95200 OK 0 B URL HTTP/2 www.kizoa.com/js/jquery-1.11.0.min.js
IP 141.94.30.95:0
GET /js/jquery-1.11.0.min.js HTTP/1.1
Host: www.kizoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kizoa.com/embed-23327981-6503323o1l1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:38:51 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 09 Dec 2021 11:25:45 GMT
vary: Accept-Encoding
etag: W/"61b1e7b9-38672"
expires: Thu, 29 Dec 2022 01:38:51 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=299498&bid=1107747&RD=9212276968122&DIF=1&bd_ref_v=guidetoline.blogspot.com&tref=1&win_name=null&docref=&jsrand=9212276968122&js1loc=-&loctitle=%20ALL%20HUNGAMA%3A%20Pilot%20in%20SF
54.241.51.109200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=299498&bid=1107747&RD=9212276968122&DIF=1&bd_ref_v=guidetoline.blogspot.com&tref=1&win_name=null&docref=&jsrand=9212276968122&js1loc=-&loctitle=%20ALL%20HUNGAMA%3A%20Pilot%20in%20SF
IP 54.241.51.109:0
GET /BidVertiser.dbm?pid=299498&bid=1107747&RD=9212276968122&DIF=1&bd_ref_v=guidetoline.blogspot.com&tref=1&win_name=null&docref=&jsrand=9212276968122&js1loc=-&loctitle=%20ALL%20HUNGAMA%3A%20Pilot%20in%20SF HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://guidetoline.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tuesday, 29-Nov-2022 01:38:52 GMT
Cache-Control: no-store
Last-Modified: Monday, 29-Nov-2021 01:38:52 GMT
Set-Cookie: bdv_c11p=244; domain=.bidvertiser.com; path=/; expires=Wed, 30-Nov-2022 01:38:52 GMT
bdv_c11p=1_1_1; domain=.bidvertiser.com; path=/; expires=Wed, 30-Nov-2022 01:38:52 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 4161
CONNECTION: Close
mybettermb.com/adServe/banners?tid=16976_73856_0&type=slider&size=728x90
108.168.193.189403 Forbidden 0 B URL HTTP/2 mybettermb.com/adServe/banners?tid=16976_73856_0&type=slider&size=728x90
IP 108.168.193.189:0
GET /adServe/banners?tid=16976_73856_0&type=slider&size=728x90 HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Tue, 29 Nov 2022 01:38:51 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-language: en
content-encoding: gzip
X-Firefox-Spdy: h2
js.gumgum.com/services.js
54.230.111.118200 OK 0 B URL HTTP/2 js.gumgum.com/services.js
IP 54.230.111.118:0
GET /services.js HTTP/1.1
Host: js.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 29 Nov 2022 01:38:51 GMT
x-amz-meta-access-control-allow-origin: *
x-amz-meta-version: 3.87.23
cache-control: max-age=7200
x-amz-meta-timing-allow-origin: *
last-modified: Thu, 10 Nov 2022 20:00:01 GMT
x-amz-version-id: 7Cd0T2rqqALlwZ06HhqSOLc5IKhCU0PN
etag: W/"50174c3f9e30d77ac8f219b31b9a7c09"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3nxgxpiCQDmm2nlY3L14vp0WOZolW4_VerVvgNX-AeM6Eqee_gn4pQ==
X-Firefox-Spdy: h2
developers.google.com/
142.250.74.14200 OK 0 B IP 142.250.74.14:0
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://guidetoline.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 18:10:23 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.3815610981.1669685932; Expires=Thu, 28 Nov 2024 01:38:52 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-+9J3ySf72PWmbY7S1uDfmBqvABZYdg' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: 7d31c68d4b4e06a164767ec808fc92c2
vary: Accept-Encoding
date: Tue, 29 Nov 2022 01:38:52 GMT
server: Google Frontend
content-length: 22430
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2