Report - aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html

Report Overview

Submitted URL
aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html
IP
142.250.74.1
ASN
#15169 GOOGLE
Submitted
2023-01-29 02:45:10
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
scripts.chitika.net	811087	2012-05-22T10:29:28Z	2023-03-13T06:02:18Z	709 B	1.1 kB	54.230.111.6
ww38.777seo.com	unknown	2019-05-06T09:51:32Z	2023-03-10T13:49:27Z	1.6 kB	12 kB	75.2.11.242
c.parkingcrew.net	70582	2017-01-29T20:17:16Z	2023-03-13T05:45:41Z	582 B	2.0 kB	185.53.178.30
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.214.111.16
3.bp.blogspot.com	11048	2012-05-21T18:26:21Z	2023-03-13T08:11:58Z	4.3 kB	216 kB	142.250.74.161
ocsp.usertrust.com	899	2012-05-21T17:43:18Z	2023-03-13T08:38:38Z	342 B	1.0 kB	172.64.155.188
aliceinwonderlandchallenge.blogspot.com	unknown	2015-04-13T12:02:07Z	2023-01-21T04:28:10Z	1.2 kB	20 kB	142.250.74.1
blogergadgets.googlecode.com	unknown	2013-05-10T03:39:27Z	2023-03-13T08:04:33Z	720 B	3.5 kB	64.233.165.82
1.bp.blogspot.com	8403	2012-05-21T15:44:19Z	2023-03-13T08:43:54Z	2.7 kB	123 kB	142.250.74.161
pagead2.googlesyndication.com	101	2021-02-20T16:52:05Z	2023-03-13T08:39:15Z	334 B	656 B	142.250.74.130
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.7 kB	5.6 kB	142.250.74.131
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	2.0 kB	54.230.245.100
apis.google.com	105	2013-05-06T22:20:21Z	2023-03-13T05:09:32Z	946 B	84 kB	142.250.74.46
cru.cahe.wsu.edu	unknown	2012-07-09T09:32:23Z	2023-02-21T07:25:40Z	357 B	454 B	134.121.193.37
brigi-jar.com	unknown	2022-03-03T03:57:10Z	2023-03-09T17:18:59Z	1.4 kB	18 kB	44.195.142.43
www.blogger.com	8975	2012-05-22T09:35:03Z	2023-03-13T05:09:21Z	2.4 kB	169 kB	216.58.207.233
4.bp.blogspot.com	11215	2012-05-21T15:44:19Z	2023-03-13T08:29:10Z	4.4 kB	469 kB	142.250.74.161
d38psrni17bvxu.cloudfront.net	unknown	2022-09-22T18:48:38Z	2023-03-13T08:42:29Z	356 B	3.8 kB	54.230.245.138
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.77.32
www.trafficrevenue.net	unknown	2012-05-22T08:54:22Z	2023-03-09T19:50:16Z	328 B	281 B	3.64.163.50
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-13T08:10:58Z	350 B	984 B	54.230.80.227
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	1.6 kB	28 kB	142.250.74.106
ecommerce.cahnrs.wsu.edu	unknown	2014-11-26T16:36:24Z	2023-02-21T07:25:41Z	445 B	1.4 kB	134.121.193.37
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	480 B	8.7 kB	142.250.74.35
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-13T08:37:09Z	333 B	33 kB	142.250.74.106
2.bp.blogspot.com	11071	2012-05-21T15:44:19Z	2023-03-13T08:52:03Z	6.7 kB	832 kB	142.250.74.161
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.9 kB	66 kB	34.120.237.76
www.777seo.com	unknown	2012-05-31T15:20:17Z	2023-03-10T13:49:14Z	442 B	380 B	103.224.182.251
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	290 B	55 kB	142.250.74.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-29	medium	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	Malware
2023-01-29	medium	aliceinwonderlandchallenge.blogspot.com/js/cookienotice.js	Malware
2023-01-29	medium	brigi-jar.com/main.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (36)

	URL	Size	First Seen	Last Seen
	ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js	92 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:14 Last Seen2024-04-26 04:32:37 Times Seen7032 Hash a1a8cb16a060f6280a767187fd22e037 7622c9ac2335be6dcd3ab8b47132e94089cef931 d16d07a0353405fcec95f7efc50a2621bc7425f9a5e8895078396fb0dc460c4f Loading...

	www.blogger.com/static/v1/widgets/1253685842-widgets.js	156 kB	2023-03-13	2023-03-13
Pretty URL www.blogger.com/static/v1/widgets/1253685842-widgets.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:40:46 Last Seen2023-03-13 13:18:36 Times Seen1 Hash 282c3db331d4d3d06779b0b8a60ef7c2 c0450142786dc1ce0f3875608b38591ff7eaaf1b 6c3f04bab4d89e7ea271ecb6ffd98b1fb47634d30cc10aa52169c4d2bdefce77 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	719 B	2023-03-07	2023-11-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:43 Last Seen2023-11-27 12:23:19 Times Seen11 Hash bb826944a9b7ad72668680fb4bffd1d5 8d9be546630f1e7fa1d1e4eee79a0e4e51092a85 924fd524dbceb0681a39b5736b91973e172b18372e0eea67a35f409acdd0c23f Loading...

	scripts.chitika.net/eminimalls/amm.js	0 B	2023-03-07	2024-04-27
Pretty URL scripts.chitika.net/eminimalls/amm.js IP 54.230.111.6 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 05:03:59 Times Seen37111412 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51	746 B	2023-03-13	2023-03-13
Pretty URL ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51 IP 75.2.11.242 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:35:01 Last Seen2023-03-13 10:35:01 Times Seen1 Hash 9f4ba477e7d27f8720da67e9a6ced676 3af43a08b52b4ad91b50f8048fd169e9b82f77bc 89e5490e7afa0f238c8d8c6ca389492eeff6bdd473294b1cc72c0de8c0686075 Loading...

	ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51&_xafvr=NDBlODM4ZDRlM2EyMDQ3NWUzZjQxNDg2ZmM4ODIxMjAzZDdiYjA5MSw2M2Q1ZGRhZDgyMjA2	164 B	2023-03-08	2023-04-05
Pretty URL ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51&_xafvr=NDBlODM4ZDRlM2EyMDQ3NWUzZjQxNDg2ZmM4ODIxMjAzZDdiYjA5MSw2M2Q1ZGRhZDgyMjA2 IP 75.2.11.242 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:32:51 Last Seen2023-04-05 02:10:11 Times Seen168 Hash a721fadebac58116f06d5f8f84bcfe5a 413588bc107bd1be0cbd14345fb68c9b8ba14b38 912e5797a8e5f63052f4171a842ef7e90701101824c00a4dab15ce20f67605e0 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	235 B	2023-03-12	2023-03-13
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:25:25 Last Seen2023-03-13 10:35:01 Times Seen1 Hash 992436325bb924199a5d839d7d56e9c1 8fbb5f5d67d5b08b323742cb54c306e40eaba376 2844ca7788eddb09d31979c16117490bc4f2c8fd037325e8ce2b7b84d8c74f85 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	302 B	2023-03-07	2024-04-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-27 00:46:08 Times Seen28770 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs	183 kB	2023-03-13	2023-03-14
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:41:17 Last Seen2023-03-14 14:38:00 Times Seen1 Hash e29c8319313b8474104fb98c3b8bdb06 39e48d73162ddcee7084f2966dca1d249af77ee2 7bf82b74d2ab235f5d6e9fa09d63143dddfc9523dd845306c21bc2b05cff910e Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	6.8 kB	2023-03-13	2023-03-13
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:35:01 Last Seen2023-03-13 10:35:01 Times Seen1 Hash 88e0fb60990bcdc94ccd103dccc3aac4 25c857b56e3ded5e61d04403070522d31944607a 0381262b46267a85512c18b751702d3fbfaf7a0a55566f7280b9342ce4f50f78 Loading...

	c.parkingcrew.net/scripts/sale_form.js	761 B	2023-03-07	2024-04-27
Pretty URL c.parkingcrew.net/scripts/sale_form.js IP 185.53.178.30 ASN #19905 NEUSTAR-AS6 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:27 Last Seen2024-04-27 00:15:38 Times Seen10889 Hash 64f809e06446647e192fce8d1ec34e09 5b7ced07da42e205067afa88615317a277a4a82c f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3 Loading...

	ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51	968 B	2023-03-08	2024-04-26
Pretty URL ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51 IP 75.2.11.242 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:24:08 Last Seen2024-04-26 23:55:48 Times Seen27739 Hash c77554570ae0fa8e4fb31747dc213058 e989fbde07e6a68975c7a31e1d4df76afd90b96f c3f831fe1717c6d76a8950ac5e7dc88ceee7440d079b11584be5c6c5b3269e77 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	275 B	2023-03-07	2024-04-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-27 00:51:41 Times Seen57552 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	113 B	2023-03-07	2023-11-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:43 Last Seen2023-11-27 12:23:19 Times Seen7 Hash b9bbc9ba0c820645c4a5ad3f4e12b5f0 d02b2985b6366dc277dc85308d558520d33f1997 988c573e1b749d05e31f764aae42818cb04aca1a37f212ce721c548f024177bc Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	319 B	2023-03-07	2023-05-21
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:43 Last Seen2023-05-21 22:43:05 Times Seen6 Hash c4f5e735e3f12ca1a0003390f56a308d d548a27a0a8c41a6a1a2764aeb7b3d2b4fd7658d cad310f82469811647b8f998df8ec5978639a182aebddb7a8099facb6c506eaf Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-04-27
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-27 00:46:08 Times Seen48103 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	www.blogger.com/navbar.g?targetBlogID=778733607098950410&blogName=Top+Hollywood+Celebrity&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aliceinwonderlandchallenge.blogspot.com/search&blogLocale=en&v=2&homepageUrl=aliceinwonderlandchallenge.blogspot.com/&targetPostID=4301182468269398273&blogPostOrPageUrl=aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html&vt=1959510864376839837&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Faliceinwonderlandchallenge.blogspot.com&pfname=&rpctoken=34220540	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=778733607098950410&blogName=Top+Hollywood+Celebrity&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aliceinwonderlandchallenge.blogspot.com/search&blogLocale=en&v=2&homepageUrl=aliceinwonderlandchallenge.blogspot.com/&targetPostID=4301182468269398273&blogPostOrPageUrl=aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html&vt=1959510864376839837&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Faliceinwonderlandchallenge.blogspot.com&pfname=&rpctoken=34220540 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	brigi-jar.com/main.js	480 B	2023-03-07	2023-03-17
Pretty URL brigi-jar.com/main.js IP 44.195.142.43 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2023-03-17 12:43:16 Times Seen1 Hash 91558066fecbfc1f6f77842f6aa85a6c 6bb5c5f2cb4efaf30a8ab810e1b453dcb4df108e efa0d78cbfa66831e490b26d1bb55b14f6c9f8f3a04b1d08403947abd25908ed Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	789 B	2023-03-07	2024-02-13
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	www.google.com/adsense/domains/caf.js	148 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/adsense/domains/caf.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:07:20 Last Seen2023-03-13 15:01:36 Times Seen1 Hash cb44849da73c76f1badc262b2e2a2ae0 4dc54f00fd6eef7cfb87de1cdfadf5b1b24711e7 7dcc146b1b5b726e769011f4d3d88c737323d57d5e05a617b64cf275a75feaba Loading...

	ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51	246 B	2023-03-13	2023-03-13
Pretty URL ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51 IP 75.2.11.242 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:35:01 Last Seen2023-03-13 10:35:01 Times Seen1 Hash 98254b12e53b80cbf9867cfac0d81cfb f3710a818cc58b087bb46f9e01f68ea470bbb8e4 fde5a3754a783fb3eb790d1d470c347ef9bfc6c5f5b8a5368ed7d1a1e401859d Loading...

	apis.google.com/js/platform.js	55 kB	2023-03-13	2023-03-18
Pretty URL apis.google.com/js/platform.js IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:41:16 Last Seen2023-03-18 16:35:17 Times Seen1 Hash f35ce633e9ec6bd6aae0ddbb0f671289 a944c9e12a806c3f375bc217c903b17d716eb345 4d68890ba4c6bfa2417c5b97ab63489256913dcae1f94f232204b05d8fa4f5b1 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	73 B	2023-03-09	2023-11-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:00:37 Last Seen2023-11-27 12:23:19 Times Seen22 Hash 1a8b006e70c8bcb9fb391ce899fead15 a078f90f10bb0cae9f6684ddc6a94064cf434a01 b309887444546faa83847da0e498bce1c9053016375eb22f02763849c088470b Loading...

	aliceinwonderlandchallenge.blogspot.com/feeds/posts/default/-/Jane%20Fonda?alt=json-in-script&callback=related_results_labels_thumbs&max-results=16	11 kB	2023-03-13	2023-03-13
Pretty URL aliceinwonderlandchallenge.blogspot.com/feeds/posts/default/-/Jane%20Fonda?alt=json-in-script&callback=related_results_labels_thumbs&max-results=16 IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:35:01 Last Seen2023-03-13 10:35:01 Times Seen1 Hash c5186360e0a74974f306fda3753ae770 ddb5d88127713fcb053ae5f3f4a72889dfafa7c0 ae753b5b433473f754b7746497190b37c5cb2bdcaafdfb3767dc8975cc240416 Loading...

	www.blogger.com/navbar.g?targetBlogID=778733607098950410&blogName=Top+Hollywood+Celebrity&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aliceinwonderlandchallenge.blogspot.com/search&blogLocale=en&v=2&homepageUrl=aliceinwonderlandchallenge.blogspot.com/&targetPostID=4301182468269398273&blogPostOrPageUrl=aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html&vt=1959510864376839837&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Faliceinwonderlandchallenge.blogspot.com&pfname=&rpctoken=34220540	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=778733607098950410&blogName=Top+Hollywood+Celebrity&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aliceinwonderlandchallenge.blogspot.com/search&blogLocale=en&v=2&homepageUrl=aliceinwonderlandchallenge.blogspot.com/&targetPostID=4301182468269398273&blogPostOrPageUrl=aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html&vt=1959510864376839837&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Faliceinwonderlandchallenge.blogspot.com&pfname=&rpctoken=34220540 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs	136 kB	2023-03-13	2023-03-14
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:41:16 Last Seen2023-03-14 14:40:17 Times Seen1 Hash 019f021c705f2e6e113516399ad42d8f ede0cb4118b2af0460d82a06116fa8bee86168ae fa600bed093063b43fac4c3b10f1c06bb0ed9da1442b86d5725347f71520ebb7 Loading...

	aliceinwonderlandchallenge.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/js/cookienotice.js IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-27 00:51:48 Times Seen113888 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	740 B	2023-03-12	2023-03-13
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:25:25 Last Seen2023-03-13 10:35:01 Times Seen1 Hash 36a85eca71ce410ea729c0e7233b5e32 1e8a76b09c18a7291f4cc62e42a93d3fc27449cf 953fea0a72495f74d8f5dd4993d6d60bc07789b160ec6eeae7d939e637bf0b57 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	254 B	2023-03-12	2023-03-13
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:25:25 Last Seen2023-03-13 10:35:01 Times Seen1 Hash 9659f9f19c3aec932ab388b4b4d8474b 769f1cef172c4fe74eeba967375b0ee51da733ce 7424419509b03584ee212d05af91e7117227df644e406bce9e3d7240ac9476b2 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	60 B	2023-03-07	2023-11-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:43 Last Seen2023-11-27 12:23:19 Times Seen8 Hash 22cb473c27ab7dbaa379c0bc57d2a001 a9aa2ea8d9223e1649e293a333b28772186970fc 75a72f7c66ca52a09b1f1e1da1f95de343d7713979449e6c88d07cb37abc4f45 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	868 B	2023-03-13	2023-03-13
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:35:01 Last Seen2023-03-13 10:35:01 Times Seen1 Hash 40c3a3b19d0d94986a45e494fe0bec8b 1367f2fc42e5fcfeabf67d6c7572e6392c191893 d32c9649a1303d3fe36444d4a9ff35215c275dd392db1773455bf37e3084fd85 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	269 B	2023-03-07	2024-04-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-27 00:46:08 Times Seen28084 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	34 B	2023-03-07	2023-11-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:43 Last Seen2023-11-27 12:23:19 Times Seen8 Hash 8f6aab5a8e9cb0c2f5f369529ad7c25c 6db3b2f29403548ac5e5552df8a040e746b9b695 b44635d1419a63decdc1f56d84f725cb3829073640ea3f7b345100358a7409ee Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	32 B	2023-03-07	2023-11-27
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:43 Last Seen2023-11-27 12:23:19 Times Seen8 Hash 5c1e4d98984ea0c673c9a8e1565ea118 6c7a0773cae59553a80fd4ca215d46ea3827b588 d7e78a4845af897190d5131d1e7d8b68fb2dae46118d64ea9a645786d2b24496 Loading...

	aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html	136 B	2023-03-13	2023-03-13
Pretty URL aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html IP 142.250.74.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:35:01 Last Seen2023-03-13 10:35:01 Times Seen1 Hash 022e5ca0999234d1ec05e8ad2f87d6c4 0d44b9b6dc3bee610de02c65ec9825ea216cf2fb e5ff98bde53b81ca01b82909dba0330894577689bf19a525103ac8b1c6df0bf1 Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	55 kB	2023-03-13	2023-03-14
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:36:49 Last Seen2023-03-14 14:37:54 Times Seen1 Hash e96bf4c6f5bea1b90f5a7017b479b0d9 0a9c3d6e088e7171346815d980b0a84d945b1ac8 58132a92edf3ba3933b0d5f6d827e2e361fec52e3664133293691953b9813e52 Loading...

HTTP Transactions (113)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3246
Expires: Sun, 29 Jan 2023 03:39:05 GMT
Date: Sun, 29 Jan 2023 02:44:59 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5515
Expires: Sun, 29 Jan 2023 04:16:54 GMT
Date: Sun, 29 Jan 2023 02:44:59 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 02:43:07 GMT
content-type: application/json
age: 112
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17874
Expires: Sun, 29 Jan 2023 07:42:53 GMT
Date: Sun, 29 Jan 2023 02:44:59 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: kn/sQt0O3jNxXUsMT+/JkQmDpU4jYn81k4TCnrUi6DkAYbPTR/Y8ShTMKhnHN3C0M2IawyCMKjM=
x-amz-request-id: 5KMD4FZ8JXNSZECR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 02:21:13 GMT
age: 1426
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:44:59 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 01:49:03 GMT
age: 3356
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html

142.250.74.1

200 OK

13 kB

URL HTTP/1.1
aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6896)
Size
13 kB (13269 bytes)
Hash
83de187ea0995ec058ea72176bc20f26
7a33af6b57f989664bed85c070ccc7206ebb3932
aaf49aadbb1b2f1b7399883e09d9c1a0eeee3b21c09becb0e25dd14b379554e2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /2011/10/jane-fonda.html HTTP/1.1
Host: aliceinwonderlandchallenge.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sun, 29 Jan 2023 02:44:59 GMT
Date: Sun, 29 Jan 2023 02:44:59 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 04 Dec 2021 10:20:04 GMT
ETag: W/"0bcb84059adf11a97c092b02c3db98bb30832ba2c953c4efeeecd478d1fa3d9a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 13269
Server: GSE

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4253
Expires: Sun, 29 Jan 2023 03:55:52 GMT
Date: Sun, 29 Jan 2023 02:44:59 GMT
Connection: keep-alive

ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js

142.250.74.106

200 OK

32 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32764)
Size
32 kB (32245 bytes)
Hash
548260b20981c0be2d9dcf8d01c08c24
84230120f8f1bd559eca3fb2fec6acf6cffbf4e7
2f8a612a714e5c928525fdb193f8ec12f7965a6c0d63dd8e58ccae239358c8bb

HTTP Headers

GET /ajax/libs/jquery/1.6.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 32245
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 26 Jan 2023 11:40:06 GMT
Expires: Fri, 26 Jan 2024 11:40:06 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 227093

scripts.chitika.net/eminimalls/amm.js

54.230.111.6

301 Moved Permanently

167 B

URL HTTP/1.1
scripts.chitika.net/eminimalls/amm.js
IP
54.230.111.6:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

HTTP Headers

GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 29 Jan 2023 02:44:59 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://scripts.chitika.net/eminimalls/amm.js
X-Cache: Redirect from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7HmdyFnmHBiNolhwN4uD9QLCjzbSV62nqfl0UwpxfHib-QhNSELRUA==

aliceinwonderlandchallenge.blogspot.com/js/cookienotice.js

142.250.74.1

200 OK

2.0 kB

URL HTTP/1.1
aliceinwonderlandchallenge.blogspot.com/js/cookienotice.js
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: aliceinwonderlandchallenge.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sun, 29 Jan 2023 02:44:59 GMT
Expires: Sun, 05 Feb 2023 02:44:59 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 28 Jan 2023 21:49:39 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
677574c4d6c61909f3b923d6c0944aaf
a70e6323cc046b724a52ee3b05239d7510d32c1d
47e51ecfe2eed8486c7208f9624c17a1e08b383fcd962a9a678abfb9324346e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:44:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
446d71a92d12e6dcfc6f54397182f838
fefa6767a1e9afae573295a29982e4bc16729d56
aa26efff443b4e82e95c672d619c0ae11c8dac839ab9452a7cc033907f9fcbbc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:44:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/platform.js

142.250.74.46

200 OK

21 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1429)
Size
21 kB (20950 bytes)
Hash
2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Sun, 29 Jan 2023 02:44:59 GMT
expires: Sun, 29 Jan 2023 02:44:59 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogergadgets.googlecode.com/files/related-posts-with-thumbnails-for-blogger-pro.js

64.233.165.82

404 Not Found

1.6 kB

URL HTTP/1.1
blogergadgets.googlecode.com/files/related-posts-with-thumbnails-for-blogger-pro.js
IP
64.233.165.82:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1615 bytes)
Hash
9f42fa6045aeff17f7192e3a9415c1e0
b5e6f59896dd8973b93bc9719deb7fb619578787
3d079ad4a9d6da0eea8080f6427e3f0ade868c3b89549fe2228c8c6726d3e1a2

HTTP Headers

GET /files/related-posts-with-thumbnails-for-blogger-pro.js HTTP/1.1
Host: blogergadgets.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1615
Date: Sun, 29 Jan 2023 02:45:00 GMT

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
446d71a92d12e6dcfc6f54397182f838
fefa6767a1e9afae573295a29982e4bc16729d56
aa26efff443b4e82e95c672d619c0ae11c8dac839ab9452a7cc033907f9fcbbc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/1253685842-widgets.js

216.58.207.233

200 OK

156 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/1253685842-widgets.js
IP
216.58.207.233:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
156 kB (156311 bytes)
Hash
282c3db331d4d3d06779b0b8a60ef7c2
c0450142786dc1ce0f3875608b38591ff7eaaf1b
6c3f04bab4d89e7ea271ecb6ffd98b1fb47634d30cc10aa52169c4d2bdefce77

HTTP Headers

GET /static/v1/widgets/1253685842-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 156311
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 01:57:07 GMT
expires: Tue, 23 Jan 2024 01:57:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 00:54:53 GMT
content-type: text/javascript
age: 521273
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

216.58.207.233

200 OK

6.6 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
216.58.207.233:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:27:21 GMT
expires: Fri, 26 Jan 2024 03:27:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 25 Jan 2023 14:53:31 GMT
content-type: text/css
age: 256659
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.214.111.16

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.214.111.16:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VLHtE/JX3Bt/eEI373ZRag==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: b9V0TKCeNfo/U+Wur4ZQXS8GmhY=

2.bp.blogspot.com/-acE0ovuSjhE/TZ-9MAeU4UI/AAAAAAAAAOU/f0igvc62k88/s1600/jane-fonda1.jpg

142.250.74.161

404 Not Found

832 B

URL HTTP/1.1
2.bp.blogspot.com/-acE0ovuSjhE/TZ-9MAeU4UI/AAAAAAAAAOU/f0igvc62k88/s1600/jane-fonda1.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
832 B (832 bytes)
Hash
596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615

HTTP Headers

GET /-acE0ovuSjhE/TZ-9MAeU4UI/AAAAAAAAAOU/f0igvc62k88/s1600/jane-fonda1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0

1.bp.blogspot.com/-bwaHXGwOpvk/ThCHAFcmEJI/AAAAAAAABSI/hvStuTm9iho/s72-c/christina+aguilera+image.jpg

142.250.74.161

200 OK

3.0 kB

URL HTTP/1.1
1.bp.blogspot.com/-bwaHXGwOpvk/ThCHAFcmEJI/AAAAAAAABSI/hvStuTm9iho/s72-c/christina+aguilera+image.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.0 kB (3011 bytes)
Hash
8d52d01ba16162766c30af6939b7283d
690da0bd34164a12b95e74b7f262328c3b6708bc
a2b118ecc923c8e6095f6e5005126b15338cce05f56e81225f0f5477f735a6c6

HTTP Headers

GET /-bwaHXGwOpvk/ThCHAFcmEJI/AAAAAAAABSI/hvStuTm9iho/s72-c/christina+aguilera+image.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="christina aguilera image.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3011
X-XSS-Protection: 0
Date: Sun, 29 Jan 2023 02:45:00 GMT
Expires: Sat, 28 Jan 2023 22:21:40 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v522"
Content-Type: image/jpeg
Age: 0

2.bp.blogspot.com/_mpN4EXxLzpI/TT0ZuEE6luI/AAAAAAAADUQ/N9KEWjTS6FI/s1600/jane_fonda_mugshot.jpg

142.250.74.161

404 Not Found

832 B

URL HTTP/1.1
2.bp.blogspot.com/_mpN4EXxLzpI/TT0ZuEE6luI/AAAAAAAADUQ/N9KEWjTS6FI/s1600/jane_fonda_mugshot.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
832 B (832 bytes)
Hash
596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615

HTTP Headers

GET /_mpN4EXxLzpI/TT0ZuEE6luI/AAAAAAAADUQ/N9KEWjTS6FI/s1600/jane_fonda_mugshot.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0

www.trafficrevenue.net/loadad.js?username=gandenboy

3.64.163.50

410 Gone

116 B

URL HTTP/1.1
www.trafficrevenue.net/loadad.js?username=gandenboy
IP
3.64.163.50:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document, ASCII text
Size
116 B (116 bytes)
Hash
7e37c232569e05596774eb66fd89525d
eed21e3ca5f77ee2888166f1f93cca980256c4ed
7c6af88410ff1468360df55dafbef8744266f8fdd16fe8f3e309a717b73f3d75

HTTP Headers

GET /loadad.js?username=gandenboy HTTP/1.1
Host: www.trafficrevenue.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 410 Gone
Server: openresty
Date: Sun, 29 Jan 2023 02:45:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive

blogergadgets.googlecode.com/files/related-posts-with-thumbnails-for-blogger-pro.js

64.233.165.82

404 Not Found

1.6 kB

URL HTTP/1.1
blogergadgets.googlecode.com/files/related-posts-with-thumbnails-for-blogger-pro.js
IP
64.233.165.82:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1615 bytes)
Hash
9f42fa6045aeff17f7192e3a9415c1e0
b5e6f59896dd8973b93bc9719deb7fb619578787
3d079ad4a9d6da0eea8080f6427e3f0ade868c3b89549fe2228c8c6726d3e1a2

HTTP Headers

GET /files/related-posts-with-thumbnails-for-blogger-pro.js HTTP/1.1
Host: blogergadgets.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1615
Date: Sun, 29 Jan 2023 02:45:00 GMT

3.bp.blogspot.com/_YdcDk9IIAy0/SaqdBDmWepI/AAAAAAAACzg/MsohWkLUsQk/s400/jane-fonda_2.jpg

142.250.74.161

404 Not Found

832 B

URL HTTP/1.1
3.bp.blogspot.com/_YdcDk9IIAy0/SaqdBDmWepI/AAAAAAAACzg/MsohWkLUsQk/s400/jane-fonda_2.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
832 B (832 bytes)
Hash
596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615

HTTP Headers

GET /_YdcDk9IIAy0/SaqdBDmWepI/AAAAAAAACzg/MsohWkLUsQk/s400/jane-fonda_2.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs

142.250.74.46

200 OK

61 kB

URL HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1448)
Size
61 kB (60741 bytes)
Hash
62f98a42acaa85f40e228f65e5ee2361
a41c1755a6a2708340b74638f11ebdeed8e977db
54acbd2f18406888cbe8ee3fc76b512081c7c1c0102a4b1f7eef6cd11fc60f15

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 60741
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:43:22 GMT
expires: Sat, 27 Jan 2024 18:43:22 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
age: 115298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

2.bp.blogspot.com/_lVMs9cl4NfA/S19bV-wh6zI/AAAAAAAAAqA/VkqS7g6_n9s/s400/jane+fonda.jpg

142.250.74.161

404 Not Found

832 B

URL HTTP/1.1
2.bp.blogspot.com/_lVMs9cl4NfA/S19bV-wh6zI/AAAAAAAAAqA/VkqS7g6_n9s/s400/jane+fonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
832 B (832 bytes)
Hash
596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615

HTTP Headers

GET /_lVMs9cl4NfA/S19bV-wh6zI/AAAAAAAAAqA/VkqS7g6_n9s/s400/jane+fonda.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

142.250.74.130

200 OK

67 B

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
67 B (67 bytes)
Hash
9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sat, 28 Jan 2023 09:56:39 GMT
Expires: Sat, 11 Feb 2023 09:56:39 GMT
Cache-Control: public, max-age=1209600
Age: 60501
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8

3.bp.blogspot.com/_Skoh-lE8sO0/SZJ4lLxGhUI/AAAAAAAARWY/YuF3xV2Bys4/s400/Jane+Fonda+Black+.jpg

142.250.74.161

200 OK

19 kB

URL HTTP/1.1
3.bp.blogspot.com/_Skoh-lE8sO0/SZJ4lLxGhUI/AAAAAAAARWY/YuF3xV2Bys4/s400/Jane+Fonda+Black+.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x337, components 3\012- data
Size
19 kB (19271 bytes)
Hash
3674d39132d87e1168eb4b8e45148c99
127eb6715595c74d1c4e51ec6d29dd9dc68d1548
ede76bba84d813dbf81a01081dde27f977d558bf4f120e2dd463a1ce3f23a727

HTTP Headers

GET /_Skoh-lE8sO0/SZJ4lLxGhUI/AAAAAAAARWY/YuF3xV2Bys4/s400/Jane+Fonda+Black+.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4566"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane Fonda Black .jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 19271
X-XSS-Protection: 0

1.bp.blogspot.com/-wsK9X1qPQ5o/TlYlDBYUp_I/AAAAAAAAfnA/96LDjv1UwaA/s400/Jane%2BFonda.jpg

142.250.74.161

200 OK

26 kB

URL HTTP/1.1
1.bp.blogspot.com/-wsK9X1qPQ5o/TlYlDBYUp_I/AAAAAAAAfnA/96LDjv1UwaA/s400/Jane%2BFonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 298x366, components 3\012- data
Size
26 kB (26332 bytes)
Hash
6a5c2dabfd42d047c0c14153bae3dbe6
06fcc0bb18900444fb92ac7d369678a93f119fe1
c51c1445b0019876f328af2f9f6acfd6601836e585e03b8badb3c4847c2125e9

HTTP Headers

GET /-wsK9X1qPQ5o/TlYlDBYUp_I/AAAAAAAAfnA/96LDjv1UwaA/s400/Jane%2BFonda.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v7e70"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane Fonda.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 26332
X-XSS-Protection: 0

ocsp.r2m02.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
4e29b0d6a436d72d9f9f331f87253145
ac772edc6e03d4cd53409c93b9bf9257a66a0b7b
f52172c1e411ee0ac05072eabb597c952dd1c746434b9063dbc122b6151d341b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135952
Date: Sun, 29 Jan 2023 02:45:00 GMT
Etag: "63d54dbc-1d7"
Expires: Mon, 30 Jan 2023 16:30:52 GMT
Last-Modified: Sat, 28 Jan 2023 16:30:52 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1ID59PjisxJjPhOr1FyGs4qwHKJeXWaRJwZUZTnVHP7ppKc6bcUqAg==

scripts.chitika.net/eminimalls/amm.js

54.230.111.6

200 OK

0 B

URL HTTP/2
scripts.chitika.net/eminimalls/amm.js
IP
54.230.111.6:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Fri, 19 Apr 2019 16:37:52 GMT
server: AmazonS3
date: Sat, 28 Jan 2023 05:21:28 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cBdxIZIxj28DkD91bG3qfDzh3uHjljPF89B3TBPMtbqzHFf_xvyq2A==
age: 77013
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

3.bp.blogspot.com/_1E3fV3Nbveo/SVuvay-CB7I/AAAAAAAAAYw/PvmrDrURKnI/s400/jane+fonda+1.jpg

142.250.74.161

200 OK

29 kB

URL HTTP/1.1
3.bp.blogspot.com/_1E3fV3Nbveo/SVuvay-CB7I/AAAAAAAAAYw/PvmrDrURKnI/s400/jane+fonda+1.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 250x325, components 3\012- data
Size
29 kB (29282 bytes)
Hash
54ab77d420bda1a31f3c893ceea2888a
063b1c57ba04f9da5e911af5f68fa9178b29ea25
00fadc580b7034e5b4892f81fecf34e3c10d601f1a099f6a9cc6efa22a3b7670

HTTP Headers

GET /_1E3fV3Nbveo/SVuvay-CB7I/AAAAAAAAAYw/PvmrDrURKnI/s400/jane+fonda+1.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v18c"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jane fonda 1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 29282
X-XSS-Protection: 0

3.bp.blogspot.com/-8tJKfMoIXhY/TgiOSk2GJKI/AAAAAAAAIpg/quraLnz-4-Q/s1600/Jane9.jpg

142.250.74.161

200 OK

36 kB

URL HTTP/1.1
3.bp.blogspot.com/-8tJKfMoIXhY/TgiOSk2GJKI/AAAAAAAAIpg/quraLnz-4-Q/s1600/Jane9.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 521x650, components 3\012- data
Size
36 kB (36235 bytes)
Hash
1d033e016aff02492718e8e746a7d7bd
1ba6486523cc0eab9e7beede775885db5aa67a05
bf1a49e3a5f342cb851b7091945f20d87f1cdf7270aa57c5dfb6ce2107636758

HTTP Headers

GET /-8tJKfMoIXhY/TgiOSk2GJKI/AAAAAAAAIpg/quraLnz-4-Q/s1600/Jane9.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2298"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane9.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 36235
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
446d71a92d12e6dcfc6f54397182f838
fefa6767a1e9afae573295a29982e4bc16729d56
aa26efff443b4e82e95c672d619c0ae11c8dac839ab9452a7cc033907f9fcbbc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

2.bp.blogspot.com/_HKCef6hQMkA/TDb35l5HZXI/AAAAAAAAEPU/SClbpxysh7o/s1600/2291l.jpg

142.250.74.161

200 OK

72 kB

URL HTTP/1.1
2.bp.blogspot.com/_HKCef6hQMkA/TDb35l5HZXI/AAAAAAAAEPU/SClbpxysh7o/s1600/2291l.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 594x493, components 3\012- data
Size
72 kB (72351 bytes)
Hash
76147b9fe274781eb78f0a59d080153c
6b496dca93bf42026b4683c0a579431701c2bfc9
f2772347f0ba2e96abc6b0d572dc60f340170dd0d4c3c5ac584c0685ecf90b88

HTTP Headers

GET /_HKCef6hQMkA/TDb35l5HZXI/AAAAAAAAEPU/SClbpxysh7o/s1600/2291l.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v10f5"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2291l.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 72351
X-XSS-Protection: 0

3.bp.blogspot.com/-2uNYY6B_SKQ/TjXgDuWl4gI/AAAAAAAAA4I/RO1f7FotSFw/s1600/blog148.jpg

142.250.74.161

200 OK

78 kB

URL HTTP/1.1
3.bp.blogspot.com/-2uNYY6B_SKQ/TjXgDuWl4gI/AAAAAAAAA4I/RO1f7FotSFw/s1600/blog148.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 345x427, components 3\012- data
Size
78 kB (78110 bytes)
Hash
67b33399dcf0f55175fb506075f2c736
c8917a331622c3b7a5844401642c4e54612b1785
74cdf4c1bf764384784c0d1e78f1ad293bbccc3b8a28caf0121a50bdc218af57

HTTP Headers

GET /-2uNYY6B_SKQ/TjXgDuWl4gI/AAAAAAAAA4I/RO1f7FotSFw/s1600/blog148.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v382"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="blog148.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 78110
X-XSS-Protection: 0

1.bp.blogspot.com/-Eu5MJyXwJ5o/TVcFpFRrCiI/AAAAAAAAA9g/wAmW-w0z2bE/s400/2946f26d09480f60_jane_fonda.jpg

142.250.74.161

200 OK

17 kB

URL HTTP/1.1
1.bp.blogspot.com/-Eu5MJyXwJ5o/TVcFpFRrCiI/AAAAAAAAA9g/wAmW-w0z2bE/s400/2946f26d09480f60_jane_fonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 222x280, components 3\012- data
Size
17 kB (16660 bytes)
Hash
f7a0c6b1a27eab158e303638e7fc1506
0b00cf7d79cf4af44d5fb0f4b125d0ac96e636a8
dccf61d347cdbf00c8eca8b6a85a53a74b75bfb286f12cb98379d85daba7f964

HTTP Headers

GET /-Eu5MJyXwJ5o/TVcFpFRrCiI/AAAAAAAAA9g/wAmW-w0z2bE/s400/2946f26d09480f60_jane_fonda.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3d8"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2946f26d09480f60_jane_fonda.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 16660
X-XSS-Protection: 0

3.bp.blogspot.com/_3PpC6HRObLQ/S98L657uZZI/AAAAAAAAAJ4/t8Zfa_Qbpbo/s1600/Nakedpicofjanefonda.jpg

142.250.74.161

200 OK

35 kB

URL HTTP/1.1
3.bp.blogspot.com/_3PpC6HRObLQ/S98L657uZZI/AAAAAAAAAJ4/t8Zfa_Qbpbo/s1600/Nakedpicofjanefonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 333x480, components 3\012- data
Size
35 kB (34797 bytes)
Hash
4030742afeba8b930ae4ad74e1fdded4
22550a2222c4aa94232c427fcaeb8447b3f0e4fb
7f0089d273930563cb982cf76a022906b96f5553ed89d55de56e0df979efe106

HTTP Headers

GET /_3PpC6HRObLQ/S98L657uZZI/AAAAAAAAAJ4/t8Zfa_Qbpbo/s1600/Nakedpicofjanefonda.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v9e"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Nakedpicofjanefonda.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 34797
X-XSS-Protection: 0

2.bp.blogspot.com/_8LqR2Ugda3I/ShhhQUwW26I/AAAAAAAACEg/IS7-OBpRne8/s400/jane+fonda+03.jpg

142.250.74.161

200 OK

27 kB

URL HTTP/1.1
2.bp.blogspot.com/_8LqR2Ugda3I/ShhhQUwW26I/AAAAAAAACEg/IS7-OBpRne8/s400/jane+fonda+03.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 324x400, components 3\012- data
Size
27 kB (27204 bytes)
Hash
63b66204ec90c6a86eccdbd7703f0b38
b68a193049adbd5f3033c08e4ed9a70642f37c5d
4905dae632fbb9910b9d849da787645026c290d35488b819b4546ca6cd44fd0c

HTTP Headers

GET /_8LqR2Ugda3I/ShhhQUwW26I/AAAAAAAACEg/IS7-OBpRne8/s400/jane+fonda+03.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vaa5"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jane fonda 03.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 27204
X-XSS-Protection: 0

4.bp.blogspot.com/__-KUP2UMQt8/S85-PNtzt0I/AAAAAAAABxo/G8bIpRGO9J8/s1600/JaneFonda+Barbarella.jpg

142.250.74.161

200 OK

15 kB

URL HTTP/1.1
4.bp.blogspot.com/__-KUP2UMQt8/S85-PNtzt0I/AAAAAAAABxo/G8bIpRGO9J8/s1600/JaneFonda+Barbarella.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 285x400, components 3\012- data
Size
15 kB (14691 bytes)
Hash
2681ac228ed8bf4cfd6a6f3dbb29b7f8
9db4d1b5500d972833b457a25ba0157bf8b5f8eb
aacfc0d552302e0eded3f70356db752139f9ffa0f1374383ed462706c4f35dd1

HTTP Headers

GET /__-KUP2UMQt8/S85-PNtzt0I/AAAAAAAABxo/G8bIpRGO9J8/s1600/JaneFonda+Barbarella.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v71a"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="JaneFonda Barbarella.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 14691
X-XSS-Protection: 0

4.bp.blogspot.com/-1b64o6LXhy0/TlYlDa82Q6I/AAAAAAAAfnQ/TJOfLEGccvE/s1600/Jane%2BFonda7.jpg

142.250.74.161

200 OK

44 kB

URL HTTP/1.1
4.bp.blogspot.com/-1b64o6LXhy0/TlYlDa82Q6I/AAAAAAAAfnQ/TJOfLEGccvE/s1600/Jane%2BFonda7.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 520x650, components 3\012- data
Size
44 kB (43700 bytes)
Hash
b9d77ff5d3271dc6f8d3d56a9da6b46f
7b98aee31badb98db4d7c7c2158c7fd53b8ed02e
afc6955360f6593316092c0fffacd7bf5df1a503d9c189e739b488de7fd32518

HTTP Headers

GET /-1b64o6LXhy0/TlYlDa82Q6I/AAAAAAAAfnQ/TJOfLEGccvE/s1600/Jane%2BFonda7.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v7e74"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane Fonda7.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 43700
X-XSS-Protection: 0

2.bp.blogspot.com/_zU1rJlBlcM4/TIGyZT7d_iI/AAAAAAAAD9k/TJKbEpFnlZw/s1600/Jane-Fonda-Layers-fb-44483145.jpg

142.250.74.161

200 OK

27 kB

URL HTTP/1.1
2.bp.blogspot.com/_zU1rJlBlcM4/TIGyZT7d_iI/AAAAAAAAD9k/TJKbEpFnlZw/s1600/Jane-Fonda-Layers-fb-44483145.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 325x325, components 3\012- data
Size
27 kB (27014 bytes)
Hash
d49f2857bc96783183805e9606d073d5
5553674de387db16c20cbb1b56a9f07d574471eb
e339bd9ea2f0ca6b457f9a565e42d1bed949f0dcb774e2f9ad6518d9dd8f05c2

HTTP Headers

GET /_zU1rJlBlcM4/TIGyZT7d_iI/AAAAAAAAD9k/TJKbEpFnlZw/s1600/Jane-Fonda-Layers-fb-44483145.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1a21"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane-Fonda-Layers-fb-44483145.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 27014
X-XSS-Protection: 0

1.bp.blogspot.com/-gIweT0tyPbY/TV-XjDCAxSI/AAAAAAAAAAc/tAgaDndsOcs/s1600/Fonda_legs.jpg

142.250.74.161

200 OK

18 kB

URL HTTP/1.1
1.bp.blogspot.com/-gIweT0tyPbY/TV-XjDCAxSI/AAAAAAAAAAc/tAgaDndsOcs/s1600/Fonda_legs.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 400x400, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 441x306, components 3\012- data
Size
18 kB (18466 bytes)
Hash
43ccb577a3219fb69cd20e5c60a4366c
f4592c47019f19fac85302295505e2522ef572f4
509a4cc9310c023a2a736bc9694a9901c5c21eff1b9ea229bc6cd47c011b7616

HTTP Headers

GET /-gIweT0tyPbY/TV-XjDCAxSI/AAAAAAAAAAc/tAgaDndsOcs/s1600/Fonda_legs.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v7"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Fonda_legs.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 18466
X-XSS-Protection: 0

1.bp.blogspot.com/-Fkqm1X0pj4k/TcmOuj2x06I/AAAAAAAAALY/5C4VEvphSFk/s1600/jane_fonda2.jpg

142.250.74.161

200 OK

28 kB

URL HTTP/1.1
1.bp.blogspot.com/-Fkqm1X0pj4k/TcmOuj2x06I/AAAAAAAAALY/5C4VEvphSFk/s1600/jane_fonda2.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 75x75, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 405x521, components 3\012- data
Size
28 kB (27536 bytes)
Hash
20f86cc0a679a66f25c3c63d83299546
25c054f570b88561512099c4d862e5bfbe5f298d
af1bf8c4f8d2e9788cf74f4f19a7222873e7411367560f23ec59ab66e0f96f10

HTTP Headers

GET /-Fkqm1X0pj4k/TcmOuj2x06I/AAAAAAAAALY/5C4VEvphSFk/s1600/jane_fonda2.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb6"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jane_fonda2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 27536
X-XSS-Protection: 0

3.bp.blogspot.com/_OmKjY36LBac/SxTqloGmzmI/AAAAAAAAAOo/uMDVO3ANnjY/s72-c/kristen-stewart2.jpg

142.250.74.161

200 OK

3.4 kB

URL HTTP/1.1
3.bp.blogspot.com/_OmKjY36LBac/SxTqloGmzmI/AAAAAAAAAOo/uMDVO3ANnjY/s72-c/kristen-stewart2.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.4 kB (3447 bytes)
Hash
d800ad397a021e74899232971adb84cc
0520c565ef7ca2600126c912193d37e099eafdfd
da6d1336986e69e051b73b5bd6d459edc84a2394097d1742478701992a3eeee2

HTTP Headers

GET /_OmKjY36LBac/SxTqloGmzmI/AAAAAAAAAOo/uMDVO3ANnjY/s72-c/kristen-stewart2.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vea"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="kristen-stewart2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 3447
X-XSS-Protection: 0

4.bp.blogspot.com/-yWaDoIqTEC4/TgiOSFOiUWI/AAAAAAAAIpc/uJ-isRMm6Ek/s1600/Jane8.jpg

142.250.74.161

200 OK

37 kB

URL HTTP/1.1
4.bp.blogspot.com/-yWaDoIqTEC4/TgiOSFOiUWI/AAAAAAAAIpc/uJ-isRMm6Ek/s1600/Jane8.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 367x450, components 1\012- data
Size
37 kB (37442 bytes)
Hash
07b93dbfc95baa239da45c0632baf9cc
3fe13c287c19f3b642ccbe1149de149ed597945a
300b012ca06e5fa1feb13a812d497798d46f1a2b57a781c00e0a7733cc4f7c06

HTTP Headers

GET /-yWaDoIqTEC4/TgiOSFOiUWI/AAAAAAAAIpc/uJ-isRMm6Ek/s1600/Jane8.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2297"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 37442
X-XSS-Protection: 0

3.bp.blogspot.com/-Yh2FSiqe1ac/TcZZDCfFZ-I/AAAAAAAABGU/lxb-IZW1p4o/s72-c/KateHudson.jpg

142.250.74.161

200 OK

4.7 kB

URL HTTP/1.1
3.bp.blogspot.com/-Yh2FSiqe1ac/TcZZDCfFZ-I/AAAAAAAABGU/lxb-IZW1p4o/s72-c/KateHudson.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=Kate Hudson, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.7 kB (4667 bytes)
Hash
8083fa0f39f70dca878e171cec4c0339
4b76bfad83c4b33b4797463715c1ce89dd726803
ee8a066c126e8d6fd9efc4302ba63e9395ae374b38a98c72c39299618daf5a83

HTTP Headers

GET /-Yh2FSiqe1ac/TcZZDCfFZ-I/AAAAAAAABGU/lxb-IZW1p4o/s72-c/KateHudson.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v465"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="KateHudson.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 4667
X-XSS-Protection: 0

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16034
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 02:45:00 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dade28b-c683-4510-bc44-0207300ccc21.jpeg

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dade28b-c683-4510-bc44-0207300ccc21.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6211 bytes)
Hash
6e46615b79ad2d230e98a2b9c54f4431
db55bd978e18e595d695637183862f8c5e7da5dd
f27875ef624f602be8d93b8bc7fae062bf877fc724473613242da4e493510673

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dade28b-c683-4510-bc44-0207300ccc21.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 6211
x-amzn-requestid: 529cce27-9ee1-4caf-b3ac-3db8216cb155
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOdPSGFAIAMF2Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf4261-1cbed26b6cf345de3046b6e8;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 02:28:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KYA71q94uZX-mGN9EHC9Perjn0kOscXZCwgjAhYYnQYITBTeN4xmzQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 11:21:43 GMT
age: 55397
etag: "db55bd978e18e595d695637183862f8c5e7da5dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5594 bytes)
Hash
4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D2ZAelkDgsd0wjoOSoPRwTzhozs84_aIcgwU-QmbDrTnHztVD0VL_A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:57:16 GMT
age: 42464
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16034
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 02:45:00 GMT
Connection: keep-alive

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9167 bytes)
Hash
3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 17:35:56 GMT
age: 32944
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

1.bp.blogspot.com/_gkX_mLa_-3U/TRO72g8lMtI/AAAAAAAABu0/nSRwbMIPWMM/s1600/JaneFonda5394.jpg

142.250.74.161

200 OK

25 kB

URL HTTP/1.1
1.bp.blogspot.com/_gkX_mLa_-3U/TRO72g8lMtI/AAAAAAAABu0/nSRwbMIPWMM/s1600/JaneFonda5394.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 384x480, components 3\012- data
Size
25 kB (25102 bytes)
Hash
25dfae2d455d4769d5e85f4cecf85002
8d4c961475cb230e11efbe9da07025d0ae56e608
004513f8de9378b7bb05481e2cf20143242fb098945ebd08f02eb1a692911e86

HTTP Headers

GET /_gkX_mLa_-3U/TRO72g8lMtI/AAAAAAAABu0/nSRwbMIPWMM/s1600/JaneFonda5394.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6ed"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="JaneFonda5394.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 25102
X-XSS-Protection: 0

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11624 bytes)
Hash
6021d6a06bff2826eb341747e82484f7
a817ff1ba206234627706551820d0d9856b398de
f0ba6de8709fdb73e94dbdace635232c76b9d70dad73badaca0542d9ad49604d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 11624
x-amzn-requestid: dff12902-8b83-4df1-a2c9-a2ee9565830f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIhnjEmpIAMFdlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce2fc-0216188a3154167648f7d976;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:17:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kxzVU1bNn09g_-73AY-mNvzhHo-dTyQinPkfPEqhDcKFfrTnbDpaZQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:15:07 GMT
age: 12593
etag: "a817ff1ba206234627706551820d0d9856b398de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8652 bytes)
Hash
43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 12816
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16034
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 02:45:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16034
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 02:45:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16034
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 02:45:00 GMT
Connection: keep-alive

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10030 bytes)
Hash
2f73f114f8dc452fc0b16825570ad50c
6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575
23fd69e6ccdd2ce2b5d3d8b3f075a07cdb36efd663a4119b5dca22165e7b2090

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10030
x-amzn-requestid: 0c6c82b5-f91b-4468-bb25-d87d4d7dedd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVAbgERRIAMFdcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1e116-7f17c79047447dff2de3ab67;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 02:10:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4C0fCJB3N9nw0xKQnlsRLx_VGA3shg394U3Tq4pxNMWgggZe93TLUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:30:44 GMT
age: 22456
etag: "6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

4.bp.blogspot.com/_8LqR2Ugda3I/ShhhcQlMs1I/AAAAAAAACEw/vowI8OeDfEY/s400/jane+fonda+02.jpg

142.250.74.161

200 OK

25 kB

URL HTTP/1.1
4.bp.blogspot.com/_8LqR2Ugda3I/ShhhcQlMs1I/AAAAAAAACEw/vowI8OeDfEY/s400/jane+fonda+02.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 327x400, components 3\012- data
Size
25 kB (24796 bytes)
Hash
fc40d767bad06c7d1b085e3d19535054
a7403c172953de124d1efdd60dc9c6376713b572
7cee02775cb356a1b8aae92b670733c06738bf9c75ec7eeffb02d13da62ea108

HTTP Headers

GET /_8LqR2Ugda3I/ShhhcQlMs1I/AAAAAAAACEw/vowI8OeDfEY/s400/jane+fonda+02.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vaa5"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jane fonda 02.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 24796
X-XSS-Protection: 0

4.bp.blogspot.com/-n3yCUW7N6ds/TfYMBeY-cTI/AAAAAAAAAw8/bzjiLC1waRE/s72-c/west-coast-customs-paris-hilton-bentley-rose-04.jpg

142.250.74.161

200 OK

3.8 kB

URL HTTP/1.1
4.bp.blogspot.com/-n3yCUW7N6ds/TfYMBeY-cTI/AAAAAAAAAw8/bzjiLC1waRE/s72-c/west-coast-customs-paris-hilton-bentley-rose-04.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.8 kB (3762 bytes)
Hash
3120b45d07078ed1fda16a8ff633b6a8
1fd61bbb99e71c810a2a040259eb36df84adff4d
40d367a47dc4b08c140e75d0b12e048a11ac06428941b7e4e6fe7ec14a7f7b76

HTTP Headers

GET /-n3yCUW7N6ds/TfYMBeY-cTI/AAAAAAAAAw8/bzjiLC1waRE/s72-c/west-coast-customs-paris-hilton-bentley-rose-04.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v30f"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="west-coast-customs-paris-hilton-bentley-rose-04.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 3762
X-XSS-Protection: 0

3.bp.blogspot.com/_mpN4EXxLzpI/TT0ZS0jQD_I/AAAAAAAADUA/9jBZOptGDiU/s1600/a1969-jane-fonda.jpg

142.250.74.161

404 Not Found

832 B

URL HTTP/1.1
3.bp.blogspot.com/_mpN4EXxLzpI/TT0ZS0jQD_I/AAAAAAAADUA/9jBZOptGDiU/s1600/a1969-jane-fonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
832 B (832 bytes)
Hash
596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615

HTTP Headers

GET /_mpN4EXxLzpI/TT0ZS0jQD_I/AAAAAAAADUA/9jBZOptGDiU/s1600/a1969-jane-fonda.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0

cru.cahe.wsu.edu/WebLog/safflower/YearToDate/TreeBlank.gif

134.121.193.37

302 Redirect

197 B

URL HTTP/1.1
cru.cahe.wsu.edu/WebLog/safflower/YearToDate/TreeBlank.gif
IP
134.121.193.37:0
ASN
#11827 WSU-AS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
197 B (197 bytes)
Hash
2ffc2548aab08063f47e1a7cd47dcd8b
a4bbf5dbec135a9c0aa34720e7eb5ccc8ee8c5f7
212d43c0f5f5c2130c5e6a5e48025280ef17bc5142619bde8a4aa71b19474d94

HTTP Headers

GET /WebLog/safflower/YearToDate/TreeBlank.gif HTTP/1.1
Host: cru.cahe.wsu.edu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: https://ecommerce.cahnrs.wsu.edu/WebLog/safflower/YearToDate/TreeBlank.gif
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 29 Jan 2023 02:45:00 GMT
Content-Length: 197

3.bp.blogspot.com/-8yj5g7uOoVI/Tj1QXFM-boI/AAAAAAAAAEU/cqSnFVv_4Tg/s1600/bg.jpg

142.250.74.161

404 Not Found

832 B

URL HTTP/1.1
3.bp.blogspot.com/-8yj5g7uOoVI/Tj1QXFM-boI/AAAAAAAAAEU/cqSnFVv_4Tg/s1600/bg.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
832 B (832 bytes)
Hash
596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615

HTTP Headers

GET /-8yj5g7uOoVI/Tj1QXFM-boI/AAAAAAAAAEU/cqSnFVv_4Tg/s1600/bg.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0

aliceinwonderlandchallenge.blogspot.com/feeds/posts/default/-/Jane%20Fonda?alt=json-in-script&callback=related_results_labels_thumbs&max-results=16

142.250.74.1

200 OK

3.0 kB

URL HTTP/1.1
aliceinwonderlandchallenge.blogspot.com/feeds/posts/default/-/Jane%20Fonda?alt=json-in-script&callback=related_results_labels_thumbs&max-results=16
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (11252)
Size
3.0 kB (3029 bytes)
Hash
3a1dd5ea1b56c75f8b933e4a82135ebb
da60574a3cc67be505effb9a68a34e5c77cfcf2c
f4b9d6fe228ef91efddf5c1ac3a2028a690b9b5334fdbdfe6af4077c62970337

HTTP Headers

GET /feeds/posts/default/-/Jane%20Fonda?alt=json-in-script&callback=related_results_labels_thumbs&max-results=16 HTTP/1.1
Host: aliceinwonderlandchallenge.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html

HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"aae0366b96a163ec5fadf779a7db1cd5f60c33fd3cdab9823078c6a133c39ff5"
Date: Sun, 29 Jan 2023 02:45:00 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sun, 29 Jan 2023 02:45:01 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 04 Dec 2021 10:20:04 GMT
Content-Encoding: gzip
Content-Length: 3029
X-Frame-Options: SAMEORIGIN

1.bp.blogspot.com/-FVAjmZTsxyU/TirKb-W2SGI/AAAAAAAAAOs/OKpepJbLqQs/s72-c/seth-rogen.jpg

142.250.74.161

200 OK

2.9 kB

URL HTTP/1.1
1.bp.blogspot.com/-FVAjmZTsxyU/TirKb-W2SGI/AAAAAAAAAOs/OKpepJbLqQs/s72-c/seth-rogen.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.9 kB (2946 bytes)
Hash
072149d06434f8e98ccf4e2fd006b082
63771ff1cfac599266e3714b2b347f445580b7b7
52fd952983f240404967de43a82d3bfb75e807731039bcbfe70ada29d9f1b9da

HTTP Headers

GET /-FVAjmZTsxyU/TirKb-W2SGI/AAAAAAAAAOs/OKpepJbLqQs/s72-c/seth-rogen.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "veb"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="seth-rogen.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 2946
X-XSS-Protection: 0

2.bp.blogspot.com/_bOlcDMvET2A/S_N0TL9QlsI/AAAAAAAAAdA/lCZDmXKgcTg/s1600/Barbarella.jpeg

142.250.74.161

200 OK

11 kB

URL HTTP/1.1
2.bp.blogspot.com/_bOlcDMvET2A/S_N0TL9QlsI/AAAAAAAAAdA/lCZDmXKgcTg/s1600/Barbarella.jpeg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 282x350, components 3\012- data
Size
11 kB (11054 bytes)
Hash
d1146e99579f0287e4659d250c4833a5
2aacdbcc5d97ff70977246b6a2a632bd30e64b78
63aa2da56ad3c55f50cb72ec74f70da0787943e24b8014ee41766b9ff5f89811

HTTP Headers

GET /_bOlcDMvET2A/S_N0TL9QlsI/AAAAAAAAAdA/lCZDmXKgcTg/s1600/Barbarella.jpeg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v8a0"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Barbarella.jpeg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 11054
X-XSS-Protection: 0

2.bp.blogspot.com/-x79ooHnVdis/TlorDpK2y2I/AAAAAAAADD4/LhCXJCPv2dA/s1600/janefonda.jpg

142.250.74.161

200 OK

62 kB

URL HTTP/1.1
2.bp.blogspot.com/-x79ooHnVdis/TlorDpK2y2I/AAAAAAAADD4/LhCXJCPv2dA/s1600/janefonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], progressive, precision 8, 310x420, components 3\012- data
Size
62 kB (62040 bytes)
Hash
cc6a5f8b75d97cc051ee17d4520eb87f
7b5ce274ff7155bf8dc69871fe8e31ec76d0684b
4e13c064778bf33d16ebc8e63e8b40e092ed253a531f0ad891d97e673adc06f0

HTTP Headers

GET /-x79ooHnVdis/TlorDpK2y2I/AAAAAAAADD4/LhCXJCPv2dA/s1600/janefonda.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc3e"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="janefonda.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 62040
X-XSS-Protection: 0

4.bp.blogspot.com/__5wn6FttZdQ/S9E_UJxYiSI/AAAAAAAAAdI/JNKui0g0cZY/s1600/jane-fonda-mugshot.jpg

142.250.74.161

200 OK

36 kB

URL HTTP/1.1
4.bp.blogspot.com/__5wn6FttZdQ/S9E_UJxYiSI/AAAAAAAAAdI/JNKui0g0cZY/s1600/jane-fonda-mugshot.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 200x200, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 512x300, components 1\012- data
Size
36 kB (35704 bytes)
Hash
1056394f65b5c10f3e15f88b9e5d68c8
9e0d4502da0f6554476e9eebd70b3128028b22e4
707b11a229dad67b9d652dbf9bf659474257f45f1c269a4b94c07502d14553a9

HTTP Headers

GET /__5wn6FttZdQ/S9E_UJxYiSI/AAAAAAAAAdI/JNKui0g0cZY/s1600/jane-fonda-mugshot.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d2"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jane-fonda-mugshot.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 35704
X-XSS-Protection: 0

2.bp.blogspot.com/-9IO_jRp3610/TiM9p5xlksI/AAAAAAAAALU/4ifIEVH5-Fc/s1600/jane-fonda2.jpg

142.250.74.161

200 OK

43 kB

URL HTTP/1.1
2.bp.blogspot.com/-9IO_jRp3610/TiM9p5xlksI/AAAAAAAAALU/4ifIEVH5-Fc/s1600/jane-fonda2.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, description=Original caption: 7/15/1972-Hanoi, Vietnam- In this photo monitored in Tokyo and received from Hanoi 7/15, anti-war activist an, software=Google], baseline, precision 8, 378x480, components 1\012- data
Size
43 kB (42989 bytes)
Hash
e629740e1ec2a330a912bd232938d998
eb5cec026b5e40c5f1af5d3f5a5ea9f2a390f1d1
5a729b4de7f92166d327a88bec3d6cf94555c1692e6c3cd8604365c36a364798

HTTP Headers

GET /-9IO_jRp3610/TiM9p5xlksI/AAAAAAAAALU/4ifIEVH5-Fc/s1600/jane-fonda2.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb5"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jane-fonda2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 42989
X-XSS-Protection: 0

www.blogger.com/dyn-css/authorization.css?targetBlogID=778733607098950410&zx=62a820b9-49a5-4dfe-a00a-be70e2523531

216.58.207.233

200 OK

21 B

URL HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=778733607098950410&zx=62a820b9-49a5-4dfe-a00a-be70e2523531
IP
216.58.207.233:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=778733607098950410&zx=62a820b9-49a5-4dfe-a00a-be70e2523531 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 29 Jan 2023 02:45:00 GMT
last-modified: Sun, 29 Jan 2023 02:45:00 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/navbar.g?targetBlogID=778733607098950410&blogName=Top+Hollywood+Celebrity&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aliceinwonderlandchallenge.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://aliceinwonderlandchallenge.blogspot.com/&targetPostID=4301182468269398273&blogPostOrPageUrl=http://aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html&vt=1959510864376839837&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__

216.58.207.233

200 OK

2.6 kB

URL HTTP/2
www.blogger.com/navbar.g?targetBlogID=778733607098950410&blogName=Top+Hollywood+Celebrity&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aliceinwonderlandchallenge.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://aliceinwonderlandchallenge.blogspot.com/&targetPostID=4301182468269398273&blogPostOrPageUrl=http://aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html&vt=1959510864376839837&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP
216.58.207.233:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Size
2.6 kB (2648 bytes)
Hash
fa66a857c65f41649a164a72a97a54e9
ef3a3abec8f54197472530e7dd4ae698a24462e5
eb246bd26895b66d3d1c25ece132bac768d46cad9722f5c879c1582274f410d0

HTTP Headers

GET /navbar.g?targetBlogID=778733607098950410&blogName=Top+Hollywood+Celebrity&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aliceinwonderlandchallenge.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://aliceinwonderlandchallenge.blogspot.com/&targetPostID=4301182468269398273&blogPostOrPageUrl=http://aliceinwonderlandchallenge.blogspot.com/2011/10/jane-fonda.html&vt=1959510864376839837&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 29 Jan 2023 02:45:00 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2648
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

2.bp.blogspot.com/-rJUayVwmt_M/TnIAjw8HMTI/AAAAAAAAA4k/SE8Y2YmzRt4/s1600/Jane-Fonda1.jpg

142.250.74.161

200 OK

69 kB

URL HTTP/1.1
2.bp.blogspot.com/-rJUayVwmt_M/TnIAjw8HMTI/AAAAAAAAA4k/SE8Y2YmzRt4/s1600/Jane-Fonda1.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 468x680, components 3\012- data
Size
69 kB (68911 bytes)
Hash
a90fbc397453579b2d48a99285871682
8de9875573e1e30d7feed5d4401b7992aa6ceedf
3fac5c8338fef645b54d54bbec30d25dcda009a278f92a7cdcd08a3b16d3c302

HTTP Headers

GET /-rJUayVwmt_M/TnIAjw8HMTI/AAAAAAAAA4k/SE8Y2YmzRt4/s1600/Jane-Fonda1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v389"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane-Fonda1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 68911
X-XSS-Protection: 0

4.bp.blogspot.com/_-3E2gAcUCUw/TTUAkaXY3NI/AAAAAAAAAJk/C9Gpv1Q7qzE/s1600/Jane+Fonda+Golden+Globes.jpg

142.250.74.161

200 OK

73 kB

URL HTTP/1.1
4.bp.blogspot.com/_-3E2gAcUCUw/TTUAkaXY3NI/AAAAAAAAAJk/C9Gpv1Q7qzE/s1600/Jane+Fonda+Golden+Globes.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, software=Google], baseline, precision 8, 400x592, components 3\012- data
Size
73 kB (72661 bytes)
Hash
758f7f29f29a98421455cac2b1e169a6
4cd5db0ed3ca28bf2d8136e0fe600a3a894ed3a4
6c9303c205892fbfa4c7b9737dafb975b950571b1e4e869720285cd1fed055da

HTTP Headers

GET /_-3E2gAcUCUw/TTUAkaXY3NI/AAAAAAAAAJk/C9Gpv1Q7qzE/s1600/Jane+Fonda+Golden+Globes.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v99"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane Fonda Golden Globes.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 72661
X-XSS-Protection: 0

4.bp.blogspot.com/-4bG84K8K5Hg/TiM9SMbKIhI/AAAAAAAAALM/lYimvcvBbwg/s1600/Jane-Fonda1.jpg

142.250.74.161

200 OK

34 kB

URL HTTP/1.1
4.bp.blogspot.com/-4bG84K8K5Hg/TiM9SMbKIhI/AAAAAAAAALM/lYimvcvBbwg/s1600/Jane-Fonda1.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 316x400, components 3\012- data
Size
34 kB (33973 bytes)
Hash
118b69c1ee30115fe55b878bf389ec23
4fbc14f5f25d370b9834d1ce6722991ad49d4995
df1c7a9a133d221c5c7250b6a4640b2850e123ea764e7c97c72bb8b19644ce83

HTTP Headers

GET /-4bG84K8K5Hg/TiM9SMbKIhI/AAAAAAAAALM/lYimvcvBbwg/s1600/Jane-Fonda1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb3"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane-Fonda1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 33973
X-XSS-Protection: 0

2.bp.blogspot.com/_MXToqpNP51o/TDY_6QT8mZI/AAAAAAAAAww/3l1rpa7fkdE/s1600/jane_fonda_barbarella.jpg

142.250.74.161

200 OK

46 kB

URL HTTP/1.1
2.bp.blogspot.com/_MXToqpNP51o/TDY_6QT8mZI/AAAAAAAAAww/3l1rpa7fkdE/s1600/jane_fonda_barbarella.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 349x509, components 3\012- data
Size
46 kB (46306 bytes)
Hash
a7660de992b566120860ee1283a8641b
d9fe638db918527899952bb3ec2438d2e2ce6e72
f027fe690bd394af87eb49bfa2ac9c13ec6425ba097ef093218650e8f285c10b

HTTP Headers

GET /_MXToqpNP51o/TDY_6QT8mZI/AAAAAAAAAww/3l1rpa7fkdE/s1600/jane_fonda_barbarella.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v30c"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jane_fonda_barbarella.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 46306
X-XSS-Protection: 0

2.bp.blogspot.com/_MtcG6Tn8mk8/TOkytfTy_0I/AAAAAAAAA4o/SO1zawTqwf4/s1600/jane-fonda.jpg

142.250.74.161

200 OK

37 kB

URL HTTP/1.1
2.bp.blogspot.com/_MtcG6Tn8mk8/TOkytfTy_0I/AAAAAAAAA4o/SO1zawTqwf4/s1600/jane-fonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=Lan2 44, software=Google], baseline, precision 8, 400x500, components 3\012- data
Size
37 kB (37401 bytes)
Hash
d3b9399c3fc370cb06ea4143f4374dc8
2c975cda2860ad9379e0de95ada6693041d5e36d
86191172855a3905ec3485974f88aad0df2eda5b7fac1dabdd72d3b606da6de3

HTTP Headers

GET /_MtcG6Tn8mk8/TOkytfTy_0I/AAAAAAAAA4o/SO1zawTqwf4/s1600/jane-fonda.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v98a8"
Expires: Mon, 30 Jan 2023 02:45:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jane-fonda.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:00 GMT
Server: fife
Content-Length: 37401
X-XSS-Protection: 0

3.bp.blogspot.com/_FlMSdJX0fG8/TJxvYSp9OdI/AAAAAAAAABA/yuUh9SIfn78/s72-c/jessica+alba.jpg

142.250.74.161

200 OK

3.3 kB

URL HTTP/1.1
3.bp.blogspot.com/_FlMSdJX0fG8/TJxvYSp9OdI/AAAAAAAAABA/yuUh9SIfn78/s72-c/jessica+alba.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.3 kB (3322 bytes)
Hash
966e7d96fff0f07675484c539779e886
0e22ffe15227050688d2302500ebe9f056c2b34f
95e0cc9e0c5919cebc703efcf4b3a52163dff1551a13689e5817b9bc2924117b

HTTP Headers

GET /_FlMSdJX0fG8/TJxvYSp9OdI/AAAAAAAAABA/yuUh9SIfn78/s72-c/jessica+alba.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v10"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jessica alba.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 3322
X-XSS-Protection: 0

4.bp.blogspot.com/-tkEMJXKuu7I/TcfWrrdUtKI/AAAAAAAAKXQ/z18CKSAb15I/s72-c/michelle-rodriguez-picture-1.jpg

142.250.74.161

200 OK

4.1 kB

URL HTTP/1.1
4.bp.blogspot.com/-tkEMJXKuu7I/TcfWrrdUtKI/AAAAAAAAKXQ/z18CKSAb15I/s72-c/michelle-rodriguez-picture-1.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.1 kB (4095 bytes)
Hash
0b19738f89fa83f2772e3d26c1eecc99
12823f59af2146622c9255d329a63b4e71a93b7f
f2894ad814c49d558faa1d99b411a6c86b81dc8ed9133efdc821b517ef94831f

HTTP Headers

GET /-tkEMJXKuu7I/TcfWrrdUtKI/AAAAAAAAKXQ/z18CKSAb15I/s72-c/michelle-rodriguez-picture-1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2e63"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="michelle-rodriguez-picture-1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 4095
X-XSS-Protection: 0

4.bp.blogspot.com/-G5cM3XaR6jY/Tbq8CNPo41I/AAAAAAAAAIw/i9_--F65Y7s/s72-c/Avril-Lavigne-94.jpg

142.250.74.161

200 OK

4.3 kB

URL HTTP/1.1
4.bp.blogspot.com/-G5cM3XaR6jY/Tbq8CNPo41I/AAAAAAAAAIw/i9_--F65Y7s/s72-c/Avril-Lavigne-94.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.3 kB (4322 bytes)
Hash
fb0c66643d40430b6fed1c75b76a61ba
0253e302476582b50c9e452a91a730a32f7a02e7
608556e449db43506a43fee6c6b29eebf78e06f40994a4207046a9369210861f

HTTP Headers

GET /-G5cM3XaR6jY/Tbq8CNPo41I/AAAAAAAAAIw/i9_--F65Y7s/s72-c/Avril-Lavigne-94.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v8c"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Avril-Lavigne-94.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 4322
X-XSS-Protection: 0

2.bp.blogspot.com/_aFAEiMg9eKI/TNy7o0VoRII/AAAAAAAAPA4/1ZgeTZEFNIc/s1600/Jane%2BFonda%2BBreast%2BCancer%2BScare.jpg

142.250.74.161

200 OK

41 kB

URL HTTP/1.1
2.bp.blogspot.com/_aFAEiMg9eKI/TNy7o0VoRII/AAAAAAAAPA4/1ZgeTZEFNIc/s1600/Jane%2BFonda%2BBreast%2BCancer%2BScare.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, description=05/27/2007 - Jane Fonda - 2007 Cannes Film Festival - Palme D'Or - Arrivals - Palais des Festivals - Cannes, France - Keywords:, software=Google], baseline, precision 8, 500x525, components 3\012- data
Size
41 kB (40899 bytes)
Hash
2c2a73276532c156fcf2cac2118adf75
8f763b004e4346129b0122e1a811ed5342f6730b
1255f1e3ddd262de8b2f2686badb5b55db4652ad40c9269ceec3ce33435f4ff5

HTTP Headers

GET /_aFAEiMg9eKI/TNy7o0VoRII/AAAAAAAAPA4/1ZgeTZEFNIc/s1600/Jane%2BFonda%2BBreast%2BCancer%2BScare.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3c0e"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jane Fonda Breast Cancer Scare.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 40899
X-XSS-Protection: 0

4.bp.blogspot.com/-11t_p0Qelk8/Tasqf4oCRJI/AAAAAAAAGHk/aF6rmDV8V4Y/s1600/83291_j_f_004_122_1179lo.jpg

142.250.74.161

200 OK

189 kB

URL HTTP/1.1
4.bp.blogspot.com/-11t_p0Qelk8/Tasqf4oCRJI/AAAAAAAAGHk/aF6rmDV8V4Y/s1600/83291_j_f_004_122_1179lo.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 200x200, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 785x1208, components 3\012- data
Size
189 kB (188964 bytes)
Hash
a71da6387eaa0df702fc27a1c374093b
787021a685ebf5c9a47d7035b290519a62bbbfeb
7c7db3728489b76bb07d7453a5d0a0dcbe3e122dfbd3040fcb6741b514f9d214

HTTP Headers

GET /-11t_p0Qelk8/Tasqf4oCRJI/AAAAAAAAGHk/aF6rmDV8V4Y/s1600/83291_j_f_004_122_1179lo.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v97bb"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="83291_j_f_004_122_1179lo.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 188964
X-XSS-Protection: 0

2.bp.blogspot.com/-_UT1lBH6O54/TY4azfJHu6I/AAAAAAAACuE/AbAXu6Thom8/s1600/5746_Jane-Fonda.jpg

142.250.74.161

200 OK

305 kB

URL HTTP/1.1
2.bp.blogspot.com/-_UT1lBH6O54/TY4azfJHu6I/AAAAAAAACuE/AbAXu6Thom8/s1600/5746_Jane-Fonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 500x600, components 3\012- data
Size
305 kB (304707 bytes)
Hash
65a52d68dd882aad41959d141f33eb92
fbee5c6a0a3e48c3b9ab6a95d4c3a2e2cba451d5
3fb58fec81b13fe041903b68e1030b078b4a95d55d2460e2de493ce949e40688

HTTP Headers

GET /-_UT1lBH6O54/TY4azfJHu6I/AAAAAAAACuE/AbAXu6Thom8/s1600/5746_Jane-Fonda.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vae1"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5746_Jane-Fonda.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 304707
X-XSS-Protection: 0

2.bp.blogspot.com/-nD-hzFieuhI/Ta__oPuYzqI/AAAAAAAAKDY/PbFJj7HDRPw/s1600/23-jane-fonda.jpg

142.250.74.161

200 OK

76 kB

URL HTTP/1.1
2.bp.blogspot.com/-nD-hzFieuhI/Ta__oPuYzqI/AAAAAAAAKDY/PbFJj7HDRPw/s1600/23-jane-fonda.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 410x513, components 3\012- data
Size
76 kB (75597 bytes)
Hash
dd56af7d02d3296a58390356318315f7
a2a082b27e587a79317fd495260fe06614451804
32c0c20ad8208686f59cd6708ef9db50c902dfd53574f2eeb00709e827b50e24

HTTP Headers

GET /-nD-hzFieuhI/Ta__oPuYzqI/AAAAAAAAKDY/PbFJj7HDRPw/s1600/23-jane-fonda.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2836"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="23-jane-fonda.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 75597
X-XSS-Protection: 0

2.bp.blogspot.com/_NO2UOMMYKZ0/SehMEcUGrpI/AAAAAAAAF_Y/VSfjt3ZIlWk/s72-c/Jennifer+Aniston+hair.jpg

142.250.74.161

200 OK

3.2 kB

URL HTTP/1.1
2.bp.blogspot.com/_NO2UOMMYKZ0/SehMEcUGrpI/AAAAAAAAF_Y/VSfjt3ZIlWk/s72-c/Jennifer+Aniston+hair.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.2 kB (3237 bytes)
Hash
398a6a2a06b718640eb879ed5cdb48e3
d5c1b9aac37826feefb3185e3d0f9701e09167d1
1aaefa88820a2a403105652d258e44937b0bfe585f80f42ebe8f48f7c32ef2b8

HTTP Headers

GET /_NO2UOMMYKZ0/SehMEcUGrpI/AAAAAAAAF_Y/VSfjt3ZIlWk/s72-c/Jennifer+Aniston+hair.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v17f6"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jennifer Aniston hair.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 3237
X-XSS-Protection: 0

www.777seo.com/seo.php?username=loceret&format=468x60

103.224.182.251

302 Found

0 B

URL HTTP/1.1
www.777seo.com/seo.php?username=loceret&format=468x60
IP
103.224.182.251:0
ASN
#133618 Trellian Pty. Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /seo.php?username=loceret&format=468x60 HTTP/1.1
Host: www.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
date: Sun, 29 Jan 2023 02:45:01 GMT
server: Apache/2.4.38 (Debian)
set-cookie: __tad=1674960301.1877299; expires=Wed, 26-Jan-2033 02:45:01 GMT; Max-Age=315360000
location: http://ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51
content-length: 0
content-type: text/html; charset=UTF-8
connection: close

2.bp.blogspot.com/-x1SsHW418fI/TkbgW2X8SHI/AAAAAAAAAFI/fgmcaNh9biU/s72-c/Cute+Short+Haircuts-ac1dd_short_hairstyles_paris_hilton_02.jpg

142.250.74.161

200 OK

3.1 kB

URL HTTP/1.1
2.bp.blogspot.com/-x1SsHW418fI/TkbgW2X8SHI/AAAAAAAAAFI/fgmcaNh9biU/s72-c/Cute+Short+Haircuts-ac1dd_short_hairstyles_paris_hilton_02.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.1 kB (3079 bytes)
Hash
cd24a07d03402245702d40d77a453459
e5ca7d207265f6c3d458eacc152f66fd3a2de1e3
145134189c26b98efe8bb9ff2a231b03f3c43ed78e3f30aeb0a0991f849d3734

HTTP Headers

GET /-x1SsHW418fI/TkbgW2X8SHI/AAAAAAAAAFI/fgmcaNh9biU/s72-c/Cute+Short+Haircuts-ac1dd_short_hairstyles_paris_hilton_02.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aliceinwonderlandchallenge.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v52"
Expires: Mon, 30 Jan 2023 02:45:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Cute Short Haircuts-ac1dd_short_hairstyles_paris_hilton_02.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 29 Jan 2023 02:45:01 GMT
Server: fife
Content-Length: 3079
X-XSS-Protection: 0

ocsp.usertrust.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
9eebd21fd17d1cc6588eeb6d4ef18224
e67a417ea215fe7d93ecfb046ea679a220f56ed7
eb9f6602752128bb36a71c7d998543d4b3b973631c9c53f2ea78865b8bb02c51

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 02:45:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 00:13:51 GMT
Expires: Sun, 05 Feb 2023 00:13:50 GMT
Etag: "e67a417ea215fe7d93ecfb046ea679a220f56ed7"
Cache-Control: max-age=595128,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790ea11b49e2b523-OSL

ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51

75.2.11.242

200 OK

7.6 kB

URL HTTP/1.1
ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51
IP
75.2.11.242:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2674)
Size
7.6 kB (7575 bytes)
Hash
8e8557da94aa8dcd4a20195c63e2b058
875e010f91d3f8cb9618c610a67618591b435fe7
6019b1e747b89e87c069626f877e5538d64cfb97f69c01ea05027f3d8a6d58e8

HTTP Headers

GET /seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51 HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 02:45:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket103
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_O5ePnnnHOf91/6p4/GDyK7m3nERNhocpd7zAVdCUSeqWkjEq9KDSh971TjiGCGS87HrV5RADZDZKLNpwBBdFmg==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip

www.google.com/adsense/domains/caf.js

142.250.74.132

200 OK

54 kB

URL HTTP/1.1
www.google.com/adsense/domains/caf.js
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1743)
Size
54 kB (53832 bytes)
Hash
e3dd0c55d773603395cfd990e39110fe
edeecff8f4ec7fe49ee68f8996c01aa645d81506
9d86127cd813c25ca4f9fd5e037c6755842fe3aafb3cd84f9e663e193e868eb8

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Sun, 29 Jan 2023 02:45:01 GMT
Expires: Sun, 29 Jan 2023 02:45:01 GMT
Cache-Control: private, max-age=3600
ETag: "10121701696141887220"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0

ecommerce.cahnrs.wsu.edu/WebLog/safflower/YearToDate/TreeBlank.gif

134.121.193.37

404 Not Found

1.2 kB

URL HTTP/1.1
ecommerce.cahnrs.wsu.edu/WebLog/safflower/YearToDate/TreeBlank.gif
IP
134.121.193.37:0
ASN
#11827 WSU-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1245 bytes)
Hash
5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f

HTTP Headers

GET /WebLog/safflower/YearToDate/TreeBlank.gif HTTP/1.1
Host: ecommerce.cahnrs.wsu.edu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aliceinwonderlandchallenge.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 29 Jan 2023 02:45:00 GMT
Content-Length: 1245

c.parkingcrew.net/scripts/sale_form.js

185.53.178.30

200 OK

761 B

URL HTTP/1.1
c.parkingcrew.net/scripts/sale_form.js
IP
185.53.178.30:0
ASN
#19905 NEUSTAR-AS6

File type
ASCII text
Size
761 B (761 bytes)
Hash
64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3

HTTP Headers

GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 02:45:01 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes

d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/bottom.png

54.230.245.138

200 OK

3.4 kB

URL HTTP/1.1
d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/bottom.png
IP
54.230.245.138:0
ASN
#16509 AMAZON-02

File type
PNG image data, 459 x 156, 8-bit colormap, non-interlaced\012- data
Size
3.4 kB (3359 bytes)
Hash
8f00618489c9024bc741a161effb2e32
7e3146cfd561806169d6201b01ccbe37a256dfc5
ee13da8e8d4bd49a7fdd595de382a3c7dbfef6f8555aeca5292c8c80da75f355

HTTP Headers

GET /themes/cleanPeppermintBlack_657d9013/img/bottom.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3359
Connection: keep-alive
Server: nginx
Date: Sun, 29 Jan 2023 01:37:34 GMT
Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT
Accept-Ranges: bytes
ETag: "62b4441b-d1f"
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O6-LyKBuRIPU0rSs6653OkJ00l_fPaWpG3EPcnTrq34dLIUjIYTyGA==
Age: 4047

ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51&_xafvr=NDBlODM4ZDRlM2EyMDQ3NWUzZjQxNDg2ZmM4ODIxMjAzZDdiYjA5MSw2M2Q1ZGRhZDgyMjA2

75.2.11.242

200 OK

2.5 kB

URL HTTP/1.1
ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51&_xafvr=NDBlODM4ZDRlM2EyMDQ3NWUzZjQxNDg2ZmM4ODIxMjAzZDdiYjA5MSw2M2Q1ZGRhZDgyMjA2
IP
75.2.11.242:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.5 kB (2488 bytes)
Hash
e37d9a287fc99cd74b6e92e59d91bd76
0d1c2fcf8bd811445fec10eeab0730e66582c8e2
175440948751cb48dda722caca0b3e262ad56d0edc1829f78ed2651ab4e6d67a

HTTP Headers

GET /seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51&_xafvr=NDBlODM4ZDRlM2EyMDQ3NWUzZjQxNDg2ZmM4ODIxMjAzZDdiYjA5MSw2M2Q1ZGRhZDgyMjA2 HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 02:45:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_yahoo
X-Buckets: bucket103
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_kRHIdCn2R4AZxIEnW3j3mImAvLVJ+tr90NxGI0Z0EDnI4jqs7fhSkClWcK7hI+ra9sFZJusJrUUv8SbrDyOq5g==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip

c.parkingcrew.net/scripts/sale_form.js

185.53.178.30

200 OK

761 B

URL HTTP/1.1
c.parkingcrew.net/scripts/sale_form.js
IP
185.53.178.30:0
ASN
#19905 NEUSTAR-AS6

File type
ASCII text
Size
761 B (761 bytes)
Hash
64f809e06446647e192fce8d1ec34e09
5b7ced07da42e205067afa88615317a277a4a82c
f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3

HTTP Headers

GET /scripts/sale_form.js HTTP/1.1
Host: c.parkingcrew.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 02:45:02 GMT
Content-Type: application/javascript
Content-Length: 761
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-2f9"
Accept-Ranges: bytes

ww38.777seo.com/favicon.ico

75.2.11.242

200 OK

0 B

URL HTTP/1.1
ww38.777seo.com/favicon.ico
IP
75.2.11.242:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ww38.777seo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww38.777seo.com/seo.php?username=loceret&format=468x60&subid1=20230129-1345-0164-b1ff-0757e00a6a51&_xafvr=NDBlODM4ZDRlM2EyMDQ3NWUzZjQxNDg2ZmM4ODIxMjAzZDdiYjA5MSw2M2Q1ZGRhZDgyMjA2

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 02:45:02 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e801a0fe18e850f23b0099a41be625a9
aed79529e21039f04a86a63be55c60ef497bb390
54e7f0cb3781a719d9edf68daae5253c1d97c3a66a5989f664601972f8ccb876

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160098
Date: Sun, 29 Jan 2023 02:45:02 GMT
Etag: "63d5ac10-1d7"
Expires: Mon, 30 Jan 2023 23:13:20 GMT
Last-Modified: Sat, 28 Jan 2023 23:13:20 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hUN_rvZ0vFyQjncA1wtRnYV5Acrrj5LaJPkFIomkziPGhD65NBLQuw==

brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1

44.195.142.43

200 OK

11 kB

URL HTTP/2
brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
IP
44.195.142.43:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1924)
Size
11 kB (10723 bytes)
Hash
a7974b36017caabb6d44af54dc5b4304
cba024740609b5126faf1ae5b3d4b53ef3db2206
09e7f09d8cb037ccd1c6c16c4514b50a4aee4354a4c2c2fa66e9967448e589d8

HTTP Headers

GET /lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1 HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww38.777seo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:45:03 GMT
content-type: text/html;charset=UTF-8
content-length: 10723
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

brigi-jar.com/style.css

44.195.142.43

200 OK

6.0 kB

URL HTTP/2
brigi-jar.com/style.css
IP
44.195.142.43:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
6.0 kB (5981 bytes)
Hash
2eb024ad11ef5f2e503bfb60117c25d8
235b5ca1205cc2ca3d0b8e4f98ce022512b05c0f
d8efc1d8e1100baf07f4105119fde6f8fe760a9efebf189adc5d9b3dfccc9e0a

HTTP Headers

GET /style.css HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:45:03 GMT
content-type: text/css
content-length: 5981
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 27 Jan 2023 08:18:19 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

brigi-jar.com/main.js

44.195.142.43

200 OK

480 B

URL HTTP/2
brigi-jar.com/main.js
IP
44.195.142.43:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
480 B (480 bytes)
Hash
91558066fecbfc1f6f77842f6aa85a6c
6bb5c5f2cb4efaf30a8ab810e1b453dcb4df108e
efa0d78cbfa66831e490b26d1bb55b14f6c9f8f3a04b1d08403947abd25908ed

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /main.js HTTP/1.1
Host: brigi-jar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/lander?dn=777seo.com&feedid=c29bc710-7228-11ec-932e-0a0baae9769b&tag=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:45:03 GMT
content-type: application/javascript
content-length: 480
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Fri, 27 Jan 2023 08:21:56 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Poppins:300

142.250.74.106

200 OK

869 B

URL HTTP/2
fonts.googleapis.com/css?family=Poppins:300
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
869 B (869 bytes)
Hash
e960ddda004d7b43a810ccc343d9b7fd
0f1155ccfcf5efb7f004484f57c6f517c1a04911
4f736716ec07b4aa6b6e87b6093b8f2d1d82728861a5e7fefe01e8f99076de50

HTTP Headers

GET /css?family=Poppins:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 02:45:03 GMT
date: Sun, 29 Jan 2023 02:45:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brigi-jar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 04:05:29 GMT
expires: Tue, 23 Jan 2024 04:05:29 GMT
cache-control: public, max-age=31536000
age: 513574
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Mate+SC

142.250.74.106

200 OK

309 B

URL HTTP/2
fonts.googleapis.com/css?family=Mate+SC
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
309 B (309 bytes)
Hash
44f9d6e11ab6e9b704deacbd1e8579fd
ccab42cd4e742fda14d5996bb71fcd77e6f227e4
018635657037e23fa8fe991fa25adf6b954534aee58b08b0f970350f2725537a

HTTP Headers

GET /css?family=Mate+SC HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 02:45:03 GMT
date: Sun, 29 Jan 2023 02:45:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
4bb7210f7c12bfdac63e8f72e52f8b47
ae106768598948fc3cac875bc89ad5f0bd8b519c
70441cb064276d97d964a32ca46cbae37a9fd42341284a79ef453d4971ce4797

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161869
Date: Sun, 29 Jan 2023 02:45:03 GMT
Etag: "63d5b2fc-1d7"
Expires: Mon, 30 Jan 2023 23:42:52 GMT
Last-Modified: Sat, 28 Jan 2023 23:42:52 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Xj0W-lsk9brEbmPF7ZB1qFSLmKVhJJsUq9tHrQGOpjzx3DEX1e3EYw==

fonts.googleapis.com/css?family=Poppins

142.250.74.106

200 OK

25 kB

URL HTTP/2
fonts.googleapis.com/css?family=Poppins
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
25 kB (24807 bytes)
Hash
9b515faff9f2b01db4f92f6f8c843a47
a34e8b0be8fa5f6d7d178feeac70b9be9fa204f8
a37e145535935b18b4cf23ca791db97e2e08b1b296c11ddff7d85c0cdfd661bc

HTTP Headers

GET /css?family=Poppins HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 02:45:03 GMT
date: Sun, 29 Jan 2023 02:45:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7417 bytes)
Hash
6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 53032353-8613-49b0-944d-3742236cf50c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcMmFeQIAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340b6-7fe2226327d90db014527c08;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zd8cTO2N1JO-OK3hCDwVO8naClCsg0raJLboRFle-DPSKhR_7k8-Yg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 03:34:31 GMT
age: 83436
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Mate

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Mate
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Mate HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brigi-jar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 02:45:03 GMT
date: Sun, 29 Jan 2023 02:45:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML