r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4851
Expires: Sat, 28 Jan 2023 06:04:14 GMT
Date: Sat, 28 Jan 2023 04:43:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11273
Expires: Sat, 28 Jan 2023 07:51:16 GMT
Date: Sat, 28 Jan 2023 04:43:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2275
Expires: Sat, 28 Jan 2023 05:21:18 GMT
Date: Sat, 28 Jan 2023 04:43:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 04:43:03 GMT
content-type: application/json
age: 20
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QsRIKJlttZSlTLP4UiMYlNdGXB1QeZFZjeKxcAjhMPph3mkhYNscaUN/if6Dwzuflizl7FbwGsA=
x-amz-request-id: RM28G3D18P2CZ3T2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 04:20:50 GMT
age: 1353
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:43:23 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 03:49:03 GMT
age: 3260
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5798
Expires: Sat, 28 Jan 2023 06:20:02 GMT
Date: Sat, 28 Jan 2023 04:43:24 GMT
Connection: keep-alive
practicallypractice2109.blogspot.com/2011/08
142.250.74.1200 OK 15 kB URL HTTP/1.1 practicallypractice2109.blogspot.com/2011/08
IP 142.250.74.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (11249)
Hash 31fac4a2c5e92c69433b5ba8455d65cc
08d36fc0577604d355af314b9e273489a3c947f5
6ae7fbe66a72a51e93a14c97e4a4eee0ec916b2b8edaa2b5a4877efa44b3e4dc
GET /2011/08 HTTP/1.1
Host: practicallypractice2109.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 28 Jan 2023 04:43:24 GMT
Date: Sat, 28 Jan 2023 04:43:24 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 02 Dec 2021 22:26:16 GMT
ETag: W/"8429bcc41b63daac390ae6bb0b810f0614fcdc1bef85b25e3f7c907b097f07d7"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15358
Server: GSE
practicallypractice2109.blogspot.com/js/cookienotice.js
142.250.74.1200 OK 2.0 kB URL HTTP/1.1 practicallypractice2109.blogspot.com/js/cookienotice.js
IP 142.250.74.1:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: practicallypractice2109.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/2011/08
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 28 Jan 2023 04:43:24 GMT
Expires: Sat, 04 Feb 2023 04:43:24 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 27 Jan 2023 21:53:09 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1385208708d03b629d017160dff9c54c
153b27bbe0795f31ebe6e7a10c203e0fd1189e3f
a8303777006d708802fa327d372484c2e5d937b39dad50b578aea65f6d31d03b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24fb829cf6626607036d3aa12e254f2f
993cd8ca527ef8b5ac101471af4589f477bc9f42
54e2f3602c541ad1e17294295b78c571e84d62907e0797f6248c0ed73a5ba4b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24fb829cf6626607036d3aa12e254f2f
993cd8ca527ef8b5ac101471af4589f477bc9f42
54e2f3602c541ad1e17294295b78c571e84d62907e0797f6248c0ed73a5ba4b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:27:21 GMT
expires: Fri, 26 Jan 2024 03:27:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 25 Jan 2023 14:53:31 GMT
content-type: text/css
age: 177363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Sat, 28 Jan 2023 04:43:24 GMT
expires: Sat, 28 Jan 2023 04:43:24 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lokisvenom.files.wordpress.com/2010/01/eye-of-sauron.jpg
192.0.72.30301 Moved Permanently 162 B URL HTTP/1.1 lokisvenom.files.wordpress.com/2010/01/eye-of-sauron.jpg
IP 192.0.72.30:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2010/01/eye-of-sauron.jpg HTTP/1.1
Host: lokisvenom.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://lokisvenom.files.wordpress.com/2010/01/eye-of-sauron.jpg
www.monsterzeug.de/presse/produktbilder/nintendo-wand-tattoos-bild7.jpg
104.22.18.165301 Moved Permanently 0 B URL HTTP/1.1 www.monsterzeug.de/presse/produktbilder/nintendo-wand-tattoos-bild7.jpg
IP 104.22.18.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /presse/produktbilder/nintendo-wand-tattoos-bild7.jpg HTTP/1.1
Host: www.monsterzeug.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 28 Jan 2023 05:43:24 GMT
Location: https://www.monsterzeug.de/presse/produktbilder/nintendo-wand-tattoos-bild7.jpg
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7907112508b51c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
i167.photobucket.com/albums/u133/qball2003/0826101503-00.jpg
54.230.111.106301 Moved Permanently 167 B URL HTTP/1.1 i167.photobucket.com/albums/u133/qball2003/0826101503-00.jpg
IP 54.230.111.106:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/u133/qball2003/0826101503-00.jpg HTTP/1.1
Host: i167.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i167.photobucket.com/albums/u133/qball2003/0826101503-00.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: r_ZIKSWAh0DVgFQM9iT04LQ4PEI2hvYMMb8JfoyvGAJiEN_BpWCs-w==
Vary: Origin
i167.photobucket.com/albums/u133/qball2003/0826101504-00.jpg
54.230.111.106301 Moved Permanently 167 B URL HTTP/1.1 i167.photobucket.com/albums/u133/qball2003/0826101504-00.jpg
IP 54.230.111.106:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/u133/qball2003/0826101504-00.jpg HTTP/1.1
Host: i167.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i167.photobucket.com/albums/u133/qball2003/0826101504-00.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 93ezeu0oB_aEtYr0IZXz4VRdcqfRUFZZhXeUrzWfJuqqNleIEP4UOw==
Vary: Origin
joshuamiller.files.wordpress.com/2008/09/img_0446.jpg
192.0.72.29301 Moved Permanently 162 B URL HTTP/1.1 joshuamiller.files.wordpress.com/2008/09/img_0446.jpg
IP 192.0.72.29:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2008/09/img_0446.jpg HTTP/1.1
Host: joshuamiller.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://joshuamiller.files.wordpress.com/2008/09/img_0446.jpg
laurieapplebyphotography.files.wordpress.com/2009/09/mg_9302-copy.jpg
192.0.72.18301 Moved Permanently 162 B URL HTTP/1.1 laurieapplebyphotography.files.wordpress.com/2009/09/mg_9302-copy.jpg
IP 192.0.72.18:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2009/09/mg_9302-copy.jpg HTTP/1.1
Host: laurieapplebyphotography.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://laurieapplebyphotography.files.wordpress.com/2009/09/mg_9302-copy.jpg
theficstructor.files.wordpress.com/2011/05/gogol-bordello.jpg
192.0.72.22301 Moved Permanently 162 B URL HTTP/1.1 theficstructor.files.wordpress.com/2011/05/gogol-bordello.jpg
IP 192.0.72.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2011/05/gogol-bordello.jpg HTTP/1.1
Host: theficstructor.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://theficstructor.files.wordpress.com/2011/05/gogol-bordello.jpg
www.blogger.com/static/v1/widgets/1253685842-widgets.js
216.58.207.233200 OK 156 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1253685842-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Size 156 kB (156311 bytes)
Hash 282c3db331d4d3d06779b0b8a60ef7c2
c0450142786dc1ce0f3875608b38591ff7eaaf1b
6c3f04bab4d89e7ea271ecb6ffd98b1fb47634d30cc10aa52169c4d2bdefce77
GET /static/v1/widgets/1253685842-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 156311
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 01:57:07 GMT
expires: Tue, 23 Jan 2024 01:57:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 00:54:53 GMT
content-type: text/javascript
age: 441977
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 20:56:35 GMT
expires: Wed, 01 Feb 2023 20:56:35 GMT
cache-control: public, max-age=604800
last-modified: Wed, 25 Jan 2023 14:53:31 GMT
content-type: image/gif
age: 200809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.176.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.176.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7pGXM2vNd3hQNKJZ44UPHQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qSy0ec9RCqtSCWxhYc3Ntxnn/a0=
www.blogger.com/img/share_buttons_20_3.png
216.58.207.233200 OK 5.1 kB URL HTTP/2 www.blogger.com/img/share_buttons_20_3.png
IP 216.58.207.233:0
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 01:38:05 GMT
expires: Thu, 02 Feb 2023 01:38:05 GMT
cache-control: public, max-age=604800
last-modified: Tue, 24 Jan 2023 23:15:21 GMT
content-type: image/png
age: 183919
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 61 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:0
File type ASCII text, with very long lines (1448)
Hash 62f98a42acaa85f40e228f65e5ee2361
a41c1755a6a2708340b74638f11ebdeed8e977db
54acbd2f18406888cbe8ee3fc76b512081c7c1c0102a4b1f7eef6cd11fc60f15
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 60741
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:43:22 GMT
expires: Sat, 27 Jan 2024 18:43:22 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
age: 36002
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-fdLsX5hGfqg/TbwN6BmRFcI/AAAAAAAAHYw/tfckQKMeIlY/s1600/Pop_Singer_Hilary_Duff_Encino_Tattoo_Removal_Clinic_Pics_04.jpg
142.250.74.161404 Not Found 832 B URL HTTP/1.1 1.bp.blogspot.com/-fdLsX5hGfqg/TbwN6BmRFcI/AAAAAAAAHYw/tfckQKMeIlY/s1600/Pop_Singer_Hilary_Duff_Encino_Tattoo_Removal_Clinic_Pics_04.jpg
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-fdLsX5hGfqg/TbwN6BmRFcI/AAAAAAAAHYw/tfckQKMeIlY/s1600/Pop_Singer_Hilary_Duff_Encino_Tattoo_Removal_Clinic_Pics_04.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
1.bp.blogspot.com/_uJCHGvIp3BA/TRWdAQK7QJI/AAAAAAAAF40/Z5rgyphtHog/s1600/the_rock_tattoos_dwayne_johnson%25252527s_tattoo_wwe%252B5.jpg
142.250.74.161200 OK 630 kB URL HTTP/1.1 1.bp.blogspot.com/_uJCHGvIp3BA/TRWdAQK7QJI/AAAAAAAAF40/Z5rgyphtHog/s1600/the_rock_tattoos_dwayne_johnson%25252527s_tattoo_wwe%252B5.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 1062x1290, components 3\012- data
Size 630 kB (630365 bytes)
Hash b70f9e94d089024bc1b950aea10b8c63
6ff55d4ec228a42d3cff773bbd560f6546d77a15
66edd7d33d1e427c0f59f925d01bafa1b47dc3e99e79c06b6636ecdf1e715469
GET /_uJCHGvIp3BA/TRWdAQK7QJI/AAAAAAAAF40/Z5rgyphtHog/s1600/the_rock_tattoos_dwayne_johnson%25252527s_tattoo_wwe%252B5.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v178d"
Expires: Sun, 29 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="the_rock_tattoos_dwayne_johnson's_tattoo_wwe 5.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: fife
Content-Length: 630365
X-XSS-Protection: 0
www.manufacturer.com/cimages/product/www.alibaba.com/1029/w/Sell_old_lover_laser_machine_for_tattoo_removal.jpg
23.23.44.254301 Moved Permanently 327 B URL HTTP/1.1 www.manufacturer.com/cimages/product/www.alibaba.com/1029/w/Sell_old_lover_laser_machine_for_tattoo_removal.jpg
IP 23.23.44.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3ecd23df23532e34110f47ea41176208
0ad2a1e0a144d7cbeb6f2ff45c46a70cf9713a57
12e31f859d9e095a5628f203f8902abab09b41d582e0c2f64464fc0ef6dde86b
GET /cimages/product/www.alibaba.com/1029/w/Sell_old_lover_laser_machine_for_tattoo_removal.jpg HTTP/1.1
Host: www.manufacturer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: Apache/2.4.43 (Unix) OpenSSL/1.1.1n
Location: https://www.manufacturer.com/cimages/product/www.alibaba.com/1029/w/Sell_old_lover_laser_machine_for_tattoo_removal.jpg
Content-Length: 327
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
i25.tinypic.com/qx418m.jpg
54.230.111.66301 Moved Permanently 0 B URL HTTP/1.1 i25.tinypic.com/qx418m.jpg
IP 54.230.111.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /qx418m.jpg HTTP/1.1
Host: i25.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Sat, 28 Jan 2023 04:43:25 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: goCS2U-rp_9dsVf_GLLIsYuqYCxKRcDSlRfq3DkrEevGAqWIBj6_-g==
www.forevergeek.com/wp-content/media/2010/05/tattoo-flowchart.jpg
104.26.10.56301 Moved Permanently 0 B URL HTTP/1.1 www.forevergeek.com/wp-content/media/2010/05/tattoo-flowchart.jpg
IP 104.26.10.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/media/2010/05/tattoo-flowchart.jpg HTTP/1.1
Host: www.forevergeek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 28 Jan 2023 05:43:24 GMT
Location: https://www.forevergeek.com/wp-content/media/2010/05/tattoo-flowchart.jpg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sj%2F3ovouDtq0%2BMQSzN57AvG%2B8c4AhvIRNMWBSLi%2FuDjkmYNPFAYhHR0kiXiYxFGmrUCqvO2LirmLyCZrMMOizUSwFiDULrr%2FBQ9n6qiqCoy%2BDM9kYwVR7buvUw7FEJ9A%2FuXwKa4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79071126c9711c12-OSL
alt-svc: h2=":443"; ma=60
www.blogger.com/img/logo-16.png
216.58.207.233200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.233:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 25 Jan 2023 23:18:49 GMT
Expires: Wed, 01 Feb 2023 23:18:49 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 25 Jan 2023 14:53:31 GMT
Content-Type: image/png
Age: 192275
i170.photobucket.com/albums/u256/fashioneptunes/david-beckham-forearm-tatto.jpg
54.230.111.82301 Moved Permanently 167 B URL HTTP/1.1 i170.photobucket.com/albums/u256/fashioneptunes/david-beckham-forearm-tatto.jpg
IP 54.230.111.82:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/u256/fashioneptunes/david-beckham-forearm-tatto.jpg HTTP/1.1
Host: i170.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i170.photobucket.com/albums/u256/fashioneptunes/david-beckham-forearm-tatto.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8tGh1qVRLMoxleVWvhvQtYPF-wC2xtjhgJ3sjTkCwTkhML-Wfa5w5w==
Vary: Origin
lh4.ggpht.com/-jGrnhIm32Fg/SoiEoqCdhPI/AAAAAAAABEM/tF_7F93pe9E/IMG_0702.jpg
142.250.74.161200 OK 93 kB URL HTTP/1.1 lh4.ggpht.com/-jGrnhIm32Fg/SoiEoqCdhPI/AAAAAAAABEM/tF_7F93pe9E/IMG_0702.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 384x512, components 3\012- data
Hash fb40c6c56f449bee97cbffdd6b9236cc
4c2c675afb8886849a7c95e89f3bcc9c0f58d683
d9e410c5e96f0f0e7986d749f5a4adc3a55d0b6704d29dfb482e8faac73df709
GET /-jGrnhIm32Fg/SoiEoqCdhPI/AAAAAAAABEM/tF_7F93pe9E/IMG_0702.jpg HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v443"
Expires: Sun, 29 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_0702.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: fife
Content-Length: 93134
X-XSS-Protection: 0
ny-image2.etsy.com/il_fullxfull.185996146.jpg
35.190.25.237301 Moved Permanently 261 B URL HTTP/1.1 ny-image2.etsy.com/il_fullxfull.185996146.jpg
IP 35.190.25.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9a26995620846f8fedd78dac9fd5f236
2e85b158bd2d3c3a9db0dc99742a2d9b2471b287
d58577daa7552e115c58f8e177779b0cbef3c9e197d4c7e4dcf3adc6d359deb4
GET /il_fullxfull.185996146.jpg HTTP/1.1
Host: ny-image2.etsy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: Apache
Location: http://img0.etsystatic.com/il_fullxfull.185996146.jpg
Content-Length: 261
Content-Type: text/html; charset=iso-8859-1
Via: 1.1 google
4.bp.blogspot.com/-yJYIgP869n4/TkKhj9GEI7I/AAAAAAAAwkY/6aYjt2QL1mc/s1600/IMG_1569.JPG
142.250.74.161200 OK 263 kB URL HTTP/1.1 4.bp.blogspot.com/-yJYIgP869n4/TkKhj9GEI7I/AAAAAAAAwkY/6aYjt2QL1mc/s1600/IMG_1569.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 180x180, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 810x1080, components 3\012- data
Size 263 kB (262875 bytes)
Hash c9ac0c9d0242d37b54f6185801750d31
3093ec2f06aefa50a54125de8c87262a594f27c6
f84050711945279cdf481d34b134bc462f6b830fd5fbff318231f5fd14ddaa82
GET /-yJYIgP869n4/TkKhj9GEI7I/AAAAAAAAwkY/6aYjt2QL1mc/s1600/IMG_1569.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc246"
Expires: Sun, 29 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_1569.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: fife
Content-Length: 262875
X-XSS-Protection: 0
1.bp.blogspot.com/_jyPtkwaX0uo/TGFA6objRLI/AAAAAAAAAjY/HzcKr5wnolo/s1600/JackParow-TEMPO02.jpg
142.250.74.161200 OK 200 kB URL HTTP/1.1 1.bp.blogspot.com/_jyPtkwaX0uo/TGFA6objRLI/AAAAAAAAAjY/HzcKr5wnolo/s1600/JackParow-TEMPO02.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1579x1231, components 3\012- data
Size 200 kB (199673 bytes)
Hash f164d7731229679e7373712c6e258e9f
ff9c98889b5e09d2b516a38f6054aa3fbc5f1c6b
ddfb0968805dc4a0060858e4d9efa0193203d4f7ad35ae799ebb00a6af144dd7
GET /_jyPtkwaX0uo/TGFA6objRLI/AAAAAAAAAjY/HzcKr5wnolo/s1600/JackParow-TEMPO02.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v236"
Expires: Sun, 29 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="JackParow-TEMPO02.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: fife
Content-Length: 199673
X-XSS-Protection: 0
customskinstattoo.files.wordpress.com/2011/06/jimmy-rose-filigre21.jpg
192.0.72.25301 Moved Permanently 162 B URL HTTP/1.1 customskinstattoo.files.wordpress.com/2011/06/jimmy-rose-filigre21.jpg
IP 192.0.72.25:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2011/06/jimmy-rose-filigre21.jpg HTTP/1.1
Host: customskinstattoo.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://customskinstattoo.files.wordpress.com/2011/06/jimmy-rose-filigre21.jpg
customskinstattoo.files.wordpress.com/2011/06/jimmy-rose-filigre11.jpg
192.0.72.25301 Moved Permanently 162 B URL HTTP/1.1 customskinstattoo.files.wordpress.com/2011/06/jimmy-rose-filigre11.jpg
IP 192.0.72.25:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2011/06/jimmy-rose-filigre11.jpg HTTP/1.1
Host: customskinstattoo.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://customskinstattoo.files.wordpress.com/2011/06/jimmy-rose-filigre11.jpg
im01.thewallpapers.org/photo/22552/cross-country-ski.jpg%253Ftattoosformenonforearm
104.21.234.126302 Found 0 B URL HTTP/1.1 im01.thewallpapers.org/photo/22552/cross-country-ski.jpg%253Ftattoosformenonforearm
IP 104.21.234.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /photo/22552/cross-country-ski.jpg%253Ftattoosformenonforearm HTTP/1.1
Host: im01.thewallpapers.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 302 Found
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: /zoom/22552/cross-country-ski.jpg%3Ftattoosformenonforearm
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vd1w%2Bqo%2B0opH%2BuRpUbVsJf4dJSjornfUhrn5%2BjIk0uIQsMH7C%2BziIpkUu5f1zFeqfgurGcNYQjpDLijOGfC3Yy7pim4rt9Q18K2%2FcLZEPnEjxsGmVdC8laY5uMBcBXao4YHQMaQX1hOf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 790711280f75240f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fc05.deviantart.net/fs35/f/2008/291/5/d/Zodiac_Sign_Tattoo___Pisces_by_MPtribe.jpg
52.36.59.147301 Moved Permanently 178 B URL HTTP/1.1 fc05.deviantart.net/fs35/f/2008/291/5/d/Zodiac_Sign_Tattoo___Pisces_by_MPtribe.jpg
IP 52.36.59.147:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /fs35/f/2008/291/5/d/Zodiac_Sign_Tattoo___Pisces_by_MPtribe.jpg HTTP/1.1
Host: fc05.deviantart.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Server: nginx
Location: http://orig05.deviantart.net/07fa/f/2008/291/5/d/zodiac_sign_tattoo___pisces_by_mptribe.jpg
api.ning.com/files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg
208.82.16.81301 Moved Permanently 164 B URL HTTP/1.1 api.ning.com/files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg
IP 208.82.16.81:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0ddfe38fe52729401ec28b0c671ff9cc
168fb534ee60922a73876b99d57259cb09a5be73
639762e638bc698ac208f1a8d5f5af04901e9df719978deb315e9e6c7b817f9a
GET /files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg HTTP/1.1
Host: api.ning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 164
Connection: keep-alive
Location: https://www.ning.com/files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg
Server: Unknown
www.tattoo22.com/fullbodytattoo0010.jpg
35.209.1.24301 Moved Permanently 255 B URL HTTP/1.1 www.tattoo22.com/fullbodytattoo0010.jpg
IP 35.209.1.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4e2c986e24890eea9c3694fa4d27d44e
aa698add94535584be2515492792edb13efcb62d
b1e50d8315e4625d441244e3127ef79c2ad80a7b7e199c87a1cb1808c25c4912
GET /fullbodytattoo0010.jpg HTTP/1.1
Host: www.tattoo22.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 255
Connection: keep-alive
Location: https://www.tattoo22.com/fullbodytattoo0010.jpg
Host-Header: 6b7412fb82ca5edfd0917e3957f05d89
X-Proxy-Cache: MISS
X-Proxy-Cache-Info: 0301 NC:000000 UP:
3.bp.blogspot.com/_iSaRxT-X46Y/TCeu6ENZjJI/AAAAAAAANXE/LVBAgKnlrJY/s1600/DSC00023.JPG
142.250.74.161200 OK 170 kB URL HTTP/1.1 3.bp.blogspot.com/_iSaRxT-X46Y/TCeu6ENZjJI/AAAAAAAANXE/LVBAgKnlrJY/s1600/DSC00023.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x1200, components 3\012- data
Size 170 kB (169520 bytes)
Hash 0f1c7c45d86ea36361a719bf7faaa24c
02f7764d34ca288aaf91cdaea9c10adce41a0b30
3a300d27e3b07f3e7048fdc71689bcbcc42e219be80ab3b664045f692890d81c
GET /_iSaRxT-X46Y/TCeu6ENZjJI/AAAAAAAANXE/LVBAgKnlrJY/s1600/DSC00023.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3571"
Expires: Sun, 29 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC00023.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: fife
Content-Length: 169520
X-XSS-Protection: 0
joshuamiller.files.wordpress.com/2008/09/img_0446.jpg
192.0.72.29200 OK 441 kB URL HTTP/2 joshuamiller.files.wordpress.com/2008/09/img_0446.jpg
IP 192.0.72.29:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=9, manufacturer=Apple, model=iPhone, xresolution=136, yresolution=144, resolutionunit=2, datetime=2008:09:07 19:22:18, GPS-Data], baseline, precision 8, 1200x1600, components 3\012- data
Size 441 kB (441420 bytes)
Hash 069adc1b0333c0dbd50f6ebf43f0dbab
1d6cbff3bf6971df6938bbf926fcf1e17766d7c9
e0b69b15bfac039eedeb9b357152f914e2939f07799397b495c2d33bcd25b311
GET /2008/09/img_0446.jpg HTTP/1.1
Host: joshuamiller.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:43:24 GMT
content-type: image/jpeg
content-length: 441420
last-modified: Thu, 18 Sep 2008 23:21:56 GMT
expires: Mon, 06 Mar 2023 06:25:20 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://joshuamiller.wordpress.com
vary: Origin
x-nc: MISS arn 29 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.tattoosdaily.com/arm-tattoos/arm-tattoos-215220_0146.jpg
99.83.154.118400 Bad Request 20 B URL HTTP/1.1 www.tattoosdaily.com/arm-tattoos/arm-tattoos-215220_0146.jpg
IP 99.83.154.118:0
File type ASCII text, with no line terminators
Hash 64b3d0bcb16e406cdd665ec49fefb7f1
8da5d8ac9123e50bbd4293b111f6f640f864256b
cfe229c58e25f36ffab9053add1dcfdf3abe1cb26b7b0a3d22e9514f757b98d5
GET /arm-tattoos/arm-tattoos-215220_0146.jpg HTTP/1.1
Host: www.tattoosdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 400 Bad Request
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
X-Blocked: 11015.10
www.tattoosdaily.com/tribal-dragon-tattoo/tribal-dragon-tattoo-215365_0652.jpg
99.83.154.118400 Bad Request 20 B URL HTTP/1.1 www.tattoosdaily.com/tribal-dragon-tattoo/tribal-dragon-tattoo-215365_0652.jpg
IP 99.83.154.118:0
File type ASCII text, with no line terminators
Hash 64b3d0bcb16e406cdd665ec49fefb7f1
8da5d8ac9123e50bbd4293b111f6f640f864256b
cfe229c58e25f36ffab9053add1dcfdf3abe1cb26b7b0a3d22e9514f757b98d5
GET /tribal-dragon-tattoo/tribal-dragon-tattoo-215365_0652.jpg HTTP/1.1
Host: www.tattoosdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 400 Bad Request
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
X-Blocked: 11015.10
ny-image3.etsy.com/il_fullxfull.49464815.jpg
35.190.25.237301 Moved Permanently 260 B URL HTTP/1.1 ny-image3.etsy.com/il_fullxfull.49464815.jpg
IP 35.190.25.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 09c8a19da2d4eb315c5ec86b479ed669
bb1f1cea983458e855ce06a5a84fb9acedf4280b
084926713ee668765f1d57327f792d5a46fc8011c107318478d4ccf7d9608a7f
GET /il_fullxfull.49464815.jpg HTTP/1.1
Host: ny-image3.etsy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: Apache
Location: http://img0.etsystatic.com/il_fullxfull.49464815.jpg
Content-Length: 260
Content-Type: text/html; charset=iso-8859-1
Via: 1.1 google
3.bp.blogspot.com/_uJCHGvIp3BA/TRWdGk6V3-I/AAAAAAAAF44/ndyHJPRClSg/s1600/the_rock_tattoos_dwayne_johnson%25252527s_tattoo_wwe%252B6.jpg
142.250.74.161200 OK 230 kB URL HTTP/1.1 3.bp.blogspot.com/_uJCHGvIp3BA/TRWdGk6V3-I/AAAAAAAAF44/ndyHJPRClSg/s1600/the_rock_tattoos_dwayne_johnson%25252527s_tattoo_wwe%252B6.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 1000x965, components 3\012- data
Size 230 kB (230260 bytes)
Hash 7d1aa0d359ed12a87ef9af92956c14cb
5a2d81aa8a7ca5a205b7975be39bd13c0ade549b
4db064c08a1c84171bbcb2cf5f4df3a5ff025e09c73dc1e6af9c6e6de0079118
GET /_uJCHGvIp3BA/TRWdGk6V3-I/AAAAAAAAF44/ndyHJPRClSg/s1600/the_rock_tattoos_dwayne_johnson%25252527s_tattoo_wwe%252B6.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v178e"
Expires: Sun, 29 Jan 2023 04:43:24 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="the_rock_tattoos_dwayne_johnson's_tattoo_wwe 6.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: fife
Content-Length: 230260
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 09:56:38 GMT
Expires: Fri, 10 Feb 2023 09:56:38 GMT
Cache-Control: public, max-age=1209600
Age: 67607
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
www.blogger.com/dyn-css/authorization.css?targetBlogID=8053023935064415525&zx=68543a98-ff51-4ce2-8dbf-d034ac6a353a
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=8053023935064415525&zx=68543a98-ff51-4ce2-8dbf-d034ac6a353a
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=8053023935064415525&zx=68543a98-ff51-4ce2-8dbf-d034ac6a353a HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Jan 2023 04:43:24 GMT
last-modified: Sat, 28 Jan 2023 04:43:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tinypic.com/images/goodbye.jpg
54.230.111.79200 OK 16 kB URL HTTP/1.1 tinypic.com/images/goodbye.jpg
IP 54.230.111.79:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Hash 32af06ac4b80d728f7e4c8780eb6b6d7
dd3198f4361e94f2c3606474e04a629e42402d02
f610dc2752e938d77dab1c4e9fb1f0f7f53b25e527d130ce4e034b7de09da053
GET /images/goodbye.jpg HTTP/1.1
Host: tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 15616
Connection: keep-alive
Date: Fri, 27 Jan 2023 06:58:14 GMT
Last-Modified: Wed, 18 Sep 2019 21:23:53 GMT
ETag: "32af06ac4b80d728f7e4c8780eb6b6d7"
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LTAjuoAQWj-6oQYNC-SFVGfKhEcOPgjalmxSPj4FCxIlXQ98tXKw3Q==
Age: 78312
mogoel.com/wp-content/uploads/2011/03/Liberty-tatoo-design-21.jpg
35.186.238.101200 OK 2.8 kB URL HTTP/1.1 mogoel.com/wp-content/uploads/2011/03/Liberty-tatoo-design-21.jpg
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2826), with no line terminators
Hash bc186b2285de2ff9290e70a0abc0d540
f3e78e6109df41d7bc5c763f25ed63904aaebf63
d3e8ebda72162d441bb37d6b69041d0734497fe3efbf4dcb2f4694a31bdc0f99
GET /wp-content/uploads/2011/03/Liberty-tatoo-design-21.jpg HTTP/1.1
Host: mogoel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 2826
Last-Modified: Mon, 23 Jan 2023 23:54:34 GMT
ETag: "63cf1e3a-b0a"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_fmojsVtk3GW9nytg8CkZcs2SSnFMRu3TLfWfmWDKexVb2Xwg3rrSwqN/aZwNO9zc1llmUGS2CfsmO1f8Kpjn1A
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
mogoel.com/wp-content/uploads/2011/04/Cross-tattoo-design-4.jpg
35.186.238.101200 OK 2.8 kB URL HTTP/1.1 mogoel.com/wp-content/uploads/2011/04/Cross-tattoo-design-4.jpg
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2826), with no line terminators
Hash bc186b2285de2ff9290e70a0abc0d540
f3e78e6109df41d7bc5c763f25ed63904aaebf63
d3e8ebda72162d441bb37d6b69041d0734497fe3efbf4dcb2f4694a31bdc0f99
GET /wp-content/uploads/2011/04/Cross-tattoo-design-4.jpg HTTP/1.1
Host: mogoel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: text/html
Content-Length: 2826
Last-Modified: Mon, 23 Jan 2023 23:54:39 GMT
ETag: "63cf1e3f-b0a"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_TJUV/zq+24PRhLgFhg96UnAJJUIp0PtDNvqtEn9LgFSYQv8WVWm0CpQK2Olzs8LstYEsWhr4Rb+6Q/c0/Wc74w
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
www.blogger.com/navbar.g?targetBlogID=8053023935064415525&blogName=Valorie%27s+blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://practicallypractice2109.blogspot.com/search&blogLocale=fil&v=2&homepageUrl=http://practicallypractice2109.blogspot.com/&vt=-3446428479919507480&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
216.58.207.233200 OK 2.6 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=8053023935064415525&blogName=Valorie%27s+blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://practicallypractice2109.blogspot.com/search&blogLocale=fil&v=2&homepageUrl=http://practicallypractice2109.blogspot.com/&vt=-3446428479919507480&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 216.58.207.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash a7ce9109fe4f09eb6428bc0bdc1d74f9
67d9310ffa83d1afc6cdb4330062bbfb1953db7d
36c7a9b1f14c5b80f3a3caa4c53a37e6f20ae373af27e622fa7f86f29a86bf0a
GET /navbar.g?targetBlogID=8053023935064415525&blogName=Valorie%27s+blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://practicallypractice2109.blogspot.com/search&blogLocale=fil&v=2&homepageUrl=http://practicallypractice2109.blogspot.com/&vt=-3446428479919507480&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Jan 2023 04:43:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2602
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.geekytattoos.com/wp-content/uploads/2011/06/Nintendo-Zappers.jpg
66.33.211.59200 OK 161 kB URL HTTP/1.1 www.geekytattoos.com/wp-content/uploads/2011/06/Nintendo-Zappers.jpg
IP 66.33.211.59:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, manufacturer=Motorola, model=DROIDX 036a0021fff80000015d9bdd13028020, orientation=upper-left, xresolution=274, yresolution=282, resolutionunit=2, software=Adobe Photoshop CS4 Macintosh, datetime=2011:06:13 19:11:11, GPS-Data], baseline, precision 8, 1200x900, components 3\012- data
Size 161 kB (160789 bytes)
Hash 0eb79876c0b833805b25cd7e9aa01537
a0b44117990e2fba8ad20461f648c62953aa581c
6e27be7d8145e8d655767897d6d7d2e7aa57c2734f5e74ad4ac784ba15b3c02a
GET /wp-content/uploads/2011/06/Nintendo-Zappers.jpg HTTP/1.1
Host: www.geekytattoos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 15 Jun 2011 05:21:34 GMT
ETag: "27415-4a5b9536c9380"
Accept-Ranges: bytes
Content-Length: 160789
Cache-Control: max-age=2592000
Expires: Mon, 27 Feb 2023 04:43:24 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Content-Type: image/jpeg
tattoodesignspictures.com/wp-content/uploads/2009/09/0000041837_20070801164514.jpg
204.11.56.48200 OK 195 B URL HTTP/1.1 tattoodesignspictures.com/wp-content/uploads/2009/09/0000041837_20070801164514.jpg
IP 204.11.56.48:0
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c6462ed23c8cc368bd681226f89ea628
9bcadae0cb0ed0ff9661a5e409dd5120e2b68900
839370a7060ce2aca81cb5add1709bb5c9ce2b3fd8045c7a795d336a02a63499
GET /wp-content/uploads/2009/09/0000041837_20070801164514.jpg HTTP/1.1
Host: tattoodesignspictures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: Apache
ntCoent-Length: 272
Keep-Alive: timeout=5, max=123
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Cache-Control: private
Content-Encoding: gzip
Content-Length: 195
4.bp.blogspot.com/_yOkQ423ETrY/S-w9RQwsUoI/AAAAAAAAACw/ub5-0E73bjA/s1600/IMG_5630.jpg
142.250.74.161200 OK 183 kB URL HTTP/1.1 4.bp.blogspot.com/_yOkQ423ETrY/S-w9RQwsUoI/AAAAAAAAACw/ub5-0E73bjA/s1600/IMG_5630.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1200x1600, components 3\012- data
Size 183 kB (182649 bytes)
Hash af09eb546042eedda93ab29b15cb5629
5efc1f62db13bcf7dec225a4bfb87914e0878cd5
75d84508557aa93a9652d64ad7b6872fa5cb9c2d11b6c095d5db2e862e01d436
GET /_yOkQ423ETrY/S-w9RQwsUoI/AAAAAAAAACw/ub5-0E73bjA/s1600/IMG_5630.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2c"
Expires: Sun, 29 Jan 2023 04:43:25 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_5630.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: fife
Content-Length: 182649
X-XSS-Protection: 0
www.getcutie.co.uk/shopImages/185/fabric-Skulls%25252520on%25252520cream%25252520%25252520with%25252520pink%25252520roses.jpg%25253Fwidth%25253D286%252526height%25253D344
23.227.38.32301 Moved Permanently 240 B URL HTTP/1.1 www.getcutie.co.uk/shopImages/185/fabric-Skulls%25252520on%25252520cream%25252520%25252520with%25252520pink%25252520roses.jpg%25253Fwidth%25253D286%252526height%25253D344
IP 23.227.38.32:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash a03d2d7d893d95c0877a3c01e5f3b993
67ad0415ece89e6d0a09635c341a07ff6fc87c72
1be1d3ebaccb5616d71b6691cf728e2c53acc0cbc13fedbf041216b012faacfc
GET /shopImages/185/fabric-Skulls%25252520on%25252520cream%25252520%25252520with%25252520pink%25252520roses.jpg%25253Fwidth%25253D286%252526height%25253D344 HTTP/1.1
Host: www.getcutie.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 297
X-Sorting-Hat-ShopId: 18151539
X-Storefront-Renderer-Rendered: 1
Location: https://getcutie.co.uk/shopImages/185/fabric-Skulls%25252520on%25252520cream%25252520%25252520with%25252520pink%25252520roses.jpg%25253Fwidth%25253D286%252526height%25253D344
X-Redirect-Reason: https_required
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none';
X-ShopId: 18151539
X-ShardId: 297
Vary: Accept
X-Shopify-Stage: canary
X-Dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
X-Request-ID: db2d21d9-13ea-4e03-8eb0-244fd4492e55
X-XSS-Protection: 1; mode=block
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KHMiTy6Hbpe4imhBM1wPKX98Q7V%2BaWBtuJmA6dZcC5UxMVXWCrUO3HtmrmT2WdshJRgDWKb3ukSGPdVbBBbNV%2FCKuZw%2FbwJmPBfRq1eaYq%2BajPC9GhRftJULIJyrV9RkrBY0lA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server-Timing: processing;dur=12, db;dur=5, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=87.999821
Server: cloudflare
CF-RAY: 7907112959e30b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
tattooshut.com/wp-content/gallery/celebrity-tattoos/celebrity-tattoos-89.jpg
192.177.18.115301 Moved Permanently 0 B URL HTTP/1.1 tattooshut.com/wp-content/gallery/celebrity-tattoos/celebrity-tattoos-89.jpg
IP 192.177.18.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/gallery/celebrity-tattoos/celebrity-tattoos-89.jpg HTTP/1.1
Host: tattooshut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.tattooshut.com/wp-content/gallery/celebrity-tattoos/celebrity-tattoos-89.jpg
tattooshut.com/wp-content/gallery/girls-tattoos/girls-tattoos-8.jpg
192.177.18.115301 Moved Permanently 0 B URL HTTP/1.1 tattooshut.com/wp-content/gallery/girls-tattoos/girls-tattoos-8.jpg
IP 192.177.18.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/gallery/girls-tattoos/girls-tattoos-8.jpg HTTP/1.1
Host: tattooshut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.tattooshut.com/wp-content/gallery/girls-tattoos/girls-tattoos-8.jpg
img0.etsystatic.com/il_fullxfull.49464815.jpg
151.101.65.224301 Moved Permanently 0 B URL HTTP/1.1 img0.etsystatic.com/il_fullxfull.49464815.jpg
IP 151.101.65.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /il_fullxfull.49464815.jpg HTTP/1.1
Host: img0.etsystatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://img0.etsystatic.com/il/fbfbcd/49464815/il_fullxfull.49464815.jpg?optimize=low&auto=webp
Accept-Ranges: bytes
Date: Sat, 28 Jan 2023 04:43:25 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1630-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1674881005.096569,VS0,VE0
Timing-Allow-Origin: *
Strict-Transport-Security: max-age=300
img0.etsystatic.com/il_fullxfull.185996146.jpg
151.101.65.224301 Moved Permanently 0 B URL HTTP/1.1 img0.etsystatic.com/il_fullxfull.185996146.jpg
IP 151.101.65.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /il_fullxfull.185996146.jpg HTTP/1.1
Host: img0.etsystatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://img0.etsystatic.com/il/1cebad/185996146/il_fullxfull.185996146.jpg?optimize=low&auto=webp
Accept-Ranges: bytes
Date: Sat, 28 Jan 2023 04:43:25 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1622-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1674881005.096806,VS0,VE0
Timing-Allow-Origin: *
Strict-Transport-Security: max-age=300
3.bp.blogspot.com/_GqFPZmVSQH8/TBr1q0QzTqI/AAAAAAAAGGI/Jah0Wpf7qQ0/s1600/DSCN5705.JPG
142.250.74.161200 OK 129 kB URL HTTP/1.1 3.bp.blogspot.com/_GqFPZmVSQH8/TBr1q0QzTqI/AAAAAAAAGGI/Jah0Wpf7qQ0/s1600/DSCN5705.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x1200, components 3\012- data
Size 129 kB (129028 bytes)
Hash 49d9975f2fbee3c64f5f613af699b9b1
a85f1568c74ac661157196263b0cd1deb95b6715
e1fef3c1be62f8e70bfa1993d9a89a33a545ca59460407fbfd3a3c04e71b50f4
GET /_GqFPZmVSQH8/TBr1q0QzTqI/AAAAAAAAGGI/Jah0Wpf7qQ0/s1600/DSCN5705.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1862"
Expires: Sun, 29 Jan 2023 04:43:25 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSCN5705.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: fife
Content-Length: 129028
X-XSS-Protection: 0
4.bp.blogspot.com/_eW2CVRs01pM/TGFFWJhV9XI/AAAAAAAAAQk/Xec6Jah7ac0/s1600/DSC01689.JPG
142.250.74.161200 OK 310 kB URL HTTP/1.1 4.bp.blogspot.com/_eW2CVRs01pM/TGFFWJhV9XI/AAAAAAAAAQk/Xec6Jah7ac0/s1600/DSC01689.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x1200, components 3\012- data
Size 310 kB (310419 bytes)
Hash 5ee957c38169862bae665426923cddbe
2073938c864bdaa96fff0729ca1d34a6f4de6e91
c7d4629610feb23a455fe88afb44396dbc590cc2c2637c4871ead4799fb3e514
GET /_eW2CVRs01pM/TGFFWJhV9XI/AAAAAAAAAQk/Xec6Jah7ac0/s1600/DSC01689.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v109"
Expires: Sun, 29 Jan 2023 04:43:25 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC01689.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: fife
Content-Length: 310419
X-XSS-Protection: 0
apis.google.com/js/platform:gapi.iframes.style.common.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform:gapi.iframes.style.common.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1429)
Hash eb1d12f632b489080577377bf9deb08b
2ce8d059c1a7b717b40280fc380745500319c805
58c8f5569695f851b0319332019116d5362fd63de9c836594e185923cea90563
GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20960
date: Sat, 28 Jan 2023 04:43:25 GMT
expires: Sat, 28 Jan 2023 04:43:25 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "cd99eb5425d8c161"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
im01.thewallpapers.org/zoom/22552/cross-country-ski.jpg%3Ftattoosformenonforearm
104.21.234.126200 OK 1.7 MB URL HTTP/1.1 im01.thewallpapers.org/zoom/22552/cross-country-ski.jpg%3Ftattoosformenonforearm
IP 104.21.234.126:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2010:02:07 14:30:45], baseline, precision 8, 2560x1600, components 3\012- data
Size 1.7 MB (1650118 bytes)
Hash 26ef431f257639630902cabbe250624b
b0992d06f3d38d6781d68a8d1da0cb6d79fcd51e
f0861df359a121203d823b694eee7880bb17ba4aa143dea5ec42f3fae1d0664f
GET /zoom/22552/cross-country-ski.jpg%3Ftattoosformenonforearm HTTP/1.1
Host: im01.thewallpapers.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: image/jpg
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eUg2XPZL9Y0uqCpI1tYUentpAxmCVJuenbmHBzWsJ1IgKry4ldnElH4dMewUWPJa4J74fm9xaqCpLuroCK3mPHqlBMi5%2B63IqQgeiJM2dAjN%2FwpBeFI%2F9pbdY3MyEWiGFF1W9SExmJl%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79071128dff3240f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
3.bp.blogspot.com/_Z9X9GXlFGcE/S7OjcKVB_VI/AAAAAAAABdI/Fd_Uc8ML-aw/s1600/rag2.JPG
142.250.74.161200 OK 294 kB URL HTTP/1.1 3.bp.blogspot.com/_Z9X9GXlFGcE/S7OjcKVB_VI/AAAAAAAABdI/Fd_Uc8ML-aw/s1600/rag2.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=[*0*], software=Google], baseline, precision 8, 1600x1200, components 3\012- data
Size 294 kB (293592 bytes)
Hash 504e2d066fbceb8e2150e19c9b713ea9
fe9cd3e151bd09a27c73b2b77a6048af367ab6c0
a12da678df181596601c96cbe03cd2e2d9ce4f144679dbc4a73f9a33b3f468b7
GET /_Z9X9GXlFGcE/S7OjcKVB_VI/AAAAAAAABdI/Fd_Uc8ML-aw/s1600/rag2.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5d2"
Expires: Sun, 29 Jan 2023 04:43:25 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="rag2.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: fife
Content-Length: 293592
X-XSS-Protection: 0
i167.photobucket.com/albums/u133/qball2003/0826101503-00.jpg
54.230.111.106200 OK 56 kB URL HTTP/2 i167.photobucket.com/albums/u133/qball2003/0826101503-00.jpg
IP 54.230.111.106:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6031a063be89f5f16a4988334899ddf8
d26ae5f0fcd1e9a47eb4a4118b160219986dd61c
6035de774cc7c60ff7c140d168f192e82fbbe0adfcdf9016d7619b643eb01099
GET /albums/u133/qball2003/0826101503-00.jpg HTTP/1.1
Host: i167.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 56134
date: Sat, 28 Jan 2023 04:43:25 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="0826101503-00.webp"
content-security-policy: script-src 'none'
expires: Sun, 28 Jan 2024 04:43:25 GMT
server: photobucket
x-amzn-trace-id: Root=1-63d4a7ec-14c5b3a41d7f0f7605ce1d0d
x-request-id: vtPb3-wb7jdf4bf7TmHMN
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N7lb6wNLMO0DWN1EM2yzkH2RZxfFXr_BT4ANl7q4L-rgshhriUNJ6Q==
vary: Accept, Origin
X-Firefox-Spdy: h2
fc07.deviantart.net/images/large/indyart/tattoo/tribal_star_design.jpg
54.69.36.34301 Moved Permanently 178 B URL HTTP/1.1 fc07.deviantart.net/images/large/indyart/tattoo/tribal_star_design.jpg
IP 54.69.36.34:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /images/large/indyart/tattoo/tribal_star_design.jpg HTTP/1.1
Host: fc07.deviantart.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Server: nginx
Location: http://img13.deviantart.net/28da/a/large/indyart/tattoo/tribal_star_design.jpg
popartmachine.com/artwork/1390-142/0/Absinth-posters-absinthe-regret-painting-artwork-print.jpg
216.128.130.47301 Moved Permanently 174 B URL HTTP/1.1 popartmachine.com/artwork/1390-142/0/Absinth-posters-absinthe-regret-painting-artwork-print.jpg
IP 216.128.130.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 6fa22f789c753add311c8a37cf20438d
804104cb7c417c9d9cf98797dd822f2f615d81e9
34702baab5ddca220372644cc866092c5e6ecdfedcac62f7cbfc5f83518f1b2b
GET /artwork/1390-142/0/Absinth-posters-absinthe-regret-painting-artwork-print.jpg HTTP/1.1
Host: popartmachine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Content-Length: 174
Location: https://www.popartmachine.com/artwork/1390-142/0/Absinth-posters-absinthe-regret-painting-artwork-print.jpg
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dd1a468ba2254c58a806ff43276846e0
a9b56ae6b6b7d69c1d45f335837c01c4a037f6a9
f82e0f18bf1bb06f13d25e7cd672eff175a14766df1021802a675b4e62ea12f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: ECS (amb/6B79)
Content-Length: 279
www.fashionfash.com/wp-content/uploads/2011/03/Great-Dragon-Tattoos-on-Back-Body.jpg
52.86.6.113404 Not Found 984 B URL HTTP/1.0 www.fashionfash.com/wp-content/uploads/2011/03/Great-Dragon-Tattoos-on-Back-Body.jpg
IP 52.86.6.113:0
Hash 8477cdd3b4dcc58c368edda28f192ee8
d394c176dfa2dcf4931304a4330f4ccf3bbc0215
e82cab9cebe37bf1453d50020bcb1f873b09acbfcc29b3fd05d6b85fc6c5240c
GET /wp-content/uploads/2011/03/Great-Dragon-Tattoos-on-Back-Body.jpg HTTP/1.1
Host: www.fashionfash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.0 404 Not Found
cache-control: no-cache
content-type: text/html
x-reason: MediaRequest
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 136 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:0
File type ASCII text, with very long lines (1448)
Size 136 kB (135640 bytes)
Hash 019f021c705f2e6e113516399ad42d8f
ede0cb4118b2af0460d82a06116fa8bee86168ae
fa600bed093063b43fac4c3b10f1c06bb0ed9da1442b86d5725347f71520ebb7
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 135640
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 19:14:05 GMT
expires: Fri, 26 Jan 2024 19:14:05 GMT
cache-control: public, max-age=31536000
age: 120560
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.studioemedia.com/downloads/wallpapers/Leather/StudioE_leather1280.jpg
34.102.136.180200 OK 2.8 kB URL HTTP/1.1 www.studioemedia.com/downloads/wallpapers/Leather/StudioE_leather1280.jpg
IP 34.102.136.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2826), with no line terminators
Hash bf1c1521fdb6c7c24acb8cf8a3aade75
5c199e8599402bbe9a1090c37b1748f784be8c7c
df2c4cd8d82fa78d9951157513632a5ce6881d9848fe9d4092b492c35ae5836f
GET /downloads/wallpapers/Leather/StudioE_leather1280.jpg HTTP/1.1
Host: www.studioemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Content-Length: 2826
Last-Modified: Mon, 23 Jan 2023 23:55:57 GMT
ETag: "63cf1e8d-b0a"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_if6NrIZMX6L8mPssEuKcbYPQM7kGrxiwP26Eek1YrVJmnQHMLozB+eAjxLsDWm2OV0oeDM5pHpKnxs8vSbWxaw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=gd;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 0d5be6ebed82c57421addcf1abd6849c
0ecc8bfd1080f5e0dad0e25cc21e63b007da8507
0a7b0c8f5d15ca908cfaaf7f3d9a18c0437b8828d9c04125b2ad5dc1388a61e7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: ECS (dcb/7F84)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: f6tKBkw-BsjwzOfCDshlKfWIQYggxr0i1gZtZ30jBlQezbHZWRO7lA==
resources.blogblog.com/img/navbar/arrows-light.png
216.58.207.233200 OK 117 B URL HTTP/2 resources.blogblog.com/img/navbar/arrows-light.png
IP 216.58.207.233:0
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 25c2b0cfe0ad4dcda4a0e3727d091d80
b9d16f4311e64648b7970baf00cb9841e3c3351b
bb6685107846b4c25384202730b84ec168fecee197e5f9e3fe8ffdd5bed6749d
GET /img/navbar/arrows-light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 117
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 01:38:24 GMT
expires: Thu, 02 Feb 2023 01:38:24 GMT
cache-control: public, max-age=604800
last-modified: Wed, 25 Jan 2023 14:53:31 GMT
content-type: image/png
age: 183901
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/followers.g?blogID=8053023935064415525&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http://practicallypractice2109.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
216.58.207.233302 Found 523 B URL HTTP/2 www.blogger.com/followers.g?blogID=8053023935064415525&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http://practicallypractice2109.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 216.58.207.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1044)
Hash 8ec2f23b04e9134965ddbb4d2275e45e
45445fdf5b903be804f66d90078fa7954305ee73
a38d6fc3dd1e904e0736202f8edc8e6c1ed35bb79862ef02a6fa9a6403ed35a4
GET /followers.g?blogID=8053023935064415525&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http://practicallypractice2109.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8053023935064415525%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://practicallypractice2109.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8053023935064415525%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://practicallypractice2109.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 04:43:25 GMT
expires: Sat, 28 Jan 2023 04:43:25 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 523
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
laurieapplebyphotography.files.wordpress.com/2009/09/mg_9302-copy.jpg
192.0.72.18200 OK 671 kB URL HTTP/2 laurieapplebyphotography.files.wordpress.com/2009/09/mg_9302-copy.jpg
IP 192.0.72.18:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon EOS 50D, orientation=upper-left, xresolution=142, yresolution=150, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2009:09:20 17:53:06], baseline, precision 8, 4752x3168, components 3\012- data
Size 671 kB (670749 bytes)
Hash 4753b3e73aa596d0033e4ffedb6e23c3
26127dfa61a24d0c6ce2566698643d7c6c0b072d
ae2b718f86f5768cb63e6b1fe184c1e7279233defa711101a095e63fd545786c
GET /2009/09/mg_9302-copy.jpg HTTP/1.1
Host: laurieapplebyphotography.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:43:24 GMT
content-type: image/jpeg
content-length: 670749
last-modified: Mon, 21 Sep 2009 00:25:28 GMT
expires: Sat, 25 Feb 2023 00:12:50 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://laurieapplebyphotography.wordpress.com
vary: Origin
x-nc: MISS arn 18 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
i170.photobucket.com/albums/u256/fashioneptunes/david-beckham-forearm-tatto.jpg
54.230.111.106200 OK 87 kB URL HTTP/2 i170.photobucket.com/albums/u256/fashioneptunes/david-beckham-forearm-tatto.jpg
IP 54.230.111.106:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d4afa0aaa1df0b5027756ba705c20f7b
f949f6b299448acebe89150777a7f1ede030c7fc
fdf925488de4da70e147ca4c1d215b420b766b9ac534517e3d935c4ec90727da
GET /albums/u256/fashioneptunes/david-beckham-forearm-tatto.jpg HTTP/1.1
Host: i170.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 86976
date: Sat, 28 Jan 2023 04:43:25 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="david-beckham-forearm-tatto.webp"
content-security-policy: script-src 'none'
expires: Sun, 28 Jan 2024 04:43:25 GMT
server: photobucket
x-amzn-trace-id: Root=1-63d4a7ec-4614c12a360f1e3a3057beed
x-request-id: xGzZzq71fEBM3fYXOiLh-
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VX7M9rk3K2RaZp5Sq_2i9UXMp2VclGZb6ozLq8LEo_eohpyUNoaNZA==
vary: Accept, Origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f46773c05a404d6539bada9c2c349795
149d44af1129e206ed223de9ab0b0fb612a1f959
05c46c9e0c677b44b400d2ed7568ffff8d445e6e43a5d6f6a8351bd18c5dec95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 24fd07c28521dc1ebfca0b450874211d
ab8c274954ca0667f3ac924f04e992cc3fba10d0
6fe135d36c5ac79713f506d855c5cdce8df0e8a0f0c5cfe4b231cd9110a6cfc6
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 28 Jan 2023 04:43:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 28 Jan 2023 03:26:12 GMT
Expires: Sun, 29 Jan 2023 03:26:12 GMT
ETag: "ab8c274954ca0667f3ac924f04e992cc3fba10d0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.photofunblog.com/wp-content/uploads/2011/02/Best-Women-Tattoo-Design-on-Stomach-for-2011.jpg
188.114.97.1404 Not Found 442 B URL HTTP/1.1 www.photofunblog.com/wp-content/uploads/2011/02/Best-Women-Tattoo-Design-on-Stomach-for-2011.jpg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 17226ffd5c8d7d2c5af735c92c4dae83
579f763d9cd45619a7cb45a968b34996d2249146
83820e2a37eb1a4bd15734f5f5d62f757dd9d5efe842daec86ee13f21e45e5de
GET /wp-content/uploads/2011/02/Best-Women-Tattoo-Design-on-Stomach-for-2011.jpg HTTP/1.1
Host: www.photofunblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=initExiR3B%2B9mQNZU7MCV9yCxQUpsNH2%2B70rgirTVvNt0CQFkR86or0i9KXmvTnou91GxBQqcxP%2FgXtpue3DXCb%2Fl4zSSsBzFfWC%2FrAy1uTlzC14OluUlTG22IEuFCMvesCWmHmB%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790711295d310afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cache.gawkerassets.com/assets/images/9/2010/03/tattoos.jpg
151.101.2.166200 OK 233 kB URL HTTP/1.1 cache.gawkerassets.com/assets/images/9/2010/03/tattoos.jpg
IP 151.101.2.166:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1773x500, components 3\012- data
Size 233 kB (232727 bytes)
Hash d80cc3eb60055b6059cf302a3fd466ad
5a09bf77c6e6b025efb55aa480be9b7d1f6c4498
9005011202f962fad9132ea3ef66d47acdeefa066f6f8aa9192e34d664a51028
GET /assets/images/9/2010/03/tattoos.jpg HTTP/1.1
Host: cache.gawkerassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 232727
Last-Modified: Tue, 28 Jan 2014 17:30:08 GMT
ETag: "d80cc3eb60055b6059cf302a3fd466ad"
Content-Type: image/jpeg
Accept-Ranges: bytes
Date: Sat, 28 Jan 2023 04:43:25 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1672-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1674881005.737751,VS0,VE649
3.bp.blogspot.com/_d2BIS87gOxQ/TNNor6aqfOI/AAAAAAAACzQ/5IlsACAlHmQ/s1600/rose-tattoo-5.jpg
142.250.74.161200 OK 267 kB URL HTTP/1.1 3.bp.blogspot.com/_d2BIS87gOxQ/TNNor6aqfOI/AAAAAAAACzQ/5IlsACAlHmQ/s1600/rose-tattoo-5.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=[*0*], software=Google], baseline, precision 8, 666x1494, components 3\012- data
Size 267 kB (266625 bytes)
Hash 05a12596212e6ac75ff86f1093e3a35d
d6f7f8b1f734f616a932f5fbe6951e57dec34b7a
2d99f4120055e8ad5ade524e673c8e14d84eef0d0544e9b1d9497f6642163e19
GET /_d2BIS87gOxQ/TNNor6aqfOI/AAAAAAAACzQ/5IlsACAlHmQ/s1600/rose-tattoo-5.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb34"
Expires: Sun, 29 Jan 2023 04:43:25 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="rose-tattoo-5.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: fife
Content-Length: 266625
X-XSS-Protection: 0
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8053023935064415525%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://practicallypractice2109.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8053023935064415525%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://practicallypractice2109.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true
142.250.74.109302 Found 467 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8053023935064415525%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://practicallypractice2109.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8053023935064415525%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://practicallypractice2109.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (515)
Hash cd6cec08105dadc04a836d804fe7c4fb
073cedf173c9a459c31130f99667d501044cf69d
3a09c6949dd000c12d0112c8395abb0107df4c12ada79fc984eec795a5372edd
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8053023935064415525%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://practicallypractice2109.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8053023935064415525%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://practicallypractice2109.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Jan 2023 04:43:25 GMT
location: https://www.blogger.com/followers.g?blogID=8053023935064415525&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpracticallypractice2109.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-pso6XT6NCuESMm6YlCzAZQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 467
server: GSE
set-cookie: __Host-GAPS=1:Vk03sywzZ6d3-7hyqyn0lqp9-lP3OQ:o3G916gShFJMjZMD;Path=/;Expires=Mon, 27-Jan-2025 04:43:25 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.masterofink.com/david-beckham-tattoos/david-beckham-tattoos-215426_0136.jpg
3.94.41.167404 Not Found 580 B URL HTTP/1.0 www.masterofink.com/david-beckham-tattoos/david-beckham-tattoos-215426_0136.jpg
IP 3.94.41.167:0
Hash 18a4a5e1551149e8ef7ad0d51c3d0af8
0d2b26ad5efea4fdc82c9cbe34e05bf2234a6e22
5350cb6c5428e76e9bbc4f9aa5b1434307079c10695b3da253731ec8dc89acf1
GET /david-beckham-tattoos/david-beckham-tattoos-215426_0136.jpg HTTP/1.1
Host: www.masterofink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.0 404 Not Found
cache-control: no-cache
content-type: text/html
x-reason: MediaRequest
www.forevergeek.com/static/uploads/33/2010/05/tattoo-flowchart.jpg
104.26.10.56301 Moved Permanently 472 B URL HTTP/2 www.forevergeek.com/static/uploads/33/2010/05/tattoo-flowchart.jpg
IP 104.26.10.56:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
GET /static/uploads/33/2010/05/tattoo-flowchart.jpg HTTP/1.1
Host: www.forevergeek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 04:43:25 GMT
location: https://cdn1.forevergeek.com/uploads/33/2010/05/tattoo-flowchart.jpg
cf-ray: 7907112b3bffb527-OSL
cache-control: max-age=31536000
expires: Sat, 28 Jan 2023 05:43:25 GMT
vary: Accept-Encoding
gci-cache: {}
gci-cache-url: https://www.forevergeek.com/static/uploads/33/2010/05/tattoo-flowchart.jpg
gci-msg: gci-4.5;
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xdMv7js9PclAXXpd9OcyO9Xlkr%2BeAMw%2BHHeWJIIL9YzqllvXXjYdGJC2YUXroIzmO2%2FCnTT1oEskJ5irh991hjDD0v2eXqFVwgKCb6c5MJiWYrX8mCaYeKO5gFqcqk0Xek9BlZg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
www.ivargault.com/bilder/tattoo3.jpg
64.31.42.235400 Bad Request 13 B URL HTTP/1.1 www.ivargault.com/bilder/tattoo3.jpg
IP 64.31.42.235:0
ASN #46475 LIMESTONENETWORKS
Hash 1587214c74cac967112cc3dac4b9298f
085aee1dd32d70f53d51dda779b220bd91b0d028
0f918c781da8affc4716b16a1581850868c0e2255cdd5c6e474e0993ee0c9d4c
GET /bilder/tattoo3.jpg HTTP/1.1
Host: www.ivargault.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 400 Bad Request
Date: Sat, 28 Jan 2023 07:15:50 GMT
Server: Apache/1.3.37 (Unix) mod_forward_0_3
Connection: close
Transfer-Encoding: chunked
Content-Type: text/plain
www.geekytattoos.com/wp-content/uploads/2011/07/Nintendo-controller-buttons-tattoo.jpg
66.33.211.59200 OK 576 kB URL HTTP/1.1 www.geekytattoos.com/wp-content/uploads/2011/07/Nintendo-controller-buttons-tattoo.jpg
IP 66.33.211.59:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, manufacturer=Apple, model=iPhone 3G, orientation=upper-left, xresolution=162, yresolution=170, resolutionunit=2, software=Adobe Photoshop CS4 Macintosh, datetime=2011:07:31 18:27:54, GPS-Data], progressive, precision 8, 1024x768, components 3\012- data
Size 576 kB (576355 bytes)
Hash 3e84521c2b8220531764216a7894276d
daba25dcdd8ee970dcb55b40585cc5c7c9100cf8
4645629a0acbcd78026c54aed7ba40f119812249635363b42d1ef2478b9c6554
GET /wp-content/uploads/2011/07/Nintendo-controller-buttons-tattoo.jpg HTTP/1.1
Host: www.geekytattoos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:43:24 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 01 Aug 2011 02:22:33 GMT
ETag: "8cb63-4a9684dc08c40"
Accept-Ranges: bytes
Content-Length: 576355
Cache-Control: max-age=2592000
Expires: Mon, 27 Feb 2023 04:43:24 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Content-Type: image/jpeg
lokisvenom.files.wordpress.com/2010/01/eye-of-sauron.jpg
192.0.72.30200 OK 999 kB URL HTTP/2 lokisvenom.files.wordpress.com/2010/01/eye-of-sauron.jpg
IP 192.0.72.30:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=10, manufacturer=Motorola, model=Droid, orientation=upper-left, xresolution=502, yresolution=510, resolutionunit=2, software=2.0.1, datetime=2010:01:09 13:04:11], baseline, precision 8, 2592x1936, components 3\012- data
Size 999 kB (998880 bytes)
Hash d4796b50867710d2025676b4bf553f36
d59300fed90ccaceac2a19d00864476ce72584e4
687f8087c4f654fd2264f50b33cbc7d884a703cba251b1677a7c4d00b2ad89f6
GET /2010/01/eye-of-sauron.jpg HTTP/1.1
Host: lokisvenom.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:43:24 GMT
content-type: image/jpeg
content-length: 998880
last-modified: Sun, 10 Jan 2010 02:01:55 GMT
expires: Tue, 07 Mar 2023 11:23:57 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://lokisvenom.wordpress.com
vary: Origin
x-nc: MISS arn 30 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
orig05.deviantart.net/07fa/f/2008/291/5/d/zodiac_sign_tattoo___pisces_by_mptribe.jpg
44.239.173.174404 Not Found 0 B URL HTTP/1.1 orig05.deviantart.net/07fa/f/2008/291/5/d/zodiac_sign_tattoo___pisces_by_mptribe.jpg
IP 44.239.173.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /07fa/f/2008/291/5/d/zodiac_sign_tattoo___pisces_by_mptribe.jpg HTTP/1.1
Host: orig05.deviantart.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Server: da-redirector/0.5.2
i167.photobucket.com/albums/u133/qball2003/0826101504-00.jpg
54.230.111.106200 OK 19 kB URL HTTP/2 i167.photobucket.com/albums/u133/qball2003/0826101504-00.jpg
IP 54.230.111.106:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7f17ef8b2f1c3e557814e53daff28f01
7d9797d83a51fe635bbe412875e6b0392edf5afa
6cd1401e12d7962267d39a87e94dd8fbf7db33f17b9afc6c853621cf6fa46dff
GET /albums/u133/qball2003/0826101504-00.jpg HTTP/1.1
Host: i167.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 18998
date: Sat, 28 Jan 2023 04:43:25 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="0826101504-00.webp"
content-security-policy: script-src 'none'
expires: Sun, 28 Jan 2024 04:43:25 GMT
server: photobucket
x-amzn-trace-id: Root=1-63d4a7ed-07997c643083a65947d9d4f1
x-request-id: 07NQgieyrRBIQEaCtOd-C
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8GBBO82ec7Ij2_NdQVDqjUPzGYpcg42nne0VGZRTDdrGB7xKlCoqFQ==
vary: Accept, Origin
X-Firefox-Spdy: h2
www.blogger.com/followers.g?blogID=8053023935064415525&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpracticallypractice2109.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__&bpli=1
216.58.207.233200 OK 1.6 kB URL HTTP/2 www.blogger.com/followers.g?blogID=8053023935064415525&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpracticallypractice2109.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__&bpli=1
IP 216.58.207.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 4e4d07afd583cfaafc6165606da66a7a
175bb921e1a6beca413d004ba92460137c9c68bb
afcbc3a9e51ccd8d0f49136773bc91da40911fb0ffe2a78cb39a0aef50c04cf8
GET /followers.g?blogID=8053023935064415525&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMwMDAwMDAqByNmZmZmZmYyByMwMDAwMDA6ByMzMzMzMzNCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpracticallypractice2109.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__&bpli=1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Jan 2023 04:43:25 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1552
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ning.com/files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg
208.82.16.81301 Moved Permanently 169 B URL HTTP/2 www.ning.com/files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg
IP 208.82.16.81:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd6987d71fad7058a993a9028dc40454
3ed872fa3a00837bb008ad9d201850e2ea57a79f
f0e759f444eb3a324b621f0548919424455e81441d42ea6bc6bcd2b24fce1b92
GET /files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg HTTP/1.1
Host: www.ning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 04:43:25 GMT
content-type: text/html
content-length: 169
location: https://cdn.ning.com/files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg
server: Unknown
x-request-id: fb50f346e6b5bf73f8533215c8b3e249
X-Firefox-Spdy: h2
img13.deviantart.net/28da/a/large/indyart/tattoo/tribal_star_design.jpg
34.209.3.12301 Moved Permanently 0 B URL HTTP/1.1 img13.deviantart.net/28da/a/large/indyart/tattoo/tribal_star_design.jpg
IP 34.209.3.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /28da/a/large/indyart/tattoo/tribal_star_design.jpg HTTP/1.1
Host: img13.deviantart.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Server: da-redirector/0.5.2
Location: https://images-wixmp-ed30a86b8c4ca887773594c2.wixmp.com/f/7d14944a-fa22-4769-ad80-ffb7c34d19f5/d13eku-e1093e03-271e-40a8-8c48-f2ae7699a2a3.jpg/v1/fill/w_1432,h_800,q_75,strp/tribal_star_design.jpg?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJ1cm46YXBwOjdlMGQxODg5ODIyNjQzNzNhNWYwZDQxNWVhMGQyNmUwIiwic3ViIjoidXJuOmFwcDo3ZTBkMTg4OTgyMjY0MzczYTVmMGQ0MTVlYTBkMjZlMCIsImF1ZCI6WyJ1cm46c2VydmljZTppbWFnZS5vcGVyYXRpb25zIl0sIm9iaiI6W1t7InBhdGgiOiIvZi83ZDE0OTQ0YS1mYTIyLTQ3NjktYWQ4MC1mZmI3YzM0ZDE5ZjUvZDEzZWt1LWUxMDkzZTAzLTI3MWUtNDBhOC04YzQ4LWYyYWU3Njk5YTJhMy5qcGciLCJ3aWR0aCI6Ijw9MTQzMiIsImhlaWdodCI6Ijw9ODAwIn1dXX0.ZgYYmlu9gDYt266ZHrKASmpCGk2ecRJ0fH51Qf6JCfc
www.manufacturer.com/cimages/product/www.alibaba.com/1029/w/Sell_old_lover_laser_machine_for_tattoo_removal.jpg
23.23.44.254404 Not Found 7.8 kB URL HTTP/1.1 www.manufacturer.com/cimages/product/www.alibaba.com/1029/w/Sell_old_lover_laser_machine_for_tattoo_removal.jpg
IP 23.23.44.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash a27fd94c533a8181041f9ca44426f281
92b9fa022f85d09ce9485eed649f9ca0703923c8
144c89e870670b8e8b5a0580355caf0a0f0800e2807488737347bcdef013f126
GET /cimages/product/www.alibaba.com/1029/w/Sell_old_lover_laser_machine_for_tattoo_removal.jpg HTTP/1.1
Host: www.manufacturer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: Apache/2.4.43 (Unix) OpenSSL/1.1.1n
Expires: Sat, 28 Jan 2023 04:58:25 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.chinashopmag.com/wp-content/uploads/2010/06/Fitz-1363.jpg
192.69.235.57301 Moved Permanently 277 B URL HTTP/1.1 www.chinashopmag.com/wp-content/uploads/2010/06/Fitz-1363.jpg
IP 192.69.235.57:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dfafcd115d2a80f6c28fe640b2b9a26b
a9ab626277ec9a50e11b3738a5faea27fd4e90ed
a1ee18231346d419601ebe411b99ab4ae99e6b3d4c91f9dd387e5dcff2022996
GET /wp-content/uploads/2010/06/Fitz-1363.jpg HTTP/1.1
Host: www.chinashopmag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:43:25 GMT
Server: Apache
Location: https://www.chinashopmag.com/wp-content/uploads/2010/06/Fitz-1363.jpg
Content-Length: 277
Connection: close
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20889
Expires: Sat, 28 Jan 2023 10:31:34 GMT
Date: Sat, 28 Jan 2023 04:43:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20889
Expires: Sat, 28 Jan 2023 10:31:34 GMT
Date: Sat, 28 Jan 2023 04:43:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20889
Expires: Sat, 28 Jan 2023 10:31:34 GMT
Date: Sat, 28 Jan 2023 04:43:25 GMT
Connection: keep-alive
customskinstattoo.files.wordpress.com/2011/06/jimmy-rose-filigre11.jpg
192.0.72.25200 OK 4.5 MB URL HTTP/2 customskinstattoo.files.wordpress.com/2011/06/jimmy-rose-filigre11.jpg
IP 192.0.72.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=25, manufacturer=Panasonic, model=DMC-FS42, xresolution=334, yresolution=342, resolutionunit=2, software=Ver.1.1 , datetime=2010:11:05 12:30:59], baseline, precision 8, 2736x3648, components 3\012- data
Size 4.5 MB (4507786 bytes)
Hash 61e132b785b7a643ff6c5d29fc462639
3e60926b8a5deac8b6d1103be24e815c37129643
e0ade24514cb55c3c9c7b53c30956c19db446e182adeff61a0a146d2e77d50f4
GET /2011/06/jimmy-rose-filigre11.jpg HTTP/1.1
Host: customskinstattoo.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:43:25 GMT
content-type: image/jpeg
content-length: 4507786
last-modified: Sat, 11 Jun 2011 04:39:01 GMT
expires: Fri, 24 Feb 2023 11:23:11 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://customskinstattoo.wordpress.com
vary: Origin
x-nc: MISS arn 25 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
img0.etsystatic.com/il/fbfbcd/49464815/il_fullxfull.49464815.jpg?optimize=low&auto=webp
151.101.65.224200 OK 454 kB URL HTTP/2 img0.etsystatic.com/il/fbfbcd/49464815/il_fullxfull.49464815.jpg?optimize=low&auto=webp
IP 151.101.65.224:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1050x1050, components 3\012- data
Size 454 kB (454093 bytes)
Hash ed9fc8b7f95c28c2fcf69fce4373a841
56d97fc7d2e71cbdad6780f9970b7914eae5a50b
1c1d8f8f789f903348ccf31d8b76a68c4d8ee6f2b41e80bbb56af3e418ff724c
GET /il/fbfbcd/49464815/il_fullxfull.49464815.jpg?optimize=low&auto=webp HTTP/1.1
Host: img0.etsystatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=365000000, immutable
content-type: image/jpeg
etag: "d/rJNN0yuTN906KE/GmOPH3VDKAbTByuPEHGglqpG/4"
expires: Sun, 14 Jan 2024 12:45:39 GMT
fastly-io-info: ifsz=454093 idim=1050x1050 ifmt=jpeg ofsz=454093 odim=1050x1050 ofmt=jpeg
fastly-io-warning: Failed to shrink image
fastly-stats: io=1
server: UploadServer
x-goog-generation: 1521390421027063
x-goog-hash: crc32c=8MuMAw==, md5=7Z/It/lcKML89p/OQ3OoQQ==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 454093
x-guploader-uploadid: ADPycdsMPWZnC9K90bAhrzCmoPvyPaJ82iuw5apTLLJkMJNoRagamYj-yw5trqVTCHlN5ZBkncmTTk0tRY53_7x-M_7Gyw
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Jan 2023 04:43:25 GMT
age: 1180666
x-served-by: cache-chi-klot8100046-CHI, cache-bma1622-BMA
x-cache: HIT, MISS
x-cache-hits: 2, 0
x-timer: S1674881005.338793,VS0,VE308
vary: Accept
timing-allow-origin: *
strict-transport-security: max-age=300
content-length: 454093
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfb15d26a46e255cac5ec5950dc2c59a
a02646debf11817ac2fcb413432609c66a775639
802445157c580b3c35ed76dd7ba70bcca0888511dbd80c18d2ab72fae75e73fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "802445157C580B3C35ED76DD7BA70BCCA0888511DBD80C18D2AB72FAE75E73FE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14443
Expires: Sat, 28 Jan 2023 08:44:08 GMT
Date: Sat, 28 Jan 2023 04:43:25 GMT
Connection: keep-alive
www.latesttattoodesigns.com/wp-content/uploads/2009/02/138_g_1.jpg
103.35.186.34404 Not Found 566 B URL HTTP/1.1 www.latesttattoodesigns.com/wp-content/uploads/2009/02/138_g_1.jpg
IP 103.35.186.34:0
ASN #26658 HENGTONG-IDC-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e3c7ce94333be4289d48b8e70b7dbf5f
039df736c21f50e4b1de3047b00703873a8ccc10
f1a1d3ab1447dea4cefd2f8c4a2ac4d42d7de34d4686e0c29afd0f54029afe8c
GET /wp-content/uploads/2009/02/138_g_1.jpg HTTP/1.1
Host: www.latesttattoodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Content-Length: 566
Connection: keep-alive
img0.etsystatic.com/il/1cebad/185996146/il_fullxfull.185996146.jpg?optimize=low&auto=webp
151.101.65.224200 OK 347 kB URL HTTP/2 img0.etsystatic.com/il/1cebad/185996146/il_fullxfull.185996146.jpg?optimize=low&auto=webp
IP 151.101.65.224:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x768, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 347 kB (347404 bytes)
Hash 1c4354e51ad1e51fb95b38e20fdcc5e3
2ddcddc133a06b73ee7aa90f0be70ba2826d75db
0271403b56e50b0dac749c875ceeb124e243d274df6ec5d3f71506930e65c800
GET /il/1cebad/185996146/il_fullxfull.185996146.jpg?optimize=low&auto=webp HTTP/1.1
Host: img0.etsystatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=365000000, immutable
content-type: image/webp
etag: "9d/8VtrZtZFyAI3FM7N9ngorNLh7ZlLzyF7BBe6P+QI"
expires: Wed, 24 Jan 2024 11:38:03 GMT
fastly-io-info: ifsz=379536 idim=1024x768 ifmt=jpeg ofsz=347404 odim=1024x768 ofmt=webp
fastly-stats: io=1
server: UploadServer
x-goog-generation: 1519900127887005
x-goog-hash: crc32c=E+Q14g==, md5=ShO6J9VrVFXRhDTjTR53fg==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 379536
x-guploader-uploadid: ADPycdtImdJhhIkZHj880OifUC_C_85xtbqMaq7oUGfhHMSKYt6hgUM4iRGDyMZrbhHGG_zxf-7x6GcObeRaD4j018elmw
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Jan 2023 04:43:25 GMT
age: 320722
x-served-by: cache-chi-kigq8000069-CHI, cache-bma1622-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674881005.330698,VS0,VE333
vary: Accept
timing-allow-origin: *
strict-transport-security: max-age=300
content-length: 347404
X-Firefox-Spdy: h2
www.tattooshut.com/wp-content/gallery/girls-tattoos/girls-tattoos-8.jpg
192.177.18.115200 OK 540 B URL HTTP/1.1 www.tattooshut.com/wp-content/gallery/girls-tattoos/girls-tattoos-8.jpg
IP 192.177.18.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (603), with CRLF line terminators
Hash 548d8b230c9bfc1d367dc6aa45c67448
8babeaeff8eabe17455762d3d86c48349f12c0d1
1c5e8c1abffc6af1d706d6d2ab3eb8cd8d15e1f8860dbfb0d731f680ffec3b5e
GET /wp-content/gallery/girls-tattoos/girls-tattoos-8.jpg HTTP/1.1
Host: www.tattooshut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.tattooshut.com/wp-content/gallery/celebrity-tattoos/celebrity-tattoos-89.jpg
192.177.18.115200 OK 540 B URL HTTP/1.1 www.tattooshut.com/wp-content/gallery/celebrity-tattoos/celebrity-tattoos-89.jpg
IP 192.177.18.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (603), with CRLF line terminators
Hash 548d8b230c9bfc1d367dc6aa45c67448
8babeaeff8eabe17455762d3d86c48349f12c0d1
1c5e8c1abffc6af1d706d6d2ab3eb8cd8d15e1f8860dbfb0d731f680ffec3b5e
GET /wp-content/gallery/celebrity-tattoos/celebrity-tattoos-89.jpg HTTP/1.1
Host: www.tattooshut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 04:43:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10472
Expires: Sat, 28 Jan 2023 07:37:57 GMT
Date: Sat, 28 Jan 2023 04:43:25 GMT
Connection: keep-alive
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 45 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:0
File type ASCII text, with very long lines (1448)
Hash e109643c6c3b1b66def84e3a7c3bd6a7
3eb8ca5c8d01b789b986da9ee9fd5c5d9cac095c
9005c29bc089e7bf687c6ba4c556bb08aaddfa96a5592e9c4f4d03b87523d5f9
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 19:14:01 GMT
expires: Fri, 26 Jan 2024 19:14:01 GMT
cache-control: public, max-age=31536000
age: 120564
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn1.forevergeek.com/uploads/33/2010/05/tattoo-flowchart.jpg
104.26.10.56200 OK 967 kB URL HTTP/2 cdn1.forevergeek.com/uploads/33/2010/05/tattoo-flowchart.jpg
IP 104.26.10.56:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2010:04:20 23:46:35], progressive, precision 8, 671x1310, components 4\012- data
Size 967 kB (967425 bytes)
Hash ba37d974b27eeeee2845ae675aa155b5
6d96d423843517bed22213b810153ce14afc53da
7cf90e59c44dbdbe1b97ae2a5f7e831d30bc9178d3e947eeb4c7ab4ae166cc3f
GET /uploads/33/2010/05/tattoo-flowchart.jpg HTTP/1.1
Host: cdn1.forevergeek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:43:25 GMT
content-type: image/jpeg
content-length: 967425
x-amz-id-2: TjAUN44YlxVPkxn/tRDeO4sE0LJLSobMbsAaxaIO/3H72lWFTcFHXSOwB59si/u+EianjIPNnVo=
x-amz-request-id: ZYB3H0GCQ22XA25R
last-modified: Fri, 13 Jan 2023 15:56:03 GMT
etag: "ba37d974b27eeeee2845ae675aa155b5"
x-amz-meta-s3cmd-attrs: atime:1643737598/ctime:1643814616/gid:33/gname:www-data/md5:ba37d974b27eeeee2845ae675aa155b5/mode:33204/mtime:1643737599/uid:33/uname:www-data
x-amz-version-id: s.OYxYQVdP93vx7sZO9gRkTaI87Aq5N8
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OmkMfivc6Wn2945he0HENZA5ODiGeoXBspJa5I5RY1gj1TNmI53c0lNrjk9iHj9LJcvlrguLYGC74idkvTfqAlZzFwcWGrqQp23HubuIU44XNkc9rtr%2Bbo%2BdP9OXZ1TyObTeC76B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7907112b9c2fb527-OSL
X-Firefox-Spdy: h2
keywebtracker.com/?if=1&scr_w=1280&scr_h=1024&blog=http%3A//practicallypractice2109.blogspot.com/2011/08&ref=&l=tattoo
69.162.80.58302 Found 11 B URL HTTP/1.1 keywebtracker.com/?if=1&scr_w=1280&scr_h=1024&blog=http%3A//practicallypractice2109.blogspot.com/2011/08&ref=&l=tattoo
IP 69.162.80.58:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /?if=1&scr_w=1280&scr_h=1024&blog=http%3A//practicallypractice2109.blogspot.com/2011/08&ref=&l=tattoo HTTP/1.1
Host: keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://practicallypractice2109.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Sat, 28 Jan 2023 04:43:24 GMT
location: http://ww1.keywebtracker.com
server: nginx
set-cookie: sid=4d350948-9ec6-11ed-89b8-7f2717cc47e2; path=/; domain=.keywebtracker.com; expires=Thu, 15 Feb 2091 07:57:32 GMT; max-age=2147483647; HttpOnly
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:20:00 GMT
age: 84205
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d04b173ecc22c619998bda87a8f9ce70
9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5
c30fbd2807e36b637bd1382a955c34abb4fe88b99173692530d288fff0986896
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8739
x-amzn-requestid: 77241ca1-d7d1-4133-bc06-e89a8db93aef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbANlFiSoAMFrcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44723-0b07156624f03d47665f2d4f;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9ZePVrD3oL-ImiMCCYYfuUbQ8l09Q-9F91cFRgSgFG2poVC5Ww4JaQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 24363
etag: "9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 24400
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb319f83c-740d-415f-b846-a8262bdecebc.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb319f83c-740d-415f-b846-a8262bdecebc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 50175d32bf658166ca26db1633fdb95b
69bb6d345d73cd24fd33ad009cc1d3315e7d94e7
d3d3b551cc8b557a1f92a4d819cbb7ab618ef3fac9568f57513fb4905817dad4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb319f83c-740d-415f-b846-a8262bdecebc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5092
x-amzn-requestid: 05cd1dc0-54b4-457a-83f6-5f774e65766f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwH_toAMFweQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-3a038caa6435720711028ac9;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b8qwvqxTXSugeN2wjEA1e1E_bUeWOsEzMZOMHeX9FpCAVsRnltLhyw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:35 GMT
age: 24471
etag: "69bb6d345d73cd24fd33ad009cc1d3315e7d94e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97118e74a8f60620950e42a11c11d71b
d144bbb82392a6103810ac9baa5346ddbefb5c16
2ce0c9696cf9842243186e86bae28c22896a9f51837f4961b6c7e3cfdfb24bd0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3774
x-amzn-requestid: deae2f1e-baec-408c-92a7-4859d4afed47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EgFAgoAMFXRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b6-32a2ff1a369e7b5f41ecbabd;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LFuIX1sQJzdq-wPvVXpX7vMspwXlYhj81foALxnjCQJITtIpPS8qdQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 24364
etag: "d144bbb82392a6103810ac9baa5346ddbefb5c16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 940946e65210c717266c3a64751f1b72
f0e66aeef0c72865d565f48b563f66a184b758a9
1d031b8a530a1e6d84d79fae891f023e1ab7646596c00c57d83cfffce1f6fdf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5742
x-amzn-requestid: b22fd8a5-eefc-494e-a304-75b69eef069d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFr2GsdoAMFpqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8318-69b5e7c726fa92134d08c775;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xBpEdVPmvtXlsyGTvZCkIahK7_Ivhq4yswhw23ixIOH1zlgWPyLH9Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 01:14:42 GMT
age: 12524
etag: "f0e66aeef0c72865d565f48b563f66a184b758a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7cbf6bb73cb907b6607a4b0d18c46fdc
bcd65c380ea9bb87c1f74cd7693e8129fb44f3e4
56ffd1ad07b663295a87856d39ebb0d6b389fbeaa3f99efc41f29ee974336c19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56FFD1AD07B663295A87856D39EBB0D6B389FBEAA3F99EFC41F29EE974336C19"
Last-Modified: Thu, 26 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21527
Expires: Sat, 28 Jan 2023 10:42:13 GMT
Date: Sat, 28 Jan 2023 04:43:26 GMT
Connection: keep-alive
theficstructor.files.wordpress.com/2011/05/gogol-bordello.jpg
192.0.72.22404 Not Found 4.0 MB URL HTTP/2 theficstructor.files.wordpress.com/2011/05/gogol-bordello.jpg
IP 192.0.72.22:0
Size 4.0 MB (3961484 bytes)
Hash 656f5fec3814173da00715b4bd6ea238
47d54f82f3356ebe9caca8fa73cfd8ac5e3debed
fd315b82ae2e471038039cd85d359026141d26b565e8cfbfde987c219f32d4dc
GET /2011/05/gogol-bordello.jpg HTTP/1.1
Host: theficstructor.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Sat, 28 Jan 2023 04:43:24 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
x-reason: 0010
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 07d9463b772986e2cf0f286b3e4830cc
07f83c1d9ed87c51fe5c9b05416286628ad2f0cb
4beacd48f6189601afa2b8b7dd9d898ecf16e90b1171d93c84f8f5b73040b501
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:43:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 03:28:34 GMT
Expires: Wed, 01 Feb 2023 03:28:33 GMT
Etag: "07f83c1d9ed87c51fe5c9b05416286628ad2f0cb"
Cache-Control: max-age=340506,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7907113069280b41-OSL
ww1.keywebtracker.com/
199.59.243.222200 OK 722 B IP 199.59.243.222:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (947), with no line terminators
Hash 9ef29bfbc6a723cc9bc4efa9aa65e4d5
e6edafc7012842895fd1f2e1227240ad3329cda6
edd1e55181f8c75f3eb93d7efbcbc2a056104c7fc31dcd24c4d885fd6010c58c
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: parking_session=beb42a9e-dd5d-3868-da7b-c52f9a856352; expires=Sat, 28-Jan-2023 04:58:26 GMT; Max-Age=900; path=/; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_uC1BRljOohAx9/f7OjS1/oP/BkqLEWyowaaWLOT5SQruXMFTuOr71iHRpyuNAmIFPx4svvdN50VyrZRAtdOOvg==
Accept-CH: sec-ch-prefers-color-scheme
Critical-CH: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
www.popartmachine.com/artwork/1390-142/0/Absinth-posters-absinthe-regret-painting-artwork-print.jpg
216.128.130.47301 Moved Permanently 0 B URL HTTP/2 www.popartmachine.com/artwork/1390-142/0/Absinth-posters-absinthe-regret-painting-artwork-print.jpg
IP 216.128.130.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /artwork/1390-142/0/Absinth-posters-absinthe-regret-painting-artwork-print.jpg HTTP/1.1
Host: www.popartmachine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 28 Jan 2023 04:43:26 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
location: https://www.popartmachine.com
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ww1.keywebtracker.com/js/parking.2.102.0.js
199.59.243.222200 OK 22 kB URL HTTP/1.1 ww1.keywebtracker.com/js/parking.2.102.0.js
IP 199.59.243.222:0
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 30e55de1f9319ef1b994b1e6d490db3a
4f9fb4e1aa181419e45ae5768731bb02c44d747e
23264f0c791c5b161aadf289227d7f0647e9ff96f3559d252d6e1580189bd7e0
Analyzer Verdict Alert fortinet Phishing
GET /js/parking.2.102.0.js HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:26 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 25 Jan 2023 17:19:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
images-wixmp-ed30a86b8c4ca887773594c2.wixmp.com/f/7d14944a-fa22-4769-ad80-ffb7c34d19f5/d13eku-e1093e03-271e-40a8-8c48-f2ae7699a2a3.jpg/v1/fill/w_1432,h_800,q_75,strp/tribal_star_design.jpg?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJ1cm46YXBwOjdlMGQxODg5ODIyNjQzNzNhNWYwZDQxNWVhMGQyNmUwIiwic3ViIjoidXJuOmFwcDo3ZTBkMTg4OTgyMjY0MzczYTVmMGQ0MTVlYTBkMjZlMCIsImF1ZCI6WyJ1cm46c2VydmljZTppbWFnZS5vcGVyYXRpb25zIl0sIm9iaiI6W1t7InBhdGgiOiIvZi83ZDE0OTQ0YS1mYTIyLTQ3NjktYWQ4MC1mZmI3YzM0ZDE5ZjUvZDEzZWt1LWUxMDkzZTAzLTI3MWUtNDBhOC04YzQ4LWYyYWU3Njk5YTJhMy5qcGciLCJ3aWR0aCI6Ijw9MTQzMiIsImhlaWdodCI6Ijw9ODAwIn1dXX0.ZgYYmlu9gDYt266ZHrKASmpCGk2ecRJ0fH51Qf6JCfc
34.96.91.138200 OK 56 kB URL HTTP/2 images-wixmp-ed30a86b8c4ca887773594c2.wixmp.com/f/7d14944a-fa22-4769-ad80-ffb7c34d19f5/d13eku-e1093e03-271e-40a8-8c48-f2ae7699a2a3.jpg/v1/fill/w_1432,h_800,q_75,strp/tribal_star_design.jpg?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJ1cm46YXBwOjdlMGQxODg5ODIyNjQzNzNhNWYwZDQxNWVhMGQyNmUwIiwic3ViIjoidXJuOmFwcDo3ZTBkMTg4OTgyMjY0MzczYTVmMGQ0MTVlYTBkMjZlMCIsImF1ZCI6WyJ1cm46c2VydmljZTppbWFnZS5vcGVyYXRpb25zIl0sIm9iaiI6W1t7InBhdGgiOiIvZi83ZDE0OTQ0YS1mYTIyLTQ3NjktYWQ4MC1mZmI3YzM0ZDE5ZjUvZDEzZWt1LWUxMDkzZTAzLTI3MWUtNDBhOC04YzQ4LWYyYWU3Njk5YTJhMy5qcGciLCJ3aWR0aCI6Ijw9MTQzMiIsImhlaWdodCI6Ijw9ODAwIn1dXX0.ZgYYmlu9gDYt266ZHrKASmpCGk2ecRJ0fH51Qf6JCfc
IP 34.96.91.138:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1432x800, components 3\012- data
Hash e3f698e4eb8b6aca8d1ee51b628e25e1
aa45ee0a79b90364d0fc73bfe539214d6cdbf790
1d325d6f8f29f2eff5b58b5ff72f264c2367333d6830aa838cb4aeb614655df2
GET /f/7d14944a-fa22-4769-ad80-ffb7c34d19f5/d13eku-e1093e03-271e-40a8-8c48-f2ae7699a2a3.jpg/v1/fill/w_1432,h_800,q_75,strp/tribal_star_design.jpg?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJ1cm46YXBwOjdlMGQxODg5ODIyNjQzNzNhNWYwZDQxNWVhMGQyNmUwIiwic3ViIjoidXJuOmFwcDo3ZTBkMTg4OTgyMjY0MzczYTVmMGQ0MTVlYTBkMjZlMCIsImF1ZCI6WyJ1cm46c2VydmljZTppbWFnZS5vcGVyYXRpb25zIl0sIm9iaiI6W1t7InBhdGgiOiIvZi83ZDE0OTQ0YS1mYTIyLTQ3NjktYWQ4MC1mZmI3YzM0ZDE5ZjUvZDEzZWt1LWUxMDkzZTAzLTI3MWUtNDBhOC04YzQ4LWYyYWU3Njk5YTJhMy5qcGciLCJ3aWR0aCI6Ijw9MTQzMiIsImhlaWdodCI6Ijw9ODAwIn1dXX0.ZgYYmlu9gDYt266ZHrKASmpCGk2ecRJ0fH51Qf6JCfc HTTP/1.1
Host: images-wixmp-ed30a86b8c4ca887773594c2.wixmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
content-length: 55488
content-type: image/jpeg
wix-tracer: 2KwM5EGt88AEWTSRnkFmDSbcAgZ
x-seen-by: image-manipulator-757656fc79-22fsv
date: Sat, 28 Jan 2023 04:43:26 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 07d9463b772986e2cf0f286b3e4830cc
07f83c1d9ed87c51fe5c9b05416286628ad2f0cb
4beacd48f6189601afa2b8b7dd9d898ecf16e90b1171d93c84f8f5b73040b501
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:43:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 03:28:34 GMT
Expires: Wed, 01 Feb 2023 03:28:33 GMT
Etag: "07f83c1d9ed87c51fe5c9b05416286628ad2f0cb"
Cache-Control: max-age=340506,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7907113309be0b41-OSL
ww1.keywebtracker.com/_fd
199.59.243.222200 OK 2.6 kB URL HTTP/1.1 ww1.keywebtracker.com/_fd
IP 199.59.243.222:0
File type ASCII text, with very long lines (5269), with no line terminators
Hash 2c63a805f7ff32fba8ec6e9d6821fc26
d6813b50ddb2f03435fb05a391180f7a3bc3b66a
132af12fb71a790767f612ecb21a939ec7036186e42f12bb94e22a76fd7286dd
Analyzer Verdict Alert fortinet Phishing
POST /_fd HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.keywebtracker.com/
Content-Type: application/json
Origin: http://ww1.keywebtracker.com
Connection: keep-alive
Content-Length: 0
HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 28 Jan 2023 04:43:26 GMT
X-Version: 2.102.0
Set-Cookie: parking_session=fb4f7e9a-d3de-4c0b-b733-7fdb44fc490e; expires=Sat, 28-Jan-2023 04:58:26 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
cdn.ning.com/files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg
205.185.216.42404 Not Found 18 B URL HTTP/1.1 cdn.ning.com/files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg
IP 205.185.216.42:0
File type ASCII text, with no line terminators
Hash 817ae1ffa9d8bb15c6edd06322e71611
2d1d4c2765a85142f33f1cc48fe83f9d97d5ca09
739e3da4d1b298800721f9456cf16ce627973250c04a518f94906cec0ff8e6c3
GET /files/jq1Fq0Eh0YVeMWGD*f21cWba490IpDep9TXM8XSyKIqvPNVt6oVxyX-S3geD3iosn*zNX-SZNk*uJ1QEv9HNP3du6Ldq6rjy/me1009.jpg HTTP/1.1
Host: cdn.ning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 04:43:26 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=60
Content-Length: 18
Content-Type: text/html
X-HW: 1674881006.dop214.sk1.t,1674881006.cds202.sk1.shn,1674881006.dop214.sk1.t,1674881006.cds202.sk1.p
ww1.keywebtracker.com/px.gif?ch=1&rn=5.429815687750851
199.59.243.222200 OK 42 B URL HTTP/1.1 ww1.keywebtracker.com/px.gif?ch=1&rn=5.429815687750851
IP 199.59.243.222:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=1&rn=5.429815687750851 HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:26 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ww1.keywebtracker.com/px.gif?ch=2&rn=5.429815687750851
199.59.243.222200 OK 42 B URL HTTP/1.1 ww1.keywebtracker.com/px.gif?ch=2&rn=5.429815687750851
IP 199.59.243.222:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=2&rn=5.429815687750851 HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:26 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.popartmachine.com/
216.128.130.47200 OK 15 kB IP 216.128.130.47:0
Hash 819f45bb54c0029ee99051559155c1f2
30a2e5bcbd12d448f4a3be09d2114e40195d04a7
37e0a996656d1f8f79901176dd5ba6aa0d3db8888bdd3fab3bce4586de5c0aec
GET / HTTP/1.1
Host: www.popartmachine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:43:26 GMT
content-type: text/html; charset=UTF-8
content-length: 35268
last-modified: Fri, 27 Jan 2023 21:59:45 GMT
cache-control: max-age=0
expires: Sat, 28 Jan 2023 04:43:26 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.google.com/adsense/domains/caf.js
142.250.74.164200 OK 54 kB URL HTTP/2 www.google.com/adsense/domains/caf.js
IP 142.250.74.164:0
Hash 48766424e98ca0f28e5e899c77c639e9
fa066d383373c16f92900f3169e3a27fed1ba872
6b56405dbee4f1174d681d290fdfe6a05bd99dc6fe2bbefc8a329c2d90ecfab1
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Sat, 28 Jan 2023 04:43:26 GMT
expires: Sat, 28 Jan 2023 04:43:26 GMT
cache-control: private, max-age=3600
etag: "17404069423380680451"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
142.250.74.97200 OK 278 B URL HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
IP 142.250.74.97:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (306)
Hash bb7fc36f627255dd4783f849dca0932e
80e89ef8f3c2c8ee982523757fce214ea7323a69
735f48c2876099e6a731c65fc46ec1ec133c316e0997d04eb0ee246741bee647
GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 278
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:39:27 GMT
expires: Sat, 28 Jan 2023 17:39:27 GMT
cache-control: public, max-age=82800
age: 36240
last-modified: Tue, 09 Feb 2021 14:15:00 GMT
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b
142.250.74.97200 OK 272 B URL HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b
IP 142.250.74.97:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Hash ab1acb76dd408583614a7a6cedf41866
e2d2d7074479023d37474ab62755b658d22d4ab1
8622edbe2503910e3cbeecef073a09e662fd2507436c3aabf885d155afd96565
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%2302198b HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 08:58:59 GMT
expires: Sat, 28 Jan 2023 07:58:59 GMT
cache-control: public, max-age=82800
age: 71068
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 166bf2c6932f048996b3fe12e1cf3db9
9489d067ac8215775dda446a4c291e6db1e8ab3f
896314990eb656b725f8ec5d3753e70bf71e956c142a15b45773a77bb7d6ff24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ww1.keywebtracker.com/
199.59.243.222200 OK 707 B IP 199.59.243.222:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (927), with no line terminators
Hash 5c7652a92f2ef7a6a0008dbea33bfdca
e88c6740380e8c3ddebbb0b8f930b4506af901c6
560799a3b5ea44030036a00bb6357ca28b7d5a546fab018dac0433adbd906306
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001; expires=Sat, 28-Jan-2023 04:58:27 GMT; Max-Age=900; path=/; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_uC1BRljOohAx9/f7OjS1/oP/BkqLEWyowaaWLOT5SQruXMFTuOr71iHRpyuNAmIFPx4svvdN50VyrZRAtdOOvg==
Accept-CH: sec-ch-prefers-color-scheme
Critical-CH: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww1.keywebtracker.com/js/parking.2.102.0.js
199.59.243.222200 OK 22 kB URL HTTP/1.1 ww1.keywebtracker.com/js/parking.2.102.0.js
IP 199.59.243.222:0
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 30e55de1f9319ef1b994b1e6d490db3a
4f9fb4e1aa181419e45ae5768731bb02c44d747e
23264f0c791c5b161aadf289227d7f0647e9ff96f3559d252d6e1580189bd7e0
Analyzer Verdict Alert fortinet Phishing
GET /js/parking.2.102.0.js HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:27 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 25 Jan 2023 17:19:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww1.keywebtracker.com/_fd
199.59.243.222200 OK 2.1 kB URL HTTP/1.1 ww1.keywebtracker.com/_fd
IP 199.59.243.222:0
File type ASCII text, with very long lines (4009), with no line terminators
Hash 9dddd03e35349e395c29d5791f0f26a6
7fc1b041b737eb1033342875e2c57c115d58f295
d4dcf8b9c8f67a55f7353e72c3bf7dfdc87673917477d32ba11065f9e5bdbc2d
Analyzer Verdict Alert fortinet Phishing
POST /_fd HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.keywebtracker.com/
Content-Type: application/json
Origin: http://ww1.keywebtracker.com
Connection: keep-alive
Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001
Content-Length: 0
HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 28 Jan 2023 04:43:27 GMT
X-Version: 2.102.0
Set-Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001; expires=Sat, 28-Jan-2023 04:58:27 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww1.keywebtracker.com/px.gif?ch=2&rn=1.11708983984892
199.59.243.222200 OK 42 B URL HTTP/1.1 ww1.keywebtracker.com/px.gif?ch=2&rn=1.11708983984892
IP 199.59.243.222:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=2&rn=1.11708983984892 HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:27 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ww1.keywebtracker.com/px.gif?ch=1&rn=1.11708983984892
199.59.243.222200 OK 42 B URL HTTP/1.1 ww1.keywebtracker.com/px.gif?ch=1&rn=1.11708983984892
IP 199.59.243.222:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=1&rn=1.11708983984892 HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:27 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ww1.keywebtracker.com/favicon.ico
199.59.243.222200 OK 0 B URL HTTP/1.1 ww1.keywebtracker.com/favicon.ico
IP 199.59.243.222:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 28 Jan 2023 04:43:27 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
ETag: "61424bb6-0"
x-backend-server: ip-10-201-16-117.ec2.internal
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4abb97e5fd107cb87b896feb33a2159b
757fc267c534b8f5191f97d4c6dce60753e965f2
88d691d314752499a884e54232b88c0d19e4c8163236851b99a0b0d3ac0d7f8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/adsense/domains/caf.js
142.250.74.164200 OK 54 kB URL HTTP/2 www.google.com/adsense/domains/caf.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1743)
Hash 0805a0bc7fb6412391e38a083974f74b
e7218c7510520d914998b6df5e28c1de93f9dba5
7eb634e83f3e3b5fec6c3d84f8572a54263266948af3446f5152fc7be5b977ab
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww1.keywebtracker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Sat, 28 Jan 2023 04:43:27 GMT
expires: Sat, 28 Jan 2023 04:43:27 GMT
cache-control: private, max-age=3600
etag: "7542557195153031068"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4abb97e5fd107cb87b896feb33a2159b
757fc267c534b8f5191f97d4c6dce60753e965f2
88d691d314752499a884e54232b88c0d19e4c8163236851b99a0b0d3ac0d7f8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 166bf2c6932f048996b3fe12e1cf3db9
9489d067ac8215775dda446a4c291e6db1e8ab3f
896314990eb656b725f8ec5d3753e70bf71e956c142a15b45773a77bb7d6ff24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 166bf2c6932f048996b3fe12e1cf3db9
9489d067ac8215775dda446a4c291e6db1e8ab3f
896314990eb656b725f8ec5d3753e70bf71e956c142a15b45773a77bb7d6ff24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Michroma&display=swap
142.250.74.106200 OK 552 B URL HTTP/2 fonts.googleapis.com/css?family=Michroma&display=swap
IP 142.250.74.106:0
File type ASCII text, with very long lines (390)
Hash 3ae821533645aa6e503e21990703c050
7f98fde15e93e75afad6c3b8738e9d6ae7e53e46
2cad3d8109f565218b15713f3c3992b8301f949fc73dd8b28b8bb2a41887350f
GET /css?family=Michroma&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 04:43:28 GMT
date: Sat, 28 Jan 2023 04:43:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
142.250.74.97200 OK 278 B URL HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
IP 142.250.74.97:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (306)
Hash bb7fc36f627255dd4783f849dca0932e
80e89ef8f3c2c8ee982523757fce214ea7323a69
735f48c2876099e6a731c65fc46ec1ec133c316e0997d04eb0ee246741bee647
GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 278
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:39:27 GMT
expires: Sat, 28 Jan 2023 17:39:27 GMT
cache-control: public, max-age=82800
age: 36241
last-modified: Tue, 09 Feb 2021 14:15:00 GMT
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/michroma/v16/PN_zRfy9qWD8fEagAPg9pTk.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/michroma/v16/PN_zRfy9qWD8fEagAPg9pTk.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 402cbe860d64ae2e13145e34cbc7889c
7af4691dc306b7583365b9ff2ead0c1f6db017c5
da748253b458c5fc9c9a5e3c108b1cda280f52df4008702b9cea695ec23332aa
GET /s/michroma/v16/PN_zRfy9qWD8fEagAPg9pTk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 18:05:00 GMT
expires: Fri, 26 Jan 2024 18:05:00 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 14:38:29 GMT
content-type: font/woff2
age: 124708
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ww1.keywebtracker.com/_tr
199.59.243.222200 OK 22 B URL HTTP/1.1 ww1.keywebtracker.com/_tr
IP 199.59.243.222:0
File type ASCII text, with no line terminators
Hash 5cfde9b47de2d84bd26fc473632647c0
fd53c70631b6068328be57daec71bd94bf004d41
47fd05ef74fef5da03fa22483e63fc977cad8e026ae41dadbbcc3745907f306b
Analyzer Verdict Alert fortinet Phishing
POST /_tr HTTP/1.1
Host: ww1.keywebtracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.keywebtracker.com/
Content-Type: application/json
Origin: http://ww1.keywebtracker.com
Content-Length: 1669
Connection: keep-alive
Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001; __gsas=ID=40e3b48b2bd18331:T=1674881007:S=ALNI_MZszuY-SPVy4hlnlgRzQb8ZXSitZw
HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 28 Jan 2023 04:43:28 GMT
X-Version: 2.102.0
Set-Cookie: parking_session=321a7d0e-3186-01bf-cd21-2c9a13d32001; expires=Sat, 28-Jan-2023 04:58:28 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
www.tattoo22.com/fullbodytattoo0010.jpg
35.209.1.24301 Moved Permanently 0 B URL HTTP/2 www.tattoo22.com/fullbodytattoo0010.jpg
IP 35.209.1.24:0
GET /fullbodytattoo0010.jpg HTTP/1.1
Host: www.tattoo22.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 28 Jan 2023 04:43:25 GMT
content-type: text/html; charset=UTF-8
location: https://www.tattoo22.com
x-litespeed-tag: a18_HTTP.404
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
x-httpd: 1
host-header: 6b7412fb82ca5edfd0917e3957f05d89
x-proxy-cache: MISS
x-proxy-cache-info: 0301 NC:000000 UP:SKIP_CACHE_NO_CACHE
X-Firefox-Spdy: h2
www.monsterzeug.de/presse/produktbilder/nintendo-wand-tattoos-bild7.jpg
104.22.18.165404 Not Found 0 B URL HTTP/2 www.monsterzeug.de/presse/produktbilder/nintendo-wand-tattoos-bild7.jpg
IP 104.22.18.165:0
GET /presse/produktbilder/nintendo-wand-tattoos-bild7.jpg HTTP/1.1
Host: www.monsterzeug.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sat, 28 Jan 2023 04:43:24 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE
access-control-allow-headers: Content-Type,Authorization,sw-context-token,sw-access-key,sw-language-id,sw-version-id,sw-inheritance,fail-on-error,indexing-behavior,single-operation,sw-include-seo-urls
access-control-expose-headers: Content-Type,Authorization,sw-context-token,sw-access-key,sw-language-id,sw-version-id,sw-inheritance,fail-on-error,indexing-behavior,single-operation,sw-include-seo-urls
x-html-compressor: 1674881004: 66.77% 1ms
sw-language-id: 2fbb5fe2e29a4d70aa5854ce7ce3e20b
sw-context-token: u0EvEGcN74ONa1EjEaLl9Qq52ZGImxnh
x-frame-options: deny
cache-control: no-cache, private
cf-cache-status: BYPASS
set-cookie: session-=omhr5h2s43kbidbsn8jhlctblj; path=/; secure; HttpOnly; SameSite=lax
session-=omhr5h2s43kbidbsn8jhlctblj; path=/; secure; httponly; samesite=lax
csrf[frontend.store-api.proxy]=f7db376001a94c38471f5c5b93.eRVwYn9xngnsnU9BbNdiQKW_1A7HRHHpXlBGeRa0edU.HVJCDDk37UXVsH4OCpYxJ_Lom0qCHALdLxEOHU_RE6NKJy9PTjPIWtnkLA; path=/; secure; httponly; samesite=lax
csrf[frontend.wishlist.product.merge]=dd90ae9c140.6qtTNEOsHyLiEQUkTGvVBbVfcLNnVGMmNDbvZompuxE.mfQ1cQ7NahekYnRTGB6hcPxrOMEzMjxCUXipP-ue3CTe3xhzLc1SbLtlUA; path=/; secure; httponly; samesite=lax
csrf[frontend.wishlist.product.merge.pagelet]=9b44fe74ac284e5ef41432ef9e.uSFKSp7GigcI4QCPUFCgR4cswRC_dH0bQvlmND27ZmI.6ksLIcGR1WJwrnbCFzPsFLBWrFqSIC99CZwtWEr9KDrgUDg87KjlYliQbw; path=/; secure; httponly; samesite=lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 790711275dd6b4fa-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.tattoo22.com/
35.209.1.24200 OK 0 B IP 35.209.1.24:0
GET / HTTP/1.1
Host: www.tattoo22.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:43:26 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://www.tattoo22.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-tag: a18_HTTP.200,a18_PGSRP
x-httpd: 1
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
getcutie.co.uk/shopImages/185/fabric-Skulls%25252520on%25252520cream%25252520%25252520with%25252520pink%25252520roses.jpg%25253Fwidth%25253D286%252526height%25253D344
23.227.38.32404 Not Found 0 B URL HTTP/2 getcutie.co.uk/shopImages/185/fabric-Skulls%25252520on%25252520cream%25252520%25252520with%25252520pink%25252520roses.jpg%25253Fwidth%25253D286%252526height%25253D344
IP 23.227.38.32:0
GET /shopImages/185/fabric-Skulls%25252520on%25252520cream%25252520%25252520with%25252520pink%25252520roses.jpg%25253Fwidth%25253D286%252526height%25253D344 HTTP/1.1
Host: getcutie.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://practicallypractice2109.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sat, 28 Jan 2023 04:43:25 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 297
x-sorting-hat-shopid: 18151539
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=c75592c2-572f-48a3-b7f4-3c32800e2914; path=/; expires=Sat, 28 Jan 2023 05:13:25 GMT; HttpOnly; SameSite=Lax
cart_currency=GBP; path=/; expires=Sat, 11 Feb 2023 04:43:25 GMT; SameSite=Lax
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22GB%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=getcutie.co.uk; path=/; expires=Sun, 29 Jan 2023 04:43:25 GMT; SameSite=Lax
_y=f7df2a56-fcb0-45f0-9687-5021255527a0; Expires=Sun, 28-Jan-24 04:43:25 GMT; Domain=getcutie.co.uk; Path=/; SameSite=Lax
_s=6769d96e-369c-4dd9-bfd5-e2c8d30a4dbc; Expires=Sat, 28-Jan-23 05:13:25 GMT; Domain=getcutie.co.uk; Path=/; SameSite=Lax
_shopify_y=f7df2a56-fcb0-45f0-9687-5021255527a0; Expires=Sun, 28-Jan-24 04:43:25 GMT; Domain=getcutie.co.uk; Path=/; SameSite=Lax
_shopify_s=6769d96e-369c-4dd9-bfd5-e2c8d30a4dbc; Expires=Sat, 28-Jan-23 05:13:25 GMT; Domain=getcutie.co.uk; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:d128e5bdf9a5cff4265faa41cf97b75a
x-cache: miss
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 18151539
x-shardid: 297
vary: Accept
content-language: en
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: e7e61410-b44d-4b4f-b7f3-2286baf9a7b4
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8IXGEs3ZQbMvk%2BSG94%2Ba9IKoL8kroDdXYCprym0seJ7p8zdEm%2BF%2B4cTXuD6YMX31eQn4ZcyGpueQ2ITxQw%2Ffs%2B018%2BBsNpnzKBE9erz8JrDyngV%2F%2F5HCWsqPfH1Jxgam"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=243, db;dur=63, parse;dur=8, render;dur=42, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=535.999775
server: cloudflare
cf-ray: 7907112c4bc50b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2