r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16803ffa29e10ee999c43eb4e4acfe92
a5ede865a388fa440f20994b43c417d403e9a493
08de8f6abb622e84d2cb6e88dee8fc7c408147ac43da9c24d4cde510ed36b53a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08DE8F6ABB622E84D2CB6E88DEE8FC7C408147AC43DA9C24D4CDE510ED36B53A"
Last-Modified: Mon, 02 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7778
Expires: Wed, 04 Jan 2023 14:23:41 GMT
Date: Wed, 04 Jan 2023 12:14:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ce8af3d72e7e9af609039abee59c8b87
8e1b16591fbc632df35f15e23da55ee86af31bc3
52edddbda4a3a3b778f61a491b21e6ea439e9d8024189e636b1f37b2dd7226fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52EDDDBDA4A3A3B778F61A491B21E6EA439E9D8024189E636B1F37B2DD7226FC"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15223
Expires: Wed, 04 Jan 2023 16:27:46 GMT
Date: Wed, 04 Jan 2023 12:14:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 225d42543c0190cdb3686bf236533f4f
13a0940800fce078487372b6b3ca614dd1ab6c31
766bbe15eb1642ac39e9b71669fbb44252471c8de5adb555cd1a76db44fbe7bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "766BBE15EB1642AC39E9B71669FBB44252471C8DE5ADB555CD1A76DB44FBE7BC"
Last-Modified: Mon, 02 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4462
Expires: Wed, 04 Jan 2023 13:28:25 GMT
Date: Wed, 04 Jan 2023 12:14:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 04 Jan 2023 11:36:22 GMT
content-type: application/json
age: 2261
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4075tBj096P8EMtA/Co0DV4vi0yDAe44AsFUqUmXcLzKdrbbaJDfEVFAV9O0MKa6JmzpFm88HsfSf5QQhSekjw==
x-amz-request-id: QPS41M4C0JT1T1ZP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 04 Jan 2023 12:01:18 GMT
age: 765
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
kimkardashian-ring.blogspot.com/2011/05/ipod-touch-3g-vs-4g.html
200 OK 21 kB URL HTTP/1.1 kimkardashian-ring.blogspot.com/2011/05/ipod-touch-3g-vs-4g.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (19431)
Hash c5a4b3154992574e06a54c371d3428ab
aacb33e72a92adc8614aa78ea580ced6f2d92193
faa7470b642f01a0d95b897f5473e31bd27ddc65287e07a67c323fe644de4911
GET /2011/05/ipod-touch-3g-vs-4g.html HTTP/1.1
Host: kimkardashian-ring.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 04 Jan 2023 12:14:03 GMT
Date: Wed, 04 Jan 2023 12:14:03 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 13 Dec 2021 08:02:28 GMT
ETag: W/"6032a83887dc148a7893284e66892470e9b949df84577d71c30262aa0c877d63"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 20778
Server: GSE
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 12:14:03 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
kimkardashian-ring.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/1.1 kimkardashian-ring.blogspot.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: kimkardashian-ring.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/2011/05/ipod-touch-3g-vs-4g.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Wed, 04 Jan 2023 12:14:04 GMT
Expires: Wed, 11 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 04 Jan 2023 10:53:45 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
scripts.chitika.net/eminimalls/amm.js
301 Moved Permanently 167 B URL HTTP/1.1 scripts.chitika.net/eminimalls/amm.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://scripts.chitika.net/eminimalls/amm.js
X-Cache: Redirect from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -rG6hm9X2J8Io-jJXn1aCgyBf70q_KF3nonOSqPWOsKKEOg7xgLGxg==
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 722b99de11671a3a0ac0ba485a98e9b5
5a1b37d1d6779761198cd21a90732b64fb1ed3a7
dc1102bab7af24c4e92ec7b9853aa6914fac6b2e73fee1d827f49a0ad4ebbba6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 722b99de11671a3a0ac0ba485a98e9b5
5a1b37d1d6779761198cd21a90732b64fb1ed3a7
dc1102bab7af24c4e92ec7b9853aa6914fac6b2e73fee1d827f49a0ad4ebbba6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 722b99de11671a3a0ac0ba485a98e9b5
5a1b37d1d6779761198cd21a90732b64fb1ed3a7
dc1102bab7af24c4e92ec7b9853aa6914fac6b2e73fee1d827f49a0ad4ebbba6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cc978f770f523766f89ddeb0a0aef2f9
3bd0b9ac2f38c8de947334877b9e3ee8791e68e4
f6753ca226028ae55c347c3a49986b453acb232e6ea20a02030c317c00763450
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/1197256859-widgets.js
200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1197256859-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 15d181d1185f956f34ef9d8cff4af838
41a3dfc3567601d72332b73abadda6031cdf593b
2c8823905cd520208804414a54a064a4f98e315a8b97cca381cfae0fe630b7e1
GET /static/v1/widgets/1197256859-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 01 Jan 2023 03:01:04 GMT
expires: Mon, 01 Jan 2024 03:01:04 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 30 Dec 2022 11:49:36 GMT
content-type: text/javascript
age: 292380
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 15:56:25 GMT
expires: Sun, 31 Dec 2023 15:56:25 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 30 Dec 2022 14:50:06 GMT
content-type: text/css
age: 332259
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Wed, 04 Jan 2023 12:14:04 GMT
expires: Wed, 04 Jan 2023 12:14:04 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 8f5dad11c2d5474bec073597d49134b2
23966c36d847310185472ed5184bed361135f927
59cc8356fd59781818f8d2df7746c654d916cc079d65bae67948a36d3d215676
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130479
Date: Wed, 04 Jan 2023 12:14:04 GMT
Etag: "63b4bd6c-1d7"
Expires: Fri, 06 Jan 2023 00:28:43 GMT
Last-Modified: Tue, 03 Jan 2023 23:42:36 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Nt4qRsZ6qL5hwfOYxhWEfCqousV_wVQloDpESl_gcOWTM8FDpQheGQ==
Age: 2767
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Dec 2022 13:33:13 GMT
expires: Sat, 30 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 30 Dec 2022 06:51:16 GMT
content-type: text/javascript
age: 427251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
phonegs.com/wp-content/uploads/2011/04/7e708_iphone_41lsAFp7fKL.jpg
200 OK 2.1 kB URL HTTP/1.1 phonegs.com/wp-content/uploads/2011/04/7e708_iphone_41lsAFp7fKL.jpg
IP
ASN #200000 Hosting Ukraine LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 77f95a310b80c0f2b9e7e47ba3ec3055
69516ed868284703a316c6e2cc74ccd9dabae194
c514b712c6e637cd1d701e9d9f032eae531df2aa461d2562b664227385b91517
GET /wp-content/uploads/2011/04/7e708_iphone_41lsAFp7fKL.jpg HTTP/1.1
Host: phonegs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-ray: p15931:0.001/fp696:0.000/fpl696:0.000/
Content-Encoding: gzip
ymads.com/banner.php?ad=t1rdrm&u=ahk845&w=728&h=90
301 Moved Permanently 178 B URL HTTP/1.1 ymads.com/banner.php?ad=t1rdrm&u=ahk845&w=728&h=90
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /banner.php?ad=t1rdrm&u=ahk845&w=728&h=90 HTTP/1.1
Host: ymads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Set-Cookie: AWSALB=nR8YAGU/f6tKBnwJooQ1c+pJuUSI98EEGn6Gz3imkz7vM0tYIJd6kbgl0fikf7kwwcYCPSmzD8Gy/i9gnyyHjyAqQddMEBbnzc1OJvMaQPPdpM3yMP6dNejLNz19; Expires=Wed, 11 Jan 2023 12:14:04 GMT; Path=/
AWSALBCORS=nR8YAGU/f6tKBnwJooQ1c+pJuUSI98EEGn6Gz3imkz7vM0tYIJd6kbgl0fikf7kwwcYCPSmzD8Gy/i9gnyyHjyAqQddMEBbnzc1OJvMaQPPdpM3yMP6dNejLNz19; Expires=Wed, 11 Jan 2023 12:14:04 GMT; Path=/; SameSite=None
Server: nginx/1.18.0 (Ubuntu)
Location: https://www.domainmarket.com/buynow/ymads.com
resources.blogblog.com/img/icon18_edit_allbkg.gif
200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 16:35:47 GMT
expires: Sat, 07 Jan 2023 16:35:47 GMT
cache-control: public, max-age=604800
last-modified: Sat, 31 Dec 2022 07:50:06 GMT
content-type: image/gif
age: 329897
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.ad-u.com/ad.php
302 Found 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad.php HTTP/1.1
Host: ad.ad-u.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 302 Found
content-length: 0
date: Wed, 04 Jan 2023 12:14:03 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=ad-u.com
pinoytutorial.com/techtorial/wp-content/uploads/2010/10/limera1n.jpg
301 Moved Permanently 0 B URL HTTP/1.1 pinoytutorial.com/techtorial/wp-content/uploads/2010/10/limera1n.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /techtorial/wp-content/uploads/2010/10/limera1n.jpg HTTP/1.1
Host: pinoytutorial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Wed, 04 Jan 2023 12:14:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 04 Jan 2023 13:14:04 GMT
Location: https://pinoytutorial.com/techtorial/wp-content/uploads/2010/10/limera1n.jpg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fDI6ltfSegHMbSd0NtXzfrNgpSyCSvcBalVse2od8MuQ8SkArANTKy5MPRNtIlj%2BAHfzwCJoP6aU45vm7s%2BzZljKf84dsBFHiOUNQC6ucwLNGivZ%2Bwplxa4LYxL87lU0aiARWg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7843e44dcfdc0b06-OSL
alt-svc: h2=":443"; ma=60
scripts.chitika.net/eminimalls/amm.js
200 OK 0 B URL HTTP/2 scripts.chitika.net/eminimalls/amm.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Fri, 19 Apr 2019 16:37:52 GMT
server: AmazonS3
date: Tue, 03 Jan 2023 23:26:32 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0VJ4DIVDoRL7jUqEwHJfcrXtzBKFsJiSqaTkmWKXBMQoJpJCRCpWxA==
age: 47032
X-Firefox-Spdy: h2
cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
301 Moved Permanently 0 B URL HTTP/1.1 cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2010/10/greenpois0n.png HTTP/1.1
Host: cdn.techpp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Wed, 04 Jan 2023 12:14:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=31536000
Expires: Wed, 04 Jan 2023 13:14:04 GMT
Location: https://cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
CDN: FlyingProxy
CF-Cache-Status: MISS
Server-Timing: cf-q-config;dur=5.0000089686364e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F9xzopbBbICBzLQZBo1sA%2BFnMz4yKM5UuNwXptFlfIjQoe19d6yq9rtZPDimbE3J7WCpdLUJl8DEHUVYSnent98bg3NA0Hz3dEbdeOlm3fF1MK3YIyOKnkfmptACGNonbw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7843e44dc9d1b515-OSL
alt-svc: h2=":443"; ma=60
www.niharsworld.com/wp-content/uploads/2011/04/PwnageTool-4.3.2-iOS-4.3.2-untethered-jailbreak-on-iPhone-4-iPhone-3GS-iPod-Touch-4G-3G-iPad-520x291.png
301 Moved Permanently 239 B URL HTTP/1.1 www.niharsworld.com/wp-content/uploads/2011/04/PwnageTool-4.3.2-iOS-4.3.2-untethered-jailbreak-on-iPhone-4-iPhone-3GS-iPod-Touch-4G-3G-iPad-520x291.png
IP
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dd9a8ca4c70446a68348591bd880b7a1
95c86a1ba9b8854cf4d311fec8584472010825fa
c946ca96b84b0dfb077cc37b2233f93ab082c600b74319273bd7b17cb4d21a18
GET /wp-content/uploads/2011/04/PwnageTool-4.3.2-iOS-4.3.2-untethered-jailbreak-on-iPhone-4-iPhone-3GS-iPod-Touch-4G-3G-iPad-520x291.png HTTP/1.1
Host: www.niharsworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 239
Connection: keep-alive
Cache-Control: s-maxage=0
Location: http://www.srilankaolympic.org/
X-Cache-Status: MISS
www.niharsworld.com/wp-content/uploads/2011/02/Download-PwnageTool-4.2.jpg
301 Moved Permanently 239 B URL HTTP/1.1 www.niharsworld.com/wp-content/uploads/2011/02/Download-PwnageTool-4.2.jpg
IP
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dd9a8ca4c70446a68348591bd880b7a1
95c86a1ba9b8854cf4d311fec8584472010825fa
c946ca96b84b0dfb077cc37b2233f93ab082c600b74319273bd7b17cb4d21a18
GET /wp-content/uploads/2011/02/Download-PwnageTool-4.2.jpg HTTP/1.1
Host: www.niharsworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 239
Connection: keep-alive
Cache-Control: s-maxage=0
Location: http://www.srilankaolympic.org/
X-Cache-Status: MISS
iphoneroot.com/wp-content/uploads/2010/04/comp1.jpg
301 Moved Permanently 162 B URL HTTP/1.1 iphoneroot.com/wp-content/uploads/2010/04/comp1.jpg
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2010/04/comp1.jpg HTTP/1.1
Host: iphoneroot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://iphoneroot.com/wp-content/uploads/2010/04/comp1.jpg
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
301 Moved Permanently 178 B URL HTTP/1.1 www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: www.auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
IP
File type ASCII text, with very long lines (580)
Hash 3e7852e3ac3d1921ddb7302c569bdb8f
85e8bdb23ef407fb3770ec0a9588d85c725930d3
20cd515349665d62191e0c15ea1b9f3b5c4e35d36313d1e7fdc8af83b9663a78
GET /_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57931
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 16:18:12 GMT
expires: Sun, 31 Dec 2023 16:18:12 GMT
cache-control: public, max-age=31536000
age: 330952
last-modified: Tue, 06 Dec 2022 15:21:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Tue, 03 Jan 2023 13:19:55 GMT
Expires: Tue, 17 Jan 2023 13:19:55 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 82449
www.feedcat.net/js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion=
404 Not Found 125 B URL HTTP/1.1 www.feedcat.net/js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 2995357b538ef792ce59b1b7cca539c4
d33d8ce38719b45d0731f075f71593351023318c
aef27e8433e35954afe1798da5bde96145b020160cc2f16b1424425253fb545b
GET /js2/button.js?pub=499565&bmode=b88x25&ilng=en§ion= HTTP/1.1
Host: www.feedcat.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 125
Connection: keep-alive
Server: ip-100-74-2-189.eu-west-2.compute.internal
X-Request-Id: 3e0b0564-77d4-47c9-97b1-e2220fcde37c
cdn.iphoneheat.com/wp-content/uploads/2010/10/greenpois0n-jailbreak-ipod-touch-4g-3g-5.jpg
404 Not Found 4.9 kB URL HTTP/1.1 cdn.iphoneheat.com/wp-content/uploads/2010/10/greenpois0n-jailbreak-ipod-touch-4g-3g-5.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Hash 8851a44db635872408fa8c5daba6bc2b
6870512485574e9874f618565302bc67e33a7d59
8d0616ef9a1ca9e7e01e7195849f9c28fd819492b0672d531e7b28f5be74d2ba
GET /wp-content/uploads/2010/10/greenpois0n-jailbreak-ipod-touch-4g-3g-5.jpg HTTP/1.1
Host: cdn.iphoneheat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lR01mDl8sv170e5m1taNaq8l%2F9yPxlmNoZFsuv2%2FYuqndwMjnXvA9CNmHzEsYSpNqBV7h37z1BfimRGbURjexwyST%2BlQGWjkFw39z8MdjT9MnX1LP%2Bbgyxcm5%2BJBNYGEmD9z4UM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7843e44dc972b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my.blueadvertise.com/__adserver/opt.js
404 Not Found 196 B URL HTTP/1.1 my.blueadvertise.com/__adserver/opt.js
IP
ASN #133618 Trellian Pty. Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert fortinet Malware
GET /__adserver/opt.js HTTP/1.1
Host: my.blueadvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
date: Wed, 04 Jan 2023 12:14:04 GMT
server: Apache/2.4.38 (Debian)
content-length: 196
content-type: text/html; charset=iso-8859-1
connection: close
www.blogtopsites.com/v_109185.gif
200 OK 185 B URL HTTP/1.1 www.blogtopsites.com/v_109185.gif
IP
File type GIF image data, version 89a, 80 x 15\012- data
Hash 5f14c44739c2bd7108c87aecacdb3f34
5316a24cedc1860110609228c4f4f18520758a82
e807830b738c02817b04e7d725a00a0de59aa882a4fefd93795e11957e728a83
GET /v_109185.gif HTTP/1.1
Host: www.blogtopsites.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: image/gif
Content-Length: 185
Connection: keep-alive
Server: Apache
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 722b99de11671a3a0ac0ba485a98e9b5
5a1b37d1d6779761198cd21a90732b64fb1ed3a7
dc1102bab7af24c4e92ec7b9853aa6914fac6b2e73fee1d827f49a0ad4ebbba6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ontoplist.com/images/ontoplist1.jpg?id=4de4c75617d7e
200 OK 1.5 kB URL HTTP/1.1 www.ontoplist.com/images/ontoplist1.jpg?id=4de4c75617d7e
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x15, components 3\012- data
Hash dda3230a0cf65ec41104a213e3e3c7a2
85042dff76d2da1e1b51eac2c05af39bd6538cff
470c5ba103d8363cf816859c235e05f55c7c081616bff2b5def64d915a91fcf6
GET /images/ontoplist1.jpg?id=4de4c75617d7e HTTP/1.1
Host: www.ontoplist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:14:04 GMT
Server: Apache/2.4.54 (Debian)
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 20 Aug 2019 06:56:34 GMT
ETag: "5ab-59086f5002c80"
Accept-Ranges: bytes
Content-Length: 1451
Cache-Control: max-age=2592000
Expires: Fri, 03 Feb 2023 12:14:04 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bd5977f4aa55d3b85eb4f69f5d451e18
09718f75359ff17a91d19fc8686de7154d6d7506
07e8ded9ec36b09fa080939323b4b51995abb0525a8103052eda1c1e76459345
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.prlog.org/10874275-iphone-3gs.jpg
301 Moved Permanently 0 B URL HTTP/1.1 www.prlog.org/10874275-iphone-3gs.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /10874275-iphone-3gs.jpg HTTP/1.1
Host: www.prlog.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Wed, 04 Jan 2023 12:14:04 GMT
Server: Apache
Location: https://www.prlog.org/10874275-iphone-3gs.jpg
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 722b99de11671a3a0ac0ba485a98e9b5
5a1b37d1d6779761198cd21a90732b64fb1ed3a7
dc1102bab7af24c4e92ec7b9853aa6914fac6b2e73fee1d827f49a0ad4ebbba6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
onchee.com/images/1528_ipod_touch_armband.jpg
404 Not Found 1.2 kB URL HTTP/1.1 onchee.com/images/1528_ipod_touch_armband.jpg
IP
Hash c3776914db6b1d4d6fe7139649af7cf9
b0d627b4143deaccf5748562b8696040bdc7b1e5
858c044c2a6360ec8af73d302bfbbfaea025e735b9d5da81b1cfdcaa3a5d2c47
GET /images/1528_ipod_touch_armband.jpg HTTP/1.1
Host: onchee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:04 GMT
Server: Apache
X-Powered-By: PHP/7.4.32
Set-Cookie: OCSESSID=56e485ca158ff5fbc54ec527e1; path=/
language=en-gb; expires=Fri, 03-Feb-2023 12:14:04 GMT; Max-Age=2592000; path=/; domain=onchee.com
currency=USD; expires=Fri, 03-Feb-2023 12:14:04 GMT; Max-Age=2592000; path=/; domain=onchee.com
Upgrade: h2
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=60, max=10000
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 04 Jan 2023 12:08:11 GMT
age: 353
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.blogflare.com/world.png
404 Not Found 1.2 kB URL HTTP/1.1 www.blogflare.com/world.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash aec5f4dbf067da711677a78d64c6e6f5
54f2abdee6b7e668071aec042f8b5e01fe23dce1
b5b8c0bd83b89c643f17fad828fca8049baba18c27f089ff7a21e2f2c793a82b
GET /world.png HTTP/1.1
Host: www.blogflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 26 Jul 2021 12:39:01 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=7200
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r09GvP%2BrN8Aomu37QyLWcPqumuZgf%2BzsIyveeKrJdgXxjKC1xx1KV0HuNlw5xQ4zFdUDKx4ko8M6lu3g3o2iEm%2BgSV%2FRoU7n9BIpjxnIY9JTTbw%2B7oBGIxlHtwO5U17NiuxYXA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7843e44dc9770b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.besthitsnow.com/b1.php?id=billymoon
200 OK 499 B URL HTTP/1.1 www.besthitsnow.com/b1.php?id=billymoon
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (499), with no line terminators
Hash 1744ea2ae3174f6372f2203a05a7f716
a87847c7c950d912e649b8891075fe7e8a226367
a9c408abeddc3dd428831a15a6e1193880ed2ff4d7b4d54d76237853b2091ce6
GET /b1.php?id=billymoon HTTP/1.1
Host: www.besthitsnow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 499
content-type: text/html; charset=utf-8
date: Wed, 04 Jan 2023 12:14:04 GMT
server: nginx
set-cookie: sid=47fe7c48-8c29-11ed-8114-650954029420; path=/; domain=.besthitsnow.com; expires=Mon, 22 Jan 2091 15:28:11 GMT; max-age=2147483647; HttpOnly
www.blogflare.com/flare_19497.gif
404 Not Found 1.2 kB URL HTTP/1.1 www.blogflare.com/flare_19497.gif
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 4cb6533a6271bf7ca7c24479267d1b39
bad5af8b96eddcfa6641edfb39245df789b3d3e1
cde084cb7953176a39470f1c88077f54993cbd979fa13d9c84d008140e0bd4e1
GET /flare_19497.gif HTTP/1.1
Host: www.blogflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 26 Jul 2021 12:39:01 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=7200
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RQVn4GwtXQONTzDd3PxROil0K2fwQBaOS2EhFTLw7Xb0bnQBg5dYW0GO3rX9ta2JotbFKznLrh82c05oiJxESIDOwjDmiLuB7QeygpObeXG9UDVlU8%2BBn%2FUAOIk6z6FDIKDmgA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7843e44dcf7afab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
iphoneroot.com/wp-content/uploads/2010/04/comp1.jpg
200 OK 19 kB URL HTTP/1.1 iphoneroot.com/wp-content/uploads/2010/04/comp1.jpg
IP
ASN #24940 Hetzner Online GmbH
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x525, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash da7a4e8c652ecb924d0433ec0ac2d92a
fa0c5e916d6ad2d077aef060d31b9a1980124a0c
a3b49e6963d1fce420fb9a567b943e908e1be5f6afef211945a6d4dbd67885f9
GET /wp-content/uploads/2010/04/comp1.jpg HTTP/1.1
Host: iphoneroot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: image/webp
Content-Length: 19440
Connection: keep-alive
Last-Modified: Mon, 01 Mar 2021 03:37:23 GMT
ETag: "603c6173-4bf0"
Expires: Sat, 14 Jan 2023 12:14:04 GMT
Cache-Control: max-age=864000
Vary: Accept
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
3.bp.blogspot.com/_r02PFmIjrDU/TSHkH1JFu1I/AAAAAAAAAGc/eua8QJMRkhg/s1600/ipod-touch-flat.jpg
200 OK 217 kB URL HTTP/1.1 3.bp.blogspot.com/_r02PFmIjrDU/TSHkH1JFu1I/AAAAAAAAAGc/eua8QJMRkhg/s1600/ipod-touch-flat.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 800x600, components 3\012- data
Size 217 kB (217058 bytes)
Hash ed6c46994b6f9d03fa2a692de4603dd0
3d03857d166c9098f5aa0ee6082a92baf3f589e2
9e39bc4e9dccb1357ed94d314b575e2f2a75f7121c80f932215946831d45bf15
GET /_r02PFmIjrDU/TSHkH1JFu1I/AAAAAAAAAGc/eua8QJMRkhg/s1600/ipod-touch-flat.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v67"
Expires: Thu, 05 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ipod-touch-flat.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 04 Jan 2023 12:14:04 GMT
Server: fife
Content-Length: 217058
X-XSS-Protection: 0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 65852323d6c7638c3414a7184571c74b
7c0cee2765c32ceb7b08d960a0d18fbee2fe2996
a77d1d7aa62cf98e81a5c6aaae3d379d397fc883b54a2edc3398e507f51b0e76
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A77D1D7AA62CF98E81A5C6AAAE3D379D397FC883B54A2EDC3398E507F51B0E76"
Last-Modified: Sun, 01 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2665
Expires: Wed, 04 Jan 2023 12:58:29 GMT
Date: Wed, 04 Jan 2023 12:14:04 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/4htKmDMsIMk
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/4htKmDMsIMk
IP
Hash 10343a2217f132e6db89500245492dfb
c3188b19ae54270e6472e1e55cf10267930b91be
5ab82f388d4d41ce6f486c3cce6af344848d9f95a6e086f4ec65d2029c6a4f2c
POST /s/gts1p5/4htKmDMsIMk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dailymobile.se/wp-content/uploads/2009/02/mini-microphone-iphone-3g-03.jpg
404 Not Found 28 kB URL HTTP/1.1 dailymobile.se/wp-content/uploads/2009/02/mini-microphone-iphone-3g-03.jpg
IP
ASN #51747 Internet Vikings International AB
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18093), with CRLF, LF line terminators
Hash 46df44b50f0b653cdb4c30ef10be9af4
cc5def6e3734a424a4b9d4f39793fa38deaddf04
2b109d49429552ba9aaa82b5dbf5cf217dad6edba5bbaf1d0baeecf5a79bd748
GET /wp-content/uploads/2009/02/mini-microphone-iphone-3g-03.jpg HTTP/1.1
Host: dailymobile.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:04 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://dailymobile.se/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
4.bp.blogspot.com/-Bc6iPuQTTtw/TVtR_-JFvFI/AAAAAAAABkE/KnUVMKA9ixw/s400/PwnageTool-iOS-4-2-1.png
200 OK 77 kB URL HTTP/1.1 4.bp.blogspot.com/-Bc6iPuQTTtw/TVtR_-JFvFI/AAAAAAAABkE/KnUVMKA9ixw/s400/PwnageTool-iOS-4-2-1.png
IP
File type PNG image data, 400 x 357, 8-bit/color RGBA, non-interlaced\012- data
Hash 8338dab6f8be7b34feb74d016ed2d924
dd864363756ade4829ae56b956899fa18f3824d1
a670bb96e62af5c9b71038787d8d9eefaeee3e1f913fd26eb1f94f47a84f04cc
GET /-Bc6iPuQTTtw/TVtR_-JFvFI/AAAAAAAABkE/KnUVMKA9ixw/s400/PwnageTool-iOS-4-2-1.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v641"
Expires: Thu, 05 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="PwnageTool-iOS-4-2-1.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 04 Jan 2023 12:14:04 GMT
Server: fife
Content-Length: 77361
X-XSS-Protection: 0
www.srilankaolympic.org/
302 Found 3 B IP
ASN #60068 Datacamp Limited
File type Unicode text, UTF-8 text, with no line terminators
Hash ecaa88f7fa0bf610a5a26cf545dcd3aa
57218c316b6921e2cd61027a2387edc31a2d9471
f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5
GET / HTTP/1.1
Host: www.srilankaolympic.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 302 Found
Date: Wed, 04 Jan 2023 12:14:04 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3
Connection: keep-alive
Cache-Control: no-cache
Location: http://www.canli-iddaa-siteleri99.com/
Server: CDN77-Turbo
X-77-NZT: AblMCRTEvYKh
X-77-NZT-Ray: af5856304d14aa628c6db56315c6412e
X-Cache: MISS
X-77-POP: stockholmSE
X-77-Cache: MISS
1.bp.blogspot.com/_gzQepiodqW4/TMJsVS16X6I/AAAAAAAABHw/KfBHqegQKJI/s1600/Apple%2525252BiPod%2525252BTouch.jpg
200 OK 91 kB URL HTTP/1.1 1.bp.blogspot.com/_gzQepiodqW4/TMJsVS16X6I/AAAAAAAABHw/KfBHqegQKJI/s1600/Apple%2525252BiPod%2525252BTouch.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 980x622, components 3\012- data
Hash 7fa6be2a9ba259c3030d9b477682e9d9
8f9140ef5f35c4ba5bb42d0e1237ac6eaf479008
fa1aa1a0f693e6a3725de01c332eaa8683df1e0bfd7a96a175b901b4a81166d6
GET /_gzQepiodqW4/TMJsVS16X6I/AAAAAAAABHw/KfBHqegQKJI/s1600/Apple%2525252BiPod%2525252BTouch.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v47c"
Expires: Thu, 05 Jan 2023 12:14:04 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Apple iPod Touch.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 04 Jan 2023 12:14:04 GMT
Server: fife
Content-Length: 90564
X-XSS-Protection: 0
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cd64f0a90fd9f8e4c415faaf77b537ba
2b136e3228ee5a5f1377cb1904167b2a8b7a0344
14196de88cf62bd52429b3c20c27b264b8769dc7c994330abeac9f53458e8dca
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "14196DE88CF62BD52429B3C20C27B264B8769DC7C994330ABEAC9F53458E8DCA"
Last-Modified: Mon, 02 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Wed, 04 Jan 2023 18:13:22 GMT
Date: Wed, 04 Jan 2023 12:14:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6a72fdc25e88bf4f02292f08fef612a9
0a1f95617a9d9f14684126c7c2202f10d0ff1527
a3ebe669f9a70ac7c338f7cbbf1eeeea320e7c38248d6239726f6f9160998065
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EBE669F9A70AC7C338F7CBBF1EEEEA320E7C38248D6239726F6F9160998065"
Last-Modified: Sun, 01 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4781
Expires: Wed, 04 Jan 2023 13:33:46 GMT
Date: Wed, 04 Jan 2023 12:14:05 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash fe74c226e54f2f382d278b594df930ae
4e4ebc661443f56b74d7c924ddae50bcb107f0af
511f11fe968867447f6d7e5862d8003e3a5fc18bdb62496ea09d140e9a11f53b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3012
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:05 GMT
Etag: "63b541ab-1d7"
Last-Modified: Wed, 04 Jan 2023 11:23:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
301 Moved Permanently 178 B URL HTTP/2 www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: www.auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx/1.18.0 (Ubuntu)
date: Wed, 04 Jan 2023 12:14:05 GMT
content-type: text/html
content-length: 178
location: https://auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
X-Firefox-Spdy: h2
www.srilankaolympic.org/
302 Found 3 B IP
ASN #60068 Datacamp Limited
File type Unicode text, UTF-8 text, with no line terminators
Hash ecaa88f7fa0bf610a5a26cf545dcd3aa
57218c316b6921e2cd61027a2387edc31a2d9471
f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5
GET / HTTP/1.1
Host: www.srilankaolympic.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 302 Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3
Connection: keep-alive
Cache-Control: no-cache
Location: http://www.canli-iddaa-siteleri99.com/
Server: CDN77-Turbo
X-77-NZT: AblMCRR1YUqB
X-77-NZT-Ray: af5856304d14aa628d6db5635fc88406
X-Cache: MISS
X-77-POP: stockholmSE
X-77-Cache: MISS
www.blogger.com/dyn-css/authorization.css?targetBlogID=1250069118049223412&zx=6476019a-70c2-4b77-ac32-c8910d9d4a57
200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=1250069118049223412&zx=6476019a-70c2-4b77-ac32-c8910d9d4a57
IP
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=1250069118049223412&zx=6476019a-70c2-4b77-ac32-c8910d9d4a57 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 04 Jan 2023 12:14:05 GMT
last-modified: Wed, 04 Jan 2023 12:14:05 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
assets.gearlive.com/blogimages/gallery/ipod-touch-2g-iphone-3g/018-ipod-touch-2g-unboxing_medium.JPG
200 OK 125 kB URL HTTP/1.1 assets.gearlive.com/blogimages/gallery/ipod-touch-2g-iphone-3g/018-ipod-touch-2g-unboxing_medium.JPG
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 575x385, components 3\012- data
Size 125 kB (125194 bytes)
Hash 712522d7b278dc3f275663db1b2430aa
a3e1a12c7db0fbc63f0181bccc06787c50014441
f138384ae8961624f54c537c498265f455ac9b6a049c57c2020665a2583288e9
GET /blogimages/gallery/ipod-touch-2g-iphone-3g/018-ipod-touch-2g-unboxing_medium.JPG HTTP/1.1
Host: assets.gearlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: image/jpeg
Content-Length: 125194
Connection: keep-alive
Last-Modified: Thu, 25 Sep 2008 22:07:20 GMT
Cache-Control: max-age=2592000
Expires: Fri, 03 Feb 2023 12:14:04 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bcwDGJ8ZFmqPbj7fHCnBN7vMx6rglh6SmqFRSHH%2B8NbxXk55SHCNRhjrPB%2B1b5wZcyQs%2BAVXFzzsnb3hZ3GsCgcps7vB4ljUyP4QNDB8yB1nLzm%2FPFSmnxKOa%2FzeWhdUdOpKODc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7843e44dc81b1c06-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/s/gts1p5/4htKmDMsIMk
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/4htKmDMsIMk
IP
Hash 10343a2217f132e6db89500245492dfb
c3188b19ae54270e6472e1e55cf10267930b91be
5ab82f388d4d41ce6f486c3cce6af344848d9f95a6e086f4ec65d2029c6a4f2c
POST /s/gts1p5/4htKmDMsIMk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/navbar.g?targetBlogID=1250069118049223412&blogName=Kim+Kardashian+Ring&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://kimkardashian-ring.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://kimkardashian-ring.blogspot.com/&targetPostID=2773666111638886175&blogPostOrPageUrl=http://kimkardashian-ring.blogspot.com/2011/05/ipod-touch-3g-vs-4g.html&vt=8378996307098039925&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__
200 OK 2.6 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=1250069118049223412&blogName=Kim+Kardashian+Ring&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://kimkardashian-ring.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://kimkardashian-ring.blogspot.com/&targetPostID=2773666111638886175&blogPostOrPageUrl=http://kimkardashian-ring.blogspot.com/2011/05/ipod-touch-3g-vs-4g.html&vt=8378996307098039925&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3172)
Hash 8d590c91f511ba884463f369c416577b
c06c1e266b94a80c165341c0348016779e123b86
c5d0618787401f0b6e79f131b9ceb126c5e0a09acf9948395bb43ba23b6d9ffc
GET /navbar.g?targetBlogID=1250069118049223412&blogName=Kim+Kardashian+Ring&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://kimkardashian-ring.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://kimkardashian-ring.blogspot.com/&targetPostID=2773666111638886175&blogPostOrPageUrl=http://kimkardashian-ring.blogspot.com/2011/05/ipod-touch-3g-vs-4g.html&vt=8378996307098039925&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 04 Jan 2023 12:14:05 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2638
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.777seo.com/seo.php?username=billymoon
302 Found 0 B URL HTTP/1.1 www.777seo.com/seo.php?username=billymoon
IP
ASN #133618 Trellian Pty. Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /seo.php?username=billymoon HTTP/1.1
Host: www.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Wed, 04 Jan 2023 12:14:05 GMT
server: Apache/2.4.38 (Debian)
set-cookie: __tad=1672834445.1634872; expires=Sat, 01-Jan-2033 12:14:05 GMT; Max-Age=315360000
location: http://ww38.777seo.com/seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97
content-length: 0
content-type: text/html; charset=UTF-8
connection: close
www.prlog.org/10874275-iphone-3gs.jpg
301 Moved Permanently 0 B URL HTTP/1.1 www.prlog.org/10874275-iphone-3gs.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /10874275-iphone-3gs.jpg HTTP/1.1
Host: www.prlog.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Wed, 04 Jan 2023 12:14:05 GMT
Server: Apache
Set-Cookie: PSID=3d8f65bdb634d1fe58dc6bcfa50d5805; expires=Fri, 03-Feb-2023 12:14:05 GMT; path=/; domain=prlog.org; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Status: 404 Not Found
Location: /10874275.html
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.canli-iddaa-siteleri99.com/
301 Moved Permanently 246 B URL HTTP/1.1 www.canli-iddaa-siteleri99.com/
IP
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ab5a1944ddb7cc9ec340ff6b2a210404
eaeea2ad6cf1e17fcb501d340a32cc22dc548d2d
273a219eaeb7a979e531d664543534262d49eba241188c3f11e952cd05928615
GET / HTTP/1.1
Host: www.canli-iddaa-siteleri99.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 246
Connection: keep-alive
Cache-Control: s-maxage=0
Location: http://www.canli-iddaa-siteleri68.com/
X-Cache-Status: MISS
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N5030dehlL7AyzyMqesiPQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +AjXB0jhJuBwm/HjY9IaSM4An8I=
cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
301 Moved Permanently 915 B URL HTTP/2 cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
IP
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 87f25844d23ac1ee03604e668f5c1797
85d440947d70a78672740ff7e8062f68ce9d99a3
d70c36f2f61b735573caa3dd5a1602e19916701bb88d99ff4527cd2c89fa8b72
GET /wp-content/uploads/2010/10/greenpois0n.png HTTP/1.1
Host: cdn.techpp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 04 Jan 2023 12:14:05 GMT
location: https://cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
cache-control: public, max-age=31536000
expires: Wed, 04 Jan 2023 13:14:04 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
cdn: FlyingProxy
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JaN66yK4HWf4XjIqkiLpB1VEaikYSzE1Iawelc3VtKDgdxPymvnSj74gpSfBb%2FFItyxstbQYHbD4%2FFI6jWqC4mjYwznaP3XN1mW%2FLWmJbfnIX1BRWiKonNIe3xvdXWH0EQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7843e4520f2cb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
301 Moved Permanently 42 kB URL HTTP/2 cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
IP
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash cf304c8b0f2dff4c476be921627337ae
f7e94b032982fa40fcf9dd8510daf5043d5f3755
cd4e46aa493d9aa16065d42ff2319bbaf6920ae203880a7e89578fd0447a7e96
GET /wp-content/uploads/2010/10/greenpois0n.png HTTP/1.1
Host: cdn.techpp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 04 Jan 2023 12:14:05 GMT
location: https://cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
cache-control: public, max-age=31536000
expires: Wed, 04 Jan 2023 13:14:04 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
cdn: FlyingProxy
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gUEaJNy%2BbSm1YL3ZKuSQUI2WM208dN7Y0T3xrpDlmb0KucqgyTGu9CVJMobzeQfdBkESW0emgEW1dEKWIR1K0IpgshU9r6Cf37lcQecJ2OV1TbiBMjKOf%2FQwHbehu0QZRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7843e4527fd5b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dexplatform.com/publishers/adserving/show.php?token=MTExMXw3Mjh4OTB8NzI4fDkw
200 OK 2.1 kB URL HTTP/1.1 dexplatform.com/publishers/adserving/show.php?token=MTExMXw3Mjh4OTB8NzI4fDkw
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (576)
Hash 589fb72df5c8d945706a7846b17082d5
ad468939cbd4ebb43ea94e6959cfbe52670f0e4c
bf29a14e1b714417e8299443017298ed8ee8f4a940e9b674f1e232db947c1e9c
GET /publishers/adserving/show.php?token=MTExMXw3Mjh4OTB8NzI4fDkw HTTP/1.1
Host: dexplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:14:04 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.canli-iddaa-siteleri68.com/
200 OK 6.0 kB URL HTTP/1.1 www.canli-iddaa-siteleri68.com/
IP
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1137)
Hash 4c9550aecc3a093edf2f43079ee25d9a
93c1f10c44c42f2293acee2a186692c8c64fca54
f7c4a40294fe0faee627ec004cdea9d22f8167ce4635fd9329a83935b2e02376
GET / HTTP/1.1
Host: www.canli-iddaa-siteleri68.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: s-maxage=0
X-Cache-Status: MISS
Content-Encoding: gzip
my.blueadvertise.com/__adserver/opt.js
404 Not Found 196 B URL HTTP/1.1 my.blueadvertise.com/__adserver/opt.js
IP
ASN #133618 Trellian Pty. Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert fortinet Malware
GET /__adserver/opt.js HTTP/1.1
Host: my.blueadvertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
date: Wed, 04 Jan 2023 12:14:05 GMT
server: Apache/2.4.38 (Debian)
content-length: 196
content-type: text/html; charset=iso-8859-1
connection: close
www.canli-iddaa-siteleri68.com/
200 OK 6.0 kB URL HTTP/1.1 www.canli-iddaa-siteleri68.com/
IP
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1137)
Hash 4c9550aecc3a093edf2f43079ee25d9a
93c1f10c44c42f2293acee2a186692c8c64fca54
f7c4a40294fe0faee627ec004cdea9d22f8167ce4635fd9329a83935b2e02376
GET / HTTP/1.1
Host: www.canli-iddaa-siteleri68.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: s-maxage=0
X-Cache-Status: MISS
Content-Encoding: gzip
cdn.iphoneheat.com/wp-content/uploads/2010/10/greenpois0n-jailbreak-ipod-touch-4g-3g-5.jpg
404 Not Found 4.9 kB URL HTTP/1.1 cdn.iphoneheat.com/wp-content/uploads/2010/10/greenpois0n-jailbreak-ipod-touch-4g-3g-5.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Hash 35b6d97be1b9324b009f9a281ae9324c
f7159ae754d3e68f9e8ce246208405f66dcc5168
7039fd2c1daa652232c1c658cfbb531a2f23f9678bec44720b901bd2ea086ac5
GET /wp-content/uploads/2010/10/greenpois0n-jailbreak-ipod-touch-4g-3g-5.jpg HTTP/1.1
Host: cdn.iphoneheat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WcnyHj6mSZM6ThfN%2BH9FzHCfT5ZZzhCR90sONzsaSFRBQAS9W2%2Fg9yaqQ4GyIvSgImqmJJ6UQWhEdxQVgpHeSH7Odv9PsX4hA4u3Xh0P0GG5jAnWoD36i5XJ9K%2BJH%2Bna83BC%2FNE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7843e4549c07b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
dexplatform.com/page/bouncy.php?&bpae=GbhGdD0DokxzjkvUaRY5f8CrHhjwidLfG9nDUDu4PPytDQwouf37afnz1LgTVP7DGG5v4qjLSlpl7PNaIdcn6gtkzq8aNuui28GVeTdt8iTVqV2F%2FIQ7JGIAAMPFsggvevxFaHfesa6x3NmazqVZLNinh2ZAi3aIl10qaraOtC0wnGNDQsvq3q8QEsjpgct4JF0wva8H%2Fm8Ukr5C4xSnkWG4EzVpiZ%2Bfli9lZs1AndKjdBzxLLmh4ctyLsMUNKBNb9eZd5nPS8S2qi9OgPTVhMIe4MJZGaX9od3QRnTMEvvjczkF9Xp8MDGGwSaDDMExz7zLUxbFbya8U7DFol4XC2ou4Sj012dLTOJ56eOZUIeVWWHHYeI62hMSUCqUtwt%2FU%2BtUZWT061Nhqkr%2FkeoH8uAdzClh1uUbQivzbR1MpJEP0qNJik8dipOcPPFFqHHO0MITSRL3tFd5OMGbWotSzzQ%3D&redirectType=js&inIframe=true&inPopUp=false
404 Not Found 0 B URL HTTP/1.1 dexplatform.com/page/bouncy.php?&bpae=GbhGdD0DokxzjkvUaRY5f8CrHhjwidLfG9nDUDu4PPytDQwouf37afnz1LgTVP7DGG5v4qjLSlpl7PNaIdcn6gtkzq8aNuui28GVeTdt8iTVqV2F%2FIQ7JGIAAMPFsggvevxFaHfesa6x3NmazqVZLNinh2ZAi3aIl10qaraOtC0wnGNDQsvq3q8QEsjpgct4JF0wva8H%2Fm8Ukr5C4xSnkWG4EzVpiZ%2Bfli9lZs1AndKjdBzxLLmh4ctyLsMUNKBNb9eZd5nPS8S2qi9OgPTVhMIe4MJZGaX9od3QRnTMEvvjczkF9Xp8MDGGwSaDDMExz7zLUxbFbya8U7DFol4XC2ou4Sj012dLTOJ56eOZUIeVWWHHYeI62hMSUCqUtwt%2FU%2BtUZWT061Nhqkr%2FkeoH8uAdzClh1uUbQivzbR1MpJEP0qNJik8dipOcPPFFqHHO0MITSRL3tFd5OMGbWotSzzQ%3D&redirectType=js&inIframe=true&inPopUp=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /page/bouncy.php?&bpae=GbhGdD0DokxzjkvUaRY5f8CrHhjwidLfG9nDUDu4PPytDQwouf37afnz1LgTVP7DGG5v4qjLSlpl7PNaIdcn6gtkzq8aNuui28GVeTdt8iTVqV2F%2FIQ7JGIAAMPFsggvevxFaHfesa6x3NmazqVZLNinh2ZAi3aIl10qaraOtC0wnGNDQsvq3q8QEsjpgct4JF0wva8H%2Fm8Ukr5C4xSnkWG4EzVpiZ%2Bfli9lZs1AndKjdBzxLLmh4ctyLsMUNKBNb9eZd5nPS8S2qi9OgPTVhMIe4MJZGaX9od3QRnTMEvvjczkF9Xp8MDGGwSaDDMExz7zLUxbFbya8U7DFol4XC2ou4Sj012dLTOJ56eOZUIeVWWHHYeI62hMSUCqUtwt%2FU%2BtUZWT061Nhqkr%2FkeoH8uAdzClh1uUbQivzbR1MpJEP0qNJik8dipOcPPFFqHHO0MITSRL3tFd5OMGbWotSzzQ%3D&redirectType=js&inIframe=true&inPopUp=false HTTP/1.1
Host: dexplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dexplatform.com/publishers/adserving/show.php?token=MTExMXw3Mjh4OTB8NzI4fDkw
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
phonegs.com/wp-content/uploads/2011/04/7e708_iphone_41lsAFp7fKL.jpg
200 OK 2.1 kB URL HTTP/1.1 phonegs.com/wp-content/uploads/2011/04/7e708_iphone_41lsAFp7fKL.jpg
IP
ASN #200000 Hosting Ukraine LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 1dcdd9b8b30df0668d788eba767acf32
abc05db5275f8c06bdbc4ad3c3792e52ac2d4b33
14d29db0dabc67f76e9155a421994a405b23045005cf45c88f500ae5e905861a
GET /wp-content/uploads/2011/04/7e708_iphone_41lsAFp7fKL.jpg HTTP/1.1
Host: phonegs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-ray: p15931:0.001/fp696:0.000/fpl696:0.000/
Content-Encoding: gzip
www.prlog.org/10874275.html
404 Not Found 5.5 kB URL HTTP/1.1 www.prlog.org/10874275.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (586)
Hash 1c846c8ca162477efb314d3c7279d560
846964f93647656045f0e86122b95c6632aae001
c2e6e2b8ce418a683dbd409b3141fbc531d93f67c87203f19fff10e9258d174f
GET /10874275.html HTTP/1.1
Host: www.prlog.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Server: Apache
Set-Cookie: PSID=b354642e5da08c08a59364a654799182; expires=Fri, 03-Feb-2023 12:14:05 GMT; path=/; domain=prlog.org; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Status: 404 Not Found
Content-Encoding: gzip
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.srilankaolympic.org/
302 Found 3 B IP
ASN #60068 Datacamp Limited
File type Unicode text, UTF-8 text, with no line terminators
Hash ecaa88f7fa0bf610a5a26cf545dcd3aa
57218c316b6921e2cd61027a2387edc31a2d9471
f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5
GET / HTTP/1.1
Host: www.srilankaolympic.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 302 Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3
Connection: keep-alive
Cache-Control: no-cache
Location: http://www.canli-iddaa-siteleri99.com/
Server: CDN77-Turbo
X-77-NZT: AblMCRSdhQOR
X-77-NZT-Ray: af5856304d14aa628d6db56342cb7023
X-Cache: MISS
X-77-POP: stockholmSE
X-77-Cache: MISS
onchee.com/images/1528_ipod_touch_armband.jpg
404 Not Found 1.2 kB URL HTTP/1.1 onchee.com/images/1528_ipod_touch_armband.jpg
IP
Hash c3776914db6b1d4d6fe7139649af7cf9
b0d627b4143deaccf5748562b8696040bdc7b1e5
858c044c2a6360ec8af73d302bfbbfaea025e735b9d5da81b1cfdcaa3a5d2c47
GET /images/1528_ipod_touch_armband.jpg HTTP/1.1
Host: onchee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Server: Apache
X-Powered-By: PHP/7.4.32
Set-Cookie: OCSESSID=c31ffe06960faba253a5b989f0; path=/
language=en-gb; expires=Fri, 03-Feb-2023 12:14:05 GMT; Max-Age=2592000; path=/; domain=onchee.com
currency=USD; expires=Fri, 03-Feb-2023 12:14:05 GMT; Max-Age=2592000; path=/; domain=onchee.com
Keep-Alive: timeout=60, max=9999
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.blogflare.com/flare_19497.gif
404 Not Found 1.2 kB URL HTTP/1.1 www.blogflare.com/flare_19497.gif
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 5ab04bf7fb7966b90d590403d897b501
6216dda794541f73aa844f04632730c431d80fa9
7f02d292a6b27064106cfaff0c955d290015f64e740aec1bc6c6c9370381c308
GET /flare_19497.gif HTTP/1.1
Host: www.blogflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 26 Jul 2021 12:39:01 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=7200
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FN%2BbycesnnBgIEOfPJ3osfNGG6qCr1TJKAKVQse6luUReXftHKroaydOF1DGKOGL2sjky8fyeSJdflOw5pFWlJpBrfWTI720uUrc3cGPZounBHpBIVdnfozYeCxeHRe6ZIKjiw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7843e455a9b00b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ww38.777seo.com/seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97
200 OK 7.6 kB URL HTTP/1.1 ww38.777seo.com/seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2610)
Hash eed3a2bfcdd6de16e52783763a30e6b3
36ef47173b0b449cfba6a5d42475d072b25dd271
ea2a25cf2b65f0e40a73b3c1098429dc4f4cc3bb5480133dd99d7aa5f9208ffc
GET /seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97 HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket103
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_BNoXPqASfz0qTJSAKkL5p6ODWBwEuEPNkqH/DjzrxamPR9PlwQXbymrZ/Seu4Pn6Nbmg2/Nx20bDXGcUkiP9qw==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
www.blogflare.com/world.png
404 Not Found 1.2 kB URL HTTP/1.1 www.blogflare.com/world.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 902bbb746a8f14911b3f9e47b63ea070
446a04da07efa0e2a8776cccf06fd773b78c1006
2f4206906015f90327e7c57a5026cf98202505fe7e4244d540d166b72f346900
GET /world.png HTTP/1.1
Host: www.blogflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 26 Jul 2021 12:39:01 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=7200
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XHiVNJnJrieAwGPIgVnUnzDEJ8JP5mT%2BqYKrgRR9EqgDE2wqT3c7E49mbQk11ofZXV%2B%2BzR2hOpGPdPd2KhNTmwGRRpuAj%2F3GXhxa3hq9vzlLnag%2F%2FlUS%2BeQFixMLdkfFDVB%2BQw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7843e455addffab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
301 Moved Permanently 279 B URL HTTP/2 cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /wp-content/uploads/2010/10/greenpois0n.png HTTP/1.1
Host: cdn.techpp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 04 Jan 2023 12:14:05 GMT
location: https://cdn.techpp.com/wp-content/uploads/2010/10/greenpois0n.png
cache-control: public, max-age=31536000
expires: Wed, 04 Jan 2023 13:14:04 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
cdn: FlyingProxy
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S5z69lIsTzG9VKf8RQMAylKNRQhdwQ282v9DwreeVMUr7mvmRhVZFp87Doih7B0qY6a1ZgW6nS4yrt9n%2BqP9Qm8zslfDuj2rvEuuPSwzZG6yGk4igsPJz4FhYIIg2EpsDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7843e4518e8eb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dailymobile.se/wp-content/uploads/2009/02/mini-microphone-iphone-3g-03.jpg
404 Not Found 28 kB URL HTTP/1.1 dailymobile.se/wp-content/uploads/2009/02/mini-microphone-iphone-3g-03.jpg
IP
ASN #51747 Internet Vikings International AB
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18093), with CRLF, LF line terminators
Hash 46df44b50f0b653cdb4c30ef10be9af4
cc5def6e3734a424a4b9d4f39793fa38deaddf04
2b109d49429552ba9aaa82b5dbf5cf217dad6edba5bbaf1d0baeecf5a79bd748
GET /wp-content/uploads/2009/02/mini-microphone-iphone-3g-03.jpg HTTP/1.1
Host: dailymobile.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kimkardashian-ring.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 04 Jan 2023 12:14:05 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://dailymobile.se/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.canli-iddaa-siteleri68.com/
200 OK 6.0 kB URL HTTP/1.1 www.canli-iddaa-siteleri68.com/
IP
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1137)
Hash 4c9550aecc3a093edf2f43079ee25d9a
93c1f10c44c42f2293acee2a186692c8c64fca54
f7c4a40294fe0faee627ec004cdea9d22f8167ce4635fd9329a83935b2e02376
GET / HTTP/1.1
Host: www.canli-iddaa-siteleri68.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: s-maxage=0
X-Cache-Status: MISS
Content-Encoding: gzip
auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
404 Not Found 594 B URL HTTP/2 auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP
ASN #24940 Hetzner Online GmbH
Hash 5d3a9fe5939018434fd1a05efa5250cb
9b59975c2882ba8e217a71514a175d77cf8d841d
8dd9bdc1b70c461695f5e56d11d03d29058785df33d7be76df1a4613c25bac01
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Wed, 04 Jan 2023 12:14:05 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D2773666111638886175%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D2773666111638886175%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
302 Found 497 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D2773666111638886175%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D2773666111638886175%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (541)
Hash bd51029ca50aded441c52718fa60f9bb
f8c680ff13fa785c5639d3838d879f753f6c66fe
99a77b2287a4c240bfd95f9314a795d3c70979c32256046dd4ef5d80e16fbc40
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D2773666111638886175%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1250069118049223412%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D2773666111638886175%26origin%3Dhttp://kimkardashian-ring.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 04 Jan 2023 12:14:05 GMT
location: https://www.blogger.com/followers.g?blogID=1250069118049223412&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM5OTk5OTkiByM5OWFhZGQqByMwMDAwMDAyByNhYWRkOTk6ByM5OTk5OTlCByM5OWFhZGRKByM3Nzc3NzdSByM5OWFhZGRaC3RyYW5zcGFyZW50&pageSize=21&postID=2773666111638886175&origin=http%3A%2F%2Fkimkardashian-ring.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-ou0-MHdonmLit0uFBNXYng' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 497
server: GSE
set-cookie: __Host-GAPS=1:cBt5wdL02pyrUa0wNK0l8Ssf0K8Fog:Mgc3upSyCehct4IM;Path=/;Expires=Fri, 03-Jan-2025 12:14:05 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/adsense/domains/caf.js
200 OK 54 kB URL HTTP/1.1 www.google.com/adsense/domains/caf.js
IP
File type ASCII text, with very long lines (1885)
Hash d61d5848e781103065d5bca54bb2f5d3
0c1410cc40187c59ff57497a601bc5a0914b94ba
f07be716e8073ec4f47c14978e5bb3d2ab7905d9f012131dd848e158fb41df78
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Wed, 04 Jan 2023 12:14:05 GMT
Expires: Wed, 04 Jan 2023 12:14:05 GMT
Cache-Control: private, max-age=3600
ETag: "9096543464630205400"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0
c.parkingcrew.net/scripts/sale_form.js
200 OK 761 B URL HTTP/1.1 c.parkingcrew.net/scripts/sale_form.js
IP
Hash 64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3
GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 04 Jan 2023 12:14:05 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes
www.besthitsnow.com/b1.php?ch=1&id=billymoon&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3Mjg0MTY0NCwiaWF0IjoxNjcyODM0NDQ0LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3JoazQ0MThpNmo5Nzc2MDgxZG8ybTEiLCJuYmYiOjE2NzI4MzQ0NDQsInRzIjoxNjcyODM0NDQ0NzgxOTA5fQ.tLuWB8q3hDx4ym1QVfrfDCdBK58Sd1jULYPkeHgIWEE&sid=47fe7c48-8c29-11ed-8114-650954029420
302 Found 11 B URL HTTP/1.1 www.besthitsnow.com/b1.php?ch=1&id=billymoon&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3Mjg0MTY0NCwiaWF0IjoxNjcyODM0NDQ0LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3JoazQ0MThpNmo5Nzc2MDgxZG8ybTEiLCJuYmYiOjE2NzI4MzQ0NDQsInRzIjoxNjcyODM0NDQ0NzgxOTA5fQ.tLuWB8q3hDx4ym1QVfrfDCdBK58Sd1jULYPkeHgIWEE&sid=47fe7c48-8c29-11ed-8114-650954029420
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /b1.php?ch=1&id=billymoon&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3Mjg0MTY0NCwiaWF0IjoxNjcyODM0NDQ0LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3JoazQ0MThpNmo5Nzc2MDgxZG8ybTEiLCJuYmYiOjE2NzI4MzQ0NDQsInRzIjoxNjcyODM0NDQ0NzgxOTA5fQ.tLuWB8q3hDx4ym1QVfrfDCdBK58Sd1jULYPkeHgIWEE&sid=47fe7c48-8c29-11ed-8114-650954029420 HTTP/1.1
Host: www.besthitsnow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.besthitsnow.com/b1.php?id=billymoon
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Wed, 04 Jan 2023 12:14:05 GMT
location: https://r.lnk8j7.com/link/br-js-fraud/gkFdmEevSUyW1GCxQakYWj?u=http%3A%2F%2Fbesthitsnow.com&campaign_id=k9SEaoiiwt8PiqaSSUJ7J9
server: nginx
set-cookie: sid=47fe7c48-8c29-11ed-8114-650954029420; path=/; domain=.besthitsnow.com; expires=Mon, 22 Jan 2091 15:28:13 GMT; max-age=2147483647; HttpOnly
d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/bottom.png
200 OK 3.4 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/bottom.png
IP
File type PNG image data, 459 x 156, 8-bit colormap, non-interlaced\012- data
Hash 8f00618489c9024bc741a161effb2e32
7e3146cfd561806169d6201b01ccbe37a256dfc5
ee13da8e8d4bd49a7fdd595de382a3c7dbfef6f8555aeca5292c8c80da75f355
GET /themes/cleanPeppermintBlack_657d9013/img/bottom.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3359
Connection: keep-alive
Server: nginx
Date: Tue, 03 Jan 2023 18:04:44 GMT
Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT
Accept-Ranges: bytes
ETag: "62b4441b-d1f"
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Za5pIal0JJbEAJ5eht_9KIoLVgHMUT2UgteBtFez1udnao0DLvNoow==
Age: 65362
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bd5977f4aa55d3b85eb4f69f5d451e18
09718f75359ff17a91d19fc8686de7154d6d7506
07e8ded9ec36b09fa080939323b4b51995abb0525a8103052eda1c1e76459345
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ww38.777seo.com/seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97&_xafvr=NDUzM2RkNzdmZTM4ZjdjYTgwYzIwZDZiN2M2ZDQwMzY3YmViZjc5ZSw2M2I1NmQ4ZGE1MTY1
200 OK 2.5 kB URL HTTP/1.1 ww38.777seo.com/seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97&_xafvr=NDUzM2RkNzdmZTM4ZjdjYTgwYzIwZDZiN2M2ZDQwMzY3YmViZjc5ZSw2M2I1NmQ4ZGE1MTY1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash e37d9a287fc99cd74b6e92e59d91bd76
0d1c2fcf8bd811445fec10eeab0730e66582c8e2
175440948751cb48dda722caca0b3e262ad56d0edc1829f78ed2651ab4e6d67a
GET /seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97&_xafvr=NDUzM2RkNzdmZTM4ZjdjYTgwYzIwZDZiN2M2ZDQwMzY3YmViZjc5ZSw2M2I1NmQ4ZGE1MTY1 HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:14:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_yahoo
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
c.parkingcrew.net/scripts/sale_form.js
200 OK 761 B URL HTTP/1.1 c.parkingcrew.net/scripts/sale_form.js
IP
Hash 64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3
GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 04 Jan 2023 12:14:06 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8421
Expires: Wed, 04 Jan 2023 14:34:27 GMT
Date: Wed, 04 Jan 2023 12:14:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8421
Expires: Wed, 04 Jan 2023 14:34:27 GMT
Date: Wed, 04 Jan 2023 12:14:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8421
Expires: Wed, 04 Jan 2023 14:34:27 GMT
Date: Wed, 04 Jan 2023 12:14:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8421
Expires: Wed, 04 Jan 2023 14:34:27 GMT
Date: Wed, 04 Jan 2023 12:14:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8421
Expires: Wed, 04 Jan 2023 14:34:27 GMT
Date: Wed, 04 Jan 2023 12:14:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af78916e285d0f6c5c5a5ff33894e108
96df0d8c10c666811cfeb98187ca93e65480c2ff
7bcb20dc641e46d033dee76b3d92b701b31aecfbf88241a5a95dfdc1c5e95885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5018
x-amzn-requestid: 7a68cfb1-dedd-4f08-8d99-4678c1087422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL3HtFHkoAMFwYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b49efd-7880e5f93c99cc794f9a03bb;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:32:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MvV5dXthUr0Qo499_5eG6Z_yW0gmflen3kRBrse7ngQjUgOVA0OMvg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:50:49 GMT
age: 51797
etag: "96df0d8c10c666811cfeb98187ca93e65480c2ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50966eaa-29cb-4706-8bda-5f13662a8ef8.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50966eaa-29cb-4706-8bda-5f13662a8ef8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a73b5d924c7b0bcd92d0854d7904769e
468e0acd0a0cd5539ee8a274a0fb4a2af8bcb83f
27c638c7e32368549faff0bf39662c606c17f36a4c5552207a52cc2a9fff02f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50966eaa-29cb-4706-8bda-5f13662a8ef8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6447
x-amzn-requestid: d809af38-e1e7-445b-a605-1182ee70e183
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d42LGEbcIAMF4Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad03e0-7b724db22250c9c3111121a9;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 03:05:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ziLxrkcXjzAPcu8-fn846qUw3KM2ZUpzPDl7JaxM8AGPgwPz-vi6rw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 07:10:31 GMT
age: 18215
etag: "468e0acd0a0cd5539ee8a274a0fb4a2af8bcb83f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp
200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f7ef195ef59caf6b47f13ceae04987f
dbff30aac035b502e27a3a538dbdfd475d3fc1d4
b31c198d6b76827201a870da6f9fe9b28c2cffe0d3f7f3d8e0530223ea8fc9d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8148
x-amzn-requestid: 7712cf7e-ea08-47da-876a-ba70c723b68b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL33cHXsIAMFhhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4a02f-3c965abb517a33ce31cbdf4c;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:37:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJ4e7NUOg62KQDiD04fLCiSoQgBO_AQGw6mrIYbqcgdrylEMwoDQUA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:50:17 GMT
age: 51829
etag: "dbff30aac035b502e27a3a538dbdfd475d3fc1d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb033e4a3035a49677a810f764021597
a76b2ab1c4b33be2244cc4e81ee56b95d9ddc860
fa816b99c77b4c1ac27153355574d7a4fbdc1a43ac8417bdfd45004fb54b878a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6861
x-amzn-requestid: eb43b3e5-316e-4fa0-b6a7-696e747a4e6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL3IuGQFoAMFwbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b49f04-3d752ea257c839dc59e5b803;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:32:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WrCm8Xxp2Rt3nAx0N3XN0KAetKaWuoPyN2s9FmYo1XDJ2YI4g9TTEQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 22:10:14 GMT
age: 50632
etag: "a76b2ab1c4b33be2244cc4e81ee56b95d9ddc860"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V8_4JXT2EDqqzVxBjZK7SUVVS9Pez_EbpGP8BCMX0FrS2x2srUr2Ug==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 02:06:31 GMT
age: 36455
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 359f30e64bec00d0a01acd69a08b684d
ac965c8642c4d1e47713965060fa2fc8f19088b1
fff1b001462468cc953092a2312650c03f307e95c40e2c6bb7356e2a8b9b0283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11877
x-amzn-requestid: 884b9243-6a8a-4434-9b2a-e5eff84d4e99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL33bFnDoAMFpoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4a02f-3f7043ae29d21e010ddc1ff9;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:37:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WcUVY1LHWCEWWyJZEhS8M5tlXhx5WDnIr9RmxLMvqIilnREfwORJew==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 22:12:53 GMT
age: 50473
etag: "ac965c8642c4d1e47713965060fa2fc8f19088b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ww38.777seo.com/favicon.ico
200 OK 0 B URL HTTP/1.1 ww38.777seo.com/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/seo.php?username=billymoon&subid1=20230104-2314-0530-9cd3-c68770d66a97&_xafvr=NDUzM2RkNzdmZTM4ZjdjYTgwYzIwZDZiN2M2ZDQwMzY3YmViZjc5ZSw2M2I1NmQ4ZGE1MTY1
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:14:06 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash a2522c863954c0145c0c84daf3f9a4cc
82cf7c35d37d664de9dd7e3beaa4d7f0b3247f86
ac556884e00cebdb34067ea4b18af3882cd15a9cf28e2f6caaa4df304a193f87
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 04 Jan 2023 12:14:06 GMT
Etag: "63b4b68c-1d7"
Last-Modified: Wed, 04 Jan 2023 11:15:11 GMT
Server: ECS (dcb/7FA8)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SCENJIaMWt76rwBNoZerW6T6YfOtE74fE_m2zo82RhAGiKB7AQYhJg==
Age: 3535
brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
200 OK 11 kB URL HTTP/2 brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1924)
Hash c65e542940c64d945aa939cf504e33df
a4256b6579b1dc6e8cccb92cb3b3393a6beda568
dbf2608bee4445a28a947d549a8c12d395cda327378ea55944978ddfa85b5109
GET /lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1 HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww38.777seo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 12:14:07 GMT
content-type: text/html;charset=UTF-8
content-length: 10723
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2de4d7e51964d03dfa8f0c6e3979bee2
e513e915c70c92b05bb5d2d3db32cc1542301634
a0f8c063c6d999641753296981e10d9cafb341efe8a8578160a85260fd5fa08e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Poppins:300
200 OK 870 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:300
IP
Hash 030c1a5a52115ad5d6e3b400ed536ad8
ee1117b7de3b643c32559dbb62e10840c1d853dd
90f6e202e36d2b25a00b91965e7d1398e9b3186e7c59626fc68ee3586ada8681
GET /css?family=Poppins:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 04 Jan 2023 12:14:07 GMT
date: Wed, 04 Jan 2023 12:14:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
brigi-jar.com/style.css
200 OK 6.0 kB IP
Hash 2eb024ad11ef5f2e503bfb60117c25d8
235b5ca1205cc2ca3d0b8e4f98ce022512b05c0f
d8efc1d8e1100baf07f4105119fde6f8fe760a9efebf189adc5d9b3dfccc9e0a
GET /style.css HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 12:14:07 GMT
content-type: text/css
content-length: 5981
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 16 Dec 2022 08:31:10 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
brigi-jar.com/main.js
200 OK 480 B IP
Hash 91558066fecbfc1f6f77842f6aa85a6c
6bb5c5f2cb4efaf30a8ab810e1b453dcb4df108e
efa0d78cbfa66831e490b26d1bb55b14f6c9f8f3a04b1d08403947abd25908ed
Analyzer Verdict Alert fortinet Malware
GET /main.js HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 12:14:07 GMT
content-type: application/javascript
content-length: 480
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 16 Dec 2022 08:31:10 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brigi-jar.com/empty.gif
200 OK 434 B IP
File type gzip compressed data, max compression\012- data
Hash 699207d91d9eb868f80562981231e135
43e0999a4077fb8dcaa3ea13d93577e41d4005a5
1932b3af91a1b4b3ba38d4cc1164fe567ab8e4d860bb4a1a3b30d717ceae243a
GET /empty.gif HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 12:14:07 GMT
content-type: image/gif
content-length: 42
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 16 Dec 2022 08:31:10 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
200 OK 8.2 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
File type gzip compressed data, max compression\012- data
Hash 5c298f1563a3daf0901b0caedffd30fe
42aeefcb01cff04e65fb57ead0c98f240d303f59
7586f2286a2ca1802951681f2e0b7493037031c8d149bc65cfeb0d6d06ccc46e
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brigi-jar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Dec 2022 13:33:11 GMT
expires: Sat, 30 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
age: 427257
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 12:14:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 025c81b928e95cd6d2d41fcf39eddc47
7f66504de0e639229aac3bfae20702f8aa3a972c
2c4e31fc95dbf55da83179ac583161379f249daafd4e99909f270375fdad1336
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=132725
Date: Wed, 04 Jan 2023 12:14:08 GMT
Etag: "63b4bd80-1d7"
Expires: Fri, 06 Jan 2023 01:06:13 GMT
Last-Modified: Tue, 03 Jan 2023 23:42:56 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2K90u9t3ge7uyXRSfxitsuBmzKhef6AjDl-P3cP0oeXZsOYp6wd3Og==
Age: 4997
assetscdn.com/img/arrows.png
200 OK 24 kB URL HTTP/2 assetscdn.com/img/arrows.png
IP
File type PNG image data, 1500 x 584, 8-bit/color RGBA, non-interlaced\012- data
Hash c97abaaf2fb3de553aa0531e97dff187
155d7ac68e4f3d8ba8cfac4c7a5c060b3f161483
c006478400bae991f05dde9341cf45cdf392cb06688eb8a58589eb993d376379
GET /img/arrows.png HTTP/1.1
Host: assetscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 24415
date: Thu, 04 Aug 2022 10:10:09 GMT
last-modified: Thu, 04 Aug 2022 10:09:47 GMT
etag: "c97abaaf2fb3de553aa0531e97dff187"
cache-control: public, max-age=31556926
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zYJZq1BeY4U7PjrdQ3XNwE8UAiJIO3SXIr3vQZ0RIJyV6M4iT30r9Q==
age: 13226640
X-Firefox-Spdy: h2
auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
404 Not Found 0 B URL HTTP/2 auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP
ASN #24940 Hetzner Online GmbH
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Wed, 04 Jan 2023 12:14:05 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
www.domainmarket.com/buynow/ymads.com
200 OK 0 B URL HTTP/2 www.domainmarket.com/buynow/ymads.com
IP
GET /buynow/ymads.com HTTP/1.1
Host: www.domainmarket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 12:14:04 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=172800
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Wed, 04 Jan 2023 01:54:50 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xPQ1LN%2BMHRbcNjnU6i4XRQOImwBvvaipjsTOhUurRtKh752Gf4NwXhMKi0zBy2NWAe0rlRnQI2reWxjC5GwGfXoMx5J9JT8DvUitEgJNZdqoPFh6ZLB9vQnGqVOilDClqXYqU0AR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7843e44f9c24b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hugedomains.com/domain_profile.cfm?d=ad-u.com
200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=ad-u.com
IP
GET /domain_profile.cfm?d=ad-u.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kimkardashian-ring.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 12:14:04 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Sat, 30-Dec-2023 12:14:04 GMT; path=/
site_version=HDv3; expires=Sat, 30-Dec-2023 12:14:04 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FgTA1UsM7SR4K2rG2XJkiT9xSlihFEBRHe4lzaHFd%2FkE7EVqsXZb7uyAphdxVhBcv98D9UQUDy%2FVzb8Dfl%2FHqul%2Bqt%2BYnF2b30sy2N43vIJKhhFFNnDEz2Xu%2FEr%2Bx20eccMEtrM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7843e44f8d590b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
172.217.21.161
92.204.236.1
95.217.198.59
192.121.191.142
93.184.220.29
185.53.178.30
104.21.2.106
188.114.97.1
23.36.76.226
103.224.182.251
95.211.219.67
185.76.9.24
195.8.222.229
185.104.45.28