www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
200 OK 34 kB URL User Request GET HTTP/1.1 www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47437)
Hash 0de1b203a646207c16265e1a4d50d46a
ff13ff4b78107e13934dfa804fa824ccf4accf16
924adf4604b409aaa3dc8c8fbd07cbc572cf3db95d677a67c729126dcd2362de
GET /2023/11/how-much-disneys-wish-cost-to-make-what.html HTTP/1.1
Host: www.metrogossipcity.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 02 Dec 2023 21:39:00 GMT
Date: Sat, 02 Dec 2023 21:39:00 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 02 Dec 2023 17:51:54 GMT
ETag: W/"35047d898cdd97b3c5085dfd45142ede11463afdac4caa2b6c4e3cd1800acffd"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 34439
Server: GSE
fonts.googleapis.com/css?family=PT+Sans:400,400i,700,700i
200 OK 597 B URL GET HTTP/1.1 fonts.googleapis.com/css?family=PT+Sans:400,400i,700,700i
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Hash 36d1c9a572478d4cc38f18a3d4242622
fa9870feb67bda4d0837bc31e60c0e7d14ce778d
2f2d10315940d60d8daaa8257a8a92b377e5152548001e2581f2ca4e8b296017
GET /css?family=PT+Sans:400,400i,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 02 Dec 2023 21:39:00 GMT
Date: Sat, 02 Dec 2023 21:39:00 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.metrogossipcity.online/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/1.1 www.metrogossipcity.online/js/cookienotice.js
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: www.metrogossipcity.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 02 Dec 2023 15:14:56 GMT
Expires: Sat, 09 Dec 2023 15:14:56 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 02 Dec 2023 05:56:58 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
Age: 23044
3.bp.blogspot.com/-cxw_oH6t00c/X-s1-T8cj-I/AAAAAAAAFtc/eZKPoi9Pwyk6MjI5qjlf7CQINzu26DLxwCK4BGAYYCw/s304/Cool%2BText%2B-%2BMetrogCity%2B372621888829969.png
200 OK 18 kB URL GET HTTP/1.1 3.bp.blogspot.com/-cxw_oH6t00c/X-s1-T8cj-I/AAAAAAAAFtc/eZKPoi9Pwyk6MjI5qjlf7CQINzu26DLxwCK4BGAYYCw/s304/Cool%2BText%2B-%2BMetrogCity%2B372621888829969.png
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type PNG image data, 304 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 2b4df22a787abe5acb77802490a9e40f
e1e18b227b8ad0ebd2d73284fbd8c379d2b9ad4b
4854d4095966747c1ad26b713fd66b8a42f3740815e49db984892536ef5088cb
GET /-cxw_oH6t00c/X-s1-T8cj-I/AAAAAAAAFtc/eZKPoi9Pwyk6MjI5qjlf7CQINzu26DLxwCK4BGAYYCw/s304/Cool%2BText%2B-%2BMetrogCity%2B372621888829969.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Cool Text - MetrogCity 372621888829969.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 17498
X-XSS-Protection: 0
Date: Sat, 02 Dec 2023 19:23:25 GMT
Expires: Sun, 03 Dec 2023 19:23:25 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 8135
ETag: "v16d8"
Content-Type: image/png
Vary: Origin
www.blogger.com/static/v1/widgets/325989852-widgets.js
200 OK 59 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/325989852-widgets.js
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2258)
Hash 2aaaea7286ee481cbc12cfd76e10c0cf
6e8576cb84ac125faa0bc0a5fe5508166cc4eed8
4bfa00cdbc7a40f5dad3dfc3a21dada224e61e358e78d7b262bab098bccbc580
GET /static/v1/widgets/325989852-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 59316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 14:08:07 GMT
expires: Fri, 29 Nov 2024 14:08:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 05:57:17 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 199854
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/4235886812-comment_from_post_iframe.js
200 OK 6.8 kB URL GET HTTP/2 www.blogger.com/static/v1/jsbin/4235886812-comment_from_post_iframe.js
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2165)
Hash 49aad9405434d8887646881ecda8cf64
59bfe11a22024072043b6fc2562ce01b3d4b7344
d86e5bbbff2909f2cefcd5edbbb5b224660e76913e3872dc029758206955a8c6
GET /static/v1/jsbin/4235886812-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:44 GMT
expires: Thu, 28 Nov 2024 21:37:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 17:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 259277
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-TSYCWQ1XXC
200 OK 82 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-TSYCWQ1XXC
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 025a476daf6f7500e1e19496a175f86f
9016d9f0d123b14141e14b684c8ef42a61b6af16
2a44411a077f5709ae4de59bf602a8a7c548cbd340b3cfab1bfc15535c5b8782
GET /gtag/js?id=G-TSYCWQ1XXC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 21:39:01 GMT
expires: Sat, 02 Dec 2023 21:39:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82270
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
200 OK 22 kB URL GET HTTP/2 apis.google.com/js/platform.js
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT
File type ASCII text, with very long lines (2664)
Hash fd67324a3d81895bdf76b073089663b1
5abb1b0a36c645085e31830e6647faa790ad4e91
8eaa06f95fa0ac44c2c186f200874f2f3ebc3aaa92412f0d0c096f517d3581d1
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21930
date: Sat, 02 Dec 2023 21:39:01 GMT
expires: Sat, 02 Dec 2023 21:39:01 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "bccfddc1dce4fb76"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=lhuxReGXKz22DSv9Nkoy2bAKx6XBQ1djZe8SHXT5VIJhz0TQtL2FIdZU6C4ncJxGaQQPx57qCgp-BA3aOnaIUWiCObjhDWjOruVEw1z8x96wukq2dbbABFoSAmoMgQDqhMvMBg20E_0bRljK98oa3QlMh6xP_ifCXFItDE-J1Tw; expires=Sun, 02-Jun-2024 21:39:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
200 OK 34 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (32077)
Hash 4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Dec 2023 19:41:29 GMT
expires: Sun, 01 Dec 2024 19:41:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 7052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
200 OK 45 kB URL GET HTTP/1.1 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 45300
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 30 Nov 2023 23:24:26 GMT
Expires: Fri, 29 Nov 2024 23:24:26 GMT
Cache-Control: public, max-age=31536000
Age: 166475
Last-Modified: Wed, 27 Apr 2022 16:11:08 GMT
Content-Type: font/woff2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 21:39:01 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 300038d640c3ff56165fd18322e4c7ff
cdn-cache: HIT
cf-cache-status: HIT
age: 782426
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82f6b85cffa056b4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
200 OK 47 kB URL GET HTTP/1.1 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Hash 87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 47048
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 30 Nov 2023 04:50:48 GMT
Expires: Fri, 29 Nov 2024 04:50:48 GMT
Cache-Control: public, max-age=31536000
Age: 233293
Last-Modified: Wed, 27 Apr 2022 16:55:54 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2
200 OK 42 kB URL GET HTTP/1.1 fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type Web Open Font Format (Version 2), TrueType, length 42500, version 1.0\012- data
Hash 8c5246074400a5141ea18bf48dff17ee
b0650d9d042dfdc6e5fbc3b9f79f87822f9ee689
595c14bd7589b069e4570ba658cfab8850611639e8a077ca84ef263bfa4671f9
GET /s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 42500
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 30 Nov 2023 04:08:20 GMT
Expires: Fri, 29 Nov 2024 04:08:20 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:01:40 GMT
Content-Type: font/woff2
Age: 235841
www.metrogossipcity.online/responsive/sprite_v1_6.css.svg
200 OK 2.2 kB URL GET HTTP/1.1 www.metrogossipcity.online/responsive/sprite_v1_6.css.svg
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7657)
Hash d4dcfc8144f556815c7a1d84ed4e959e
22088bd6cdf970dcf7bfab9a74a4768548ca8890
73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c
GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: www.metrogossipcity.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2244
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 02 Dec 2023 15:14:59 GMT
Expires: Sat, 09 Dec 2023 15:14:59 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 02 Dec 2023 08:54:05 GMT
Content-Type: image/svg+xml
Vary: Accept-Encoding
Age: 23042
www.googletagmanager.com/gtag/js?id=G-366590757&l=dataLayer&cx=c
200 OK 73 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-366590757&l=dataLayer&cx=c
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3026)
Hash a69a797505b91608b9fb3e7d5be6a6de
38d0b70d3086c0e9c05993882f56ddd5f3a94174
d641cc59ff6e2e1dfbac59e6a5e49b2da960f01c2937a12b1329a210166a5bd7
GET /gtag/js?id=G-366590757&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 21:39:01 GMT
expires: Sat, 02 Dec 2023 21:39:01 GMT
cache-control: private, max-age=900
last-modified: Sat, 02 Dec 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72942
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
200 OK 61 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash 71aaa92f748ba3c48d6edfb40204d614
ad1ca8c338494256d564ee7857707f758e03948b
215f3b01f5decd286eb88ac2dc56b997e6cd2ce8f47998dfa9e2917f8b890982
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 60962
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 02:45:42 GMT
expires: Fri, 29 Nov 2024 02:45:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 240799
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.metrogossipcity.online/favicon.ico
200 OK 412 B URL GET HTTP/1.1 www.metrogossipcity.online/favicon.ico
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: www.metrogossipcity.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Cookie: _ga_TSYCWQ1XXC=GS1.1.1701553146.1.0.1701553146.0.0.0; _ga=GA1.1.641361575.1701553147; _ga_366590757=GS1.1.1701553146.1.0.1701553146.0.0.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Sat, 02 Dec 2023 21:39:01 GMT
Date: Sat, 02 Dec 2023 21:39:01 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 02 Dec 2023 17:51:54 GMT
ETag: W/"35047d898cdd97b3c5085dfd45142ede11463afdac4caa2b6c4e3cd1800acffd"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
www.youtube.com/s/player/31e0b6d9/www-player.css
200 OK 49 kB URL GET HTTP/3 www.youtube.com/s/player/31e0b6d9/www-player.css
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 18f844aa571ef66c0f165fe56a2f0821
849c61720b741db03f689c461e8e4eedd3c4ce21
436743ad0889ad9399a1f33edb65d8bf1c71cfbce1b0fce549769e7705c9ceec
GET /s/player/31e0b6d9/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/pWeKh2kF5_4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:12 GMT
expires: Fri, 29 Nov 2024 04:32:12 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 234410
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/embed.js
200 OK 16 kB URL GET HTTP/3 www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/embed.js
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (3391)
Hash 4b993df6aaec92ba17cc4d526ad2e4bd
a0b696788d5d621280e4f642b4c66875d40870cb
f21a803f0b7f63109cd608bfbe9769a3dc2e2a17c8e885826529d3981d15d313
GET /s/player/31e0b6d9/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/pWeKh2kF5_4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 16506
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:15 GMT
expires: Fri, 29 Nov 2024 04:32:15 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 234407
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/am=QBikBg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP2m6Sqns2VeswT31KrOP1Fcxi3HgA/m=_b,_tp
200 OK 64 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/am=QBikBg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP2m6Sqns2VeswT31KrOP1Fcxi3HgA/m=_b,_tp
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2602)
Hash 54eff9784155b761e901c54027c870ea
d5df29ac904c41b29f95ae1e2d4d882c8d85e81e
139bb76f229ca9aa63115398a7f9ad89a20b87f9563bf38c587608ccaa74c330
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/am=QBikBg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP2m6Sqns2VeswT31KrOP1Fcxi3HgA/m=_b,_tp HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 64259
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 14:26:35 GMT
expires: Thu, 28 Nov 2024 14:26:35 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 28 Nov 2023 05:10:26 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 285147
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/31e0b6d9/www-embed-player.vflset/www-embed-player.js
200 OK 98 kB URL GET HTTP/3 www.youtube.com/s/player/31e0b6d9/www-embed-player.vflset/www-embed-player.js
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (682)
Hash 24cd2bdc1dd00086a1efbc664060bb49
064027f89f2e8f22be774e7468f7ae4ab79efcbc
4d453a47ad0d1b30a7292b6f712d8645db141ed6adea69b8e7d802f8022365fd
GET /s/player/31e0b6d9/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/pWeKh2kF5_4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 98499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:12 GMT
expires: Fri, 29 Nov 2024 04:32:12 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 234410
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.metrogossipcity.online/2023/11/ridley-scott-tells-off-french-critics.html
200 OK 34 kB URL GET HTTP/1.1 www.metrogossipcity.online/2023/11/ridley-scott-tells-off-french-critics.html
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47437)
Hash 17a0d44ad5bf97f906f900f4cda228ea
94f533ea9312d75483b4fa2a015488e334f4dae1
c324b30f6e8e8095eb82535c9620c59c8856e83944127fe4cf80c9e7f3a4892a
GET /2023/11/ridley-scott-tells-off-french-critics.html HTTP/1.1
Host: www.metrogossipcity.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Cookie: _ga_TSYCWQ1XXC=GS1.1.1701553146.1.0.1701553146.0.0.0; _ga=GA1.1.641361575.1701553147; _ga_366590757=GS1.1.1701553146.1.0.1701553146.0.0.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 02 Dec 2023 21:39:01 GMT
Date: Sat, 02 Dec 2023 21:39:01 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 02 Dec 2023 17:51:54 GMT
ETag: W/"35047d898cdd97b3c5085dfd45142ede11463afdac4caa2b6c4e3cd1800acffd"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 34407
Server: GSE
www.metrogossipcity.online/2023/11/farrey-salman-khans-niece-alizeh.html
200 OK 34 kB URL GET HTTP/1.1 www.metrogossipcity.online/2023/11/farrey-salman-khans-niece-alizeh.html
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47437)
Hash 05bb577c42d01a04a5301a45c64eebc5
9248365d8b5c1d51334afec1e494163c153246ae
71959b92086c265ce32abf796550fa43dd749e94d25fa3d419c6c80c1a5c1db6
GET /2023/11/farrey-salman-khans-niece-alizeh.html HTTP/1.1
Host: www.metrogossipcity.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Cookie: _ga_TSYCWQ1XXC=GS1.1.1701553146.1.0.1701553146.0.0.0; _ga=GA1.1.641361575.1701553147; _ga_366590757=GS1.1.1701553146.1.0.1701553146.0.0.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 02 Dec 2023 21:39:02 GMT
Date: Sat, 02 Dec 2023 21:39:02 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 02 Dec 2023 17:51:54 GMT
ETag: W/"35047d898cdd97b3c5085dfd45142ede11463afdac4caa2b6c4e3cd1800acffd"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 34325
Server: GSE
my.rtmark.net/gid.js?userId=77a9ecc6dc904af98b307cbbe77bfc71
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=77a9ecc6dc904af98b307cbbe77bfc71
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash f119c5aeaff6d805579878925a19f7f2
376edbcbd3f6252ee4f6134774c94740b01ba686
485dd7dfab7d61732fcc648296b9614def935a5b0327f2b93bf0a9564937875b
GET /gid.js?userId=77a9ecc6dc904af98b307cbbe77bfc71 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=77a9ecc6dc904af98b307cbbe77bfc71; expires=Sun, 01 Dec 2024 21:39:02 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/base.js
200 OK 784 kB URL GET HTTP/3 www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/base.js
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (555)
Size 784 kB (784263 bytes)
Hash 101fe6d09a2a65ba52bbafa55f73d316
46b1b5f64db74e841d0f606543980dea804707d8
ddc70bebc8a0e4ae5b13a5f8409693a3e88aa4b4415a75f632f11d0f0c423457
GET /s/player/31e0b6d9/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/pWeKh2kF5_4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 784263
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:15 GMT
expires: Fri, 29 Nov 2024 04:32:15 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 234407
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blogger.googleusercontent.com/img/a/AVvXsEhVfExJMXNXJm5n0oO4ZJ6j4d7Q5284fhnkPzczFwcsvUj7WTCPBxRvVNG7UceCsDXtRv2IMqNOyOwGvHCN3RQlevuM9Ohaluq6kHNLGs9n2iy02cFUql89W5DTaTEHODo7iEj-NC3t1glvkvRhRa6ESAaMyuXv9g0stGMq_sS-n-9nd54EY69Aood-TQ=w364-h168
200 OK 2.7 kB URL GET HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEhVfExJMXNXJm5n0oO4ZJ6j4d7Q5284fhnkPzczFwcsvUj7WTCPBxRvVNG7UceCsDXtRv2IMqNOyOwGvHCN3RQlevuM9Ohaluq6kHNLGs9n2iy02cFUql89W5DTaTEHODo7iEj-NC3t1glvkvRhRa6ESAaMyuXv9g0stGMq_sS-n-9nd54EY69Aood-TQ=w364-h168
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type PNG image data, 300 x 168, 8-bit colormap, non-interlaced\012- data
Hash 27bcf737542a2700d31800b51d9b893d
232c5c19aaac8a259c1ed9dbe0ad7299eb7e1cc3
25a23a612a23a9c7cf459cb81e093bacb86eebf6576a93c2c850c32e7fafa5eb
GET /img/a/AVvXsEhVfExJMXNXJm5n0oO4ZJ6j4d7Q5284fhnkPzczFwcsvUj7WTCPBxRvVNG7UceCsDXtRv2IMqNOyOwGvHCN3RQlevuM9Ohaluq6kHNLGs9n2iy02cFUql89W5DTaTEHODo7iEj-NC3t1glvkvRhRa6ESAaMyuXv9g0stGMq_sS-n-9nd54EY69Aood-TQ=w364-h168 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19f7"
expires: Sun, 03 Dec 2023 21:39:02 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="images.png"
x-content-type-options: nosniff
date: Sat, 02 Dec 2023 21:39:02 GMT
server: fife
content-length: 2667
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602
33 kB URL www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type gzip compressed data, max compression\012- data
Hash e5bcfb551d00a124ed24800a88012814
32e3665763528fbf904c4190f53ba4a6f448fe36
9c2a4ac5269d0cbfd525efe378e87c62876d66761dcefda8c67b00214b4dacd1
GET /comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:01 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-XbLYm2Bj-8o7yQHBelMlhA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=IQiV2Iy3BSIZQD1FdE0sbCovynqf404us-GUmbhJQyURbeTT9ADl4k-asZT_1wdPPOJTx_4Uk0OTOOfrhdCii7gh444-CwI2HplO0fadudyKVtO4GUkgB6F-ueWVlMDFX9R0dv_dBK8bOBy18OSwL23eTDOvW3QpmJq79_0ILqs; expires=Sun, 02-Jun-2024 21:39:01 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 10:04:07 GMT
expires: Fri, 29 Nov 2024 10:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 214495
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=481800729407244029&zx=1f113fb3-609d-44d9-87a4-46605e18654d
200 OK 21 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=481800729407244029&zx=1f113fb3-609d-44d9-87a4-46605e18654d
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=481800729407244029&zx=1f113fb3-609d-44d9-87a4-46605e18654d HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:02 GMT
last-modified: Sat, 02 Dec 2023 21:39:02 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
2.7 kB URL www.blogger.com/navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3172)
Hash 23c3fadb708fa81988e33f8f5bb87bc3
ba4e8bdace897b3b5f9264e9feb2d8bb903b17e8
455521ec622f4bd04fa81545c9315cc0d0b301e2674b9195625de419cb275788
GET /navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:02 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2654
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blogger.googleusercontent.com/img/a/AVvXsEgPGfzZa-qhAZlTTer3U8iEZWUi9XL9At4W8hD5pChmZKGT6rrhtmuXwQ7QoCc2W_xRNQymBU-5vdvRZBtf8swvVJvYF5TYllkbuNlof8ddi1kYgE9bHY4ltpd1FgBqszAn9KI05Id8brc8DOI_l-J3CeWeb2Y7YCvkPExxGh4cd2DuGOXOkUKlSrcsJg=w378-h90
200 OK 8.3 kB URL GET HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEgPGfzZa-qhAZlTTer3U8iEZWUi9XL9At4W8hD5pChmZKGT6rrhtmuXwQ7QoCc2W_xRNQymBU-5vdvRZBtf8swvVJvYF5TYllkbuNlof8ddi1kYgE9bHY4ltpd1FgBqszAn9KI05Id8brc8DOI_l-J3CeWeb2Y7YCvkPExxGh4cd2DuGOXOkUKlSrcsJg=w378-h90
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type PNG image data, 321 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash ef940fac29ec307b24fda0d85a339a94
702d526426e698367f8b68f3f75efd9fdc6f0469
8df3c3f7f352baef3022612b347acf156846241f90e97269363de3948510ef8c
GET /img/a/AVvXsEgPGfzZa-qhAZlTTer3U8iEZWUi9XL9At4W8hD5pChmZKGT6rrhtmuXwQ7QoCc2W_xRNQymBU-5vdvRZBtf8swvVJvYF5TYllkbuNlof8ddi1kYgE9bHY4ltpd1FgBqszAn9KI05Id8brc8DOI_l-J3CeWeb2Y7YCvkPExxGh4cd2DuGOXOkUKlSrcsJg=w378-h90 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19f5"
expires: Sun, 03 Dec 2023 21:39:02 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="want60721-1isZoj1524234208.png"
x-content-type-options: nosniff
date: Sat, 02 Dec 2023 21:39:02 GMT
server: fife
content-length: 8298
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,vfuNJf,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,duFQFc,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe
200 OK 103 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,vfuNJf,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,duFQFc,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (9718)
Size 103 kB (103094 bytes)
Hash c1680c93b2eed3501a31b732f9735839
7f61c3d77cfcf65f34eda75288f840ed71e1130c
8d18d51a5b36314341ecb3723d3dc453504521f93c2a715409d4d67974c0731c
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,vfuNJf,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,duFQFc,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 103094
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 03:35:02 GMT
expires: Thu, 28 Nov 2024 03:35:02 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 324240
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:28:20 GMT
expires: Fri, 29 Nov 2024 11:28:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 209442
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=VXdfxd,fgib1c,YwHGTd,pxq3x
200 OK 27 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=VXdfxd,fgib1c,YwHGTd,pxq3x
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (1127)
Hash 50305d46303410231aa0f389b3a53bc7
eb6a191dd4797a6686b392b2c7291cfe1c52bdd7
65699f3a7fad0f15c5b2e39488bafe44bc30f4ce1ed2c420c48f66d3bfdb03e6
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=VXdfxd,fgib1c,YwHGTd,pxq3x HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 26872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 13:47:11 GMT
expires: Thu, 28 Nov 2024 13:47:11 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 287511
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
veepteero.com/?rb=a4OGuw5RDHCztrlT_hnsDJIbLdDkUDTlCeygi0G-QqY6KibLSfu7zXKEVqFIY_giMXmpasziXLPJJlE1SdT0s6juBJCmTMlULJ7HhK2l6wBLnPyi_bOykAnrW-y2hTqEdOZev0x7qT04ErdUsw83Bcmgy8GSHcy7ZYrY09d36paSoK2SL61TsksxIliS4m5Hs1LSGq2fFxzQwybL3v68CVZMD5M7kKvIy8dyWGETWDwDw8M7EfxyJz8MhcQ%3D&request_ab2=0&zoneid=6388424&js_build=iclick-v1.635.3-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.3-auto&bs=4e98eaf2-d624-4bf7-9463-b1c6d4dd4271&userId=77a9ecc6dc904af98b307cbbe77bfc71&m=link
200 OK 1.8 kB URL GET HTTP/1.1 veepteero.com/?rb=a4OGuw5RDHCztrlT_hnsDJIbLdDkUDTlCeygi0G-QqY6KibLSfu7zXKEVqFIY_giMXmpasziXLPJJlE1SdT0s6juBJCmTMlULJ7HhK2l6wBLnPyi_bOykAnrW-y2hTqEdOZev0x7qT04ErdUsw83Bcmgy8GSHcy7ZYrY09d36paSoK2SL61TsksxIliS4m5Hs1LSGq2fFxzQwybL3v68CVZMD5M7kKvIy8dyWGETWDwDw8M7EfxyJz8MhcQ%3D&request_ab2=0&zoneid=6388424&js_build=iclick-v1.635.3-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.3-auto&bs=4e98eaf2-d624-4bf7-9463-b1c6d4dd4271&userId=77a9ecc6dc904af98b307cbbe77bfc71&m=link
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type JSON data\012- , ASCII text, with very long lines (2375), with no line terminators
Hash 325192246d4e0663404fec06607b9837
c86ca53d2a562545619ee0d1c1d978b53778ffb5
cdcff27fc64922a195d94f83ee77b81cab0211455ce07b28138ebfba4b68496d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?rb=a4OGuw5RDHCztrlT_hnsDJIbLdDkUDTlCeygi0G-QqY6KibLSfu7zXKEVqFIY_giMXmpasziXLPJJlE1SdT0s6juBJCmTMlULJ7HhK2l6wBLnPyi_bOykAnrW-y2hTqEdOZev0x7qT04ErdUsw83Bcmgy8GSHcy7ZYrY09d36paSoK2SL61TsksxIliS4m5Hs1LSGq2fFxzQwybL3v68CVZMD5M7kKvIy8dyWGETWDwDw8M7EfxyJz8MhcQ%3D&request_ab2=0&zoneid=6388424&js_build=iclick-v1.635.3-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.3-auto&bs=4e98eaf2-d624-4bf7-9463-b1c6d4dd4271&userId=77a9ecc6dc904af98b307cbbe77bfc71&m=link HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 02 Dec 2023 21:39:02 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: d0ebcff613af901086800d84597b472c
Accept-Ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
Access-Control-Allow-Origin: http://www.metrogossipcity.online
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=77a9ecc6dc904af98b307cbbe77bfc71; expires=Sun, 01 Dec 2024 21:39:02 GMT; path=/
oaidts=1701553142; expires=Sun, 01 Dec 2024 21:39:02 GMT; path=/
syncedCookie=true; expires=Sat, 09 Dec 2023 21:39:02 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=RqjULd
200 OK 6.3 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=RqjULd
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2956)
Hash d36550f52046f5f522d24bb62256a75a
324ce3cdb0f6376451143ca5367510bb23ac513f
9128e43bbac13b006c8afadeb5c96d1aa9c5b534e0eb196c1a65a8da28108e45
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=RqjULd HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 6322
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:35:54 GMT
expires: Fri, 29 Nov 2024 11:35:54 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 208988
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cameesse.net/1?z=6388426
200 OK 16 kB IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
File type ASCII text, with very long lines (41880)
Hash de92d8b92ce6a000fbd23bbc6cddb1fe
b1b0c423a24bd05508f1a846e5e2b7c37966cd3c
920aa49496ae73d67398e2305bb03adcac6792d6533e8e606ec35e7b31e307b7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /1?z=6388426 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 5e4c60479b39115b1cd0192b3dad295d
access-control-expose-headers: X-Sc
x-sc: O2fz9YoqO04_Po1Cik57fegpig2r8sPZmaqeS_qKj-Uc-Uf4UR77PaopPHIjauqb3yZAr8WahDj8MIQrQu_lDiOCRv4=
set-cookie: scm=1; expires=Sun, 01 Dec 2024 21:39:02 GMT; secure; SameSite=None
OAID=d3d6d878899d4631acb3987606b19664; expires=Sun, 01 Dec 2024 21:39:02 GMT; secure; SameSite=None
oaidts=1701553142; expires=Sun, 01 Dec 2024 21:39:02 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
bygliscortor.com/401/6388427
200 OK 35 kB URL GET HTTP/2 bygliscortor.com/401/6388427
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectbygliscortor.com
FingerprintE9:3F:2E:14:B5:B9:D8:B9:B7:A5:42:6A:E9:9B:44:7D:88:E9:50:AF
ValidityThu, 30 Nov 2023 09:56:26 GMT - Wed, 28 Feb 2024 09:56:25 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash c0ce472e8315c22967ee8cd88741d6bb
bd21bc63a58587bf337320dfc661b4ab0f38bb8e
49b500bb46f06236a03b75b2875655935d7b6f0cbada5df6042900ea54ceb4b3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /401/6388427 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: application/javascript
x-trace-id: 630b676ae18444079dceecd94eebc372
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=073e162be2594cbda82c710a8cafb13b; expires=Sun, 01 Dec 2024 21:39:02 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
apis.google.com/js/platform:gapi.iframes.style.common.js
200 OK 22 kB URL GET HTTP/3 apis.google.com/js/platform:gapi.iframes.style.common.js
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fwww.metrogossipcity.online&pfname=&rpctoken=40424246
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (2664)
Hash b970f4ece0f21dae7d57dcbbbe1eb48b
52ab98370d3fc4bfd4c1b23cb3ed5dc1e37d779a
53dbcf2ac8d4a8d0a0fc4d5a15778fd36664923c87a60891a87bf8ec45535a91
GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21940
date: Sat, 02 Dec 2023 21:39:02 GMT
expires: Sat, 02 Dec 2023 21:39:02 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "f3d0fc258127dfc5"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=jgvl0HnfDsLwhdouxprE4PKkgvAbT5L8WXY1pK76Iv_XYB0k6C0v26eIy5sRjsHLMVOPGUSOTpDWe1xhffAC8eZyXALS6AVIvpQAayx4CbD_OfNzCCKjjEeJqwydB1ZrqG-cC3OabTsyUhiwmb8pK77jbFqct_8kLGcK6TtLO6c; expires=Sun, 02-Jun-2024 21:39:02 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/arrows-blue.png
200 OK 104 B URL GET HTTP/3 resources.blogblog.com/img/navbar/arrows-blue.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fwww.metrogossipcity.online&pfname=&rpctoken=40424246
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 38c95719e05f4184a301768d8de91e09
d0ed1147d46f2cf592584239a5a101d6f2abb588
259ece79a45ad7ecbcf6fb0669de61aa6a01ebedaba47a7e88283435e0e6b1be
GET /img/navbar/arrows-blue.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 104
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 11:08:39 GMT
expires: Wed, 06 Dec 2023 11:08:39 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2023 07:57:28 GMT
content-type: image/png
age: 297023
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/icons_orange.png
200 OK 915 B URL GET HTTP/3 resources.blogblog.com/img/navbar/icons_orange.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fwww.metrogossipcity.online&pfname=&rpctoken=40424246
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 87f25844d23ac1ee03604e668f5c1797
85d440947d70a78672740ff7e8062f68ce9d99a3
d70c36f2f61b735573caa3dd5a1602e19916701bb88d99ff4527cd2c89fa8b72
GET /img/navbar/icons_orange.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 915
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:00:55 GMT
expires: Thu, 07 Dec 2023 04:00:55 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2023 10:56:25 GMT
content-type: image/png
age: 236287
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh6BBTVgDchlMzMnseIk1vWa0W1vx5ekIV5zKS3-COX-TtMdibee7pxKJAAnCc9mzP2ttoq_11t-MnNt-fxUQz_iY8qNMoqLO8SuegE3pREjulfIQbid7prP9CQUq54alD2HPf9zDnMi4RE00dSiYmNWE34p8rD5G1C5d6q5PsN-pR7S57Od1CsCw-Wcwk/s320/Wish%202023.jpg
200 OK 34 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh6BBTVgDchlMzMnseIk1vWa0W1vx5ekIV5zKS3-COX-TtMdibee7pxKJAAnCc9mzP2ttoq_11t-MnNt-fxUQz_iY8qNMoqLO8SuegE3pREjulfIQbid7prP9CQUq54alD2HPf9zDnMi4RE00dSiYmNWE34p8rD5G1C5d6q5PsN-pR7S57Od1CsCw-Wcwk/s320/Wish%202023.jpg
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 216x320, components 3\012- data
Hash 8d6674a86ec537ac491582e22f798121
938ed9bb13ea4509620f1c53b924b72d03c9cbb4
c2d21d09db2df545b409a31cc9b84e0adc2047c2ab4c983e8325f2a8cee9275e
GET /img/b/R29vZ2xl/AVvXsEh6BBTVgDchlMzMnseIk1vWa0W1vx5ekIV5zKS3-COX-TtMdibee7pxKJAAnCc9mzP2ttoq_11t-MnNt-fxUQz_iY8qNMoqLO8SuegE3pREjulfIQbid7prP9CQUq54alD2HPf9zDnMi4RE00dSiYmNWE34p8rD5G1C5d6q5PsN-pR7S57Od1CsCw-Wcwk/s320/Wish%202023.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v24a1"
expires: Sun, 03 Dec 2023 21:39:02 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Wish 2023.jpg"
x-content-type-options: nosniff
date: Sat, 02 Dec 2023 21:39:02 GMT
server: fife
content-length: 34207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
200 OK 46 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fwww.metrogossipcity.online&pfname=&rpctoken=40424246
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash a5139ae5276fac825f580dd8b48d0f72
2820e165c330673129cebdc8e7cf806e1620c0a0
2170ad362c9ba9f7ff9b642d2a9d72a263fff1cd47de3664c55d6a7462c4cbc3
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 23:12:04 GMT
expires: Thu, 28 Nov 2024 23:12:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 253619
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gishejuy.com/500/6388425?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 0 B URL GET HTTP/2 gishejuy.com/500/6388425?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint99:91:AA:4E:BA:FC:75:A0:0A:79:EE:F6:15:64:FA:15:B2:BC:61:31
ValidityWed, 25 Oct 2023 09:21:45 GMT - Tue, 23 Jan 2024 09:21:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /500/6388425?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:03 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 02 Dec 2023 21:39:03 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Dec 2023 11:33:07 GMT
expires: Sun, 01 Dec 2024 11:33:07 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 36356
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.metrogossipcity.online/favicon.ico
200 OK 412 B URL GET HTTP/1.1 www.metrogossipcity.online/favicon.ico
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: www.metrogossipcity.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Cookie: _ga_TSYCWQ1XXC=GS1.1.1701553146.1.0.1701553146.0.0.0; _ga=GA1.1.641361575.1701553147; _ga_366590757=GS1.1.1701553146.1.0.1701553146.0.0.0; prefetchAd_6388424=true
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Sat, 02 Dec 2023 21:39:03 GMT
Date: Sat, 02 Dec 2023 21:39:03 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 02 Dec 2023 17:51:54 GMT
ETag: W/"35047d898cdd97b3c5085dfd45142ede11463afdac4caa2b6c4e3cd1800acffd"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 33 kB URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 66aa17b5582f19722f18a86d2cf6894b
2b33e6db8b608df2f47bcdd20a71f9eb139b7ba7
24377daf158399e47182f1b8b99fcaa28fdbaa40905dc62bff7dda911deb9122
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 02 Dec 2023 21:39:03 GMT
server: ESF
cache-control: private
content-length: 32776
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/_/BloggerCommentUi/jserror?script=https%3A%2F%2Fwww.blogger.com%2F_%2Fscs%2Fmss-static%2F_%2Fjs%2Fk%3Dboq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O%2Fck%3Dboq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O%2Fam%3DQBikBg%2Fd%3D1%2Fexm%3D_b%2C_tp%2Fexcm%3D_b%2C_tp%2Ccommentformiframeview%2Fed%3D1%2Fwt%3D2%2Fujg%3D1%2Frs%3DAEy-KP3X42i0kXRgVKl3800X8GWZ-Korng%2Fee%3DEmZ2Bf%3Azr1jrb%3BErl4fe%3AFloWmf%3BJsbNhc%3AXd8iUd%3BLBgRLc%3ASdcwHb%3BMe32dd%3AMEeYgc%3BNPKaK%3ASdcwHb%3BNSEoX%3AlazG7b%3BOj465e%3AKG2eXe%3BPjplud%3AEEDORb%3BQGR0gd%3AMlhmy%3BSNUn3%3AZwDk9d%3Ba56pNe%3AJEfCwb%3BcEt90b%3Aws9Tlc%3BdIoSBb%3ASpsfSb%3BeBAeSb%3AzbML3c%3BiFQyKf%3AvfuNJf%3Bio8t5d%3AyDVVkb%3BkMFpHd%3AOTA3Ae%3BnAFL3%3ANTMZac%3BoGtAuc%3AsOXFj%3BpXdRYb%3AMdUzUe%3BqddgKe%3AxQtZb%3BsP4Vbe%3AVwDzFe%3BuY49fb%3ACOQbmf%3Bul9GGd%3AVDovNc%3BwR5FRb%3AO1Gjze%3BxqZiqf%3AwmnU7d%3ByxTchf%3AKUM7Z%3BzxnPse%3AduFQFc%2Fm%3Dws9Tlc%2Cn73qwf%2CUUJqVe%2CIZT63%2Ce5qFLc%2CvfuNJf%2CO1Gjze%2CbyfTOb%2ClsjVmc%2CxUdipf%2COTA3Ae%2CCOQbmf%2CfKUV3e%2CaurFic%2CU0aPgd%2CZwDk9d%2CV3dDOb%2CmI3LFb%2CWO9ee%2CeD1YLc%2CgZjhIf%2CO6y8ed%2CMpJwZc%2CPrPYRd%2CLEikZe%2CNwH0H%2COmgaI%2ClazG7b%2CXVMNvd%2CL1AAkb%2CKUM7Z%2CMlhmy%2CduFQFc%2Chc6Ubd%2Clwddkf%2Cgychg%2Cw9hDv%2CEEDORb%2CRMhBfe%2CSdcwHb%2CaW3pY%2CSpsfSb%2CEFQ78c%2CUlmmrd%2CZfAoz%2CmdR7q%2CwmnU7d%2CxQtZb%2CZ5uLle%2CJNoxi%2CkWgXee%2CMI6k7c%2CkjKdXe%2CBVgquf%2CovKuLd%2ChKSk3e%2CMdUzUe%2CyDVVkb%2CzbML3c%2CKG2eXe%2Czr1jrb%2CVwDzFe%2CUas9Hd%2CA7fCU%2CpjICDe&error=Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zr1jrb%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zbML3c%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20MdUzUe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20Z5uLle%3A%20gbar%20is%20not%20defined&line=297
204 No Content 0 B URL POST HTTP/3 www.blogger.com/_/BloggerCommentUi/jserror?script=https%3A%2F%2Fwww.blogger.com%2F_%2Fscs%2Fmss-static%2F_%2Fjs%2Fk%3Dboq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O%2Fck%3Dboq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O%2Fam%3DQBikBg%2Fd%3D1%2Fexm%3D_b%2C_tp%2Fexcm%3D_b%2C_tp%2Ccommentformiframeview%2Fed%3D1%2Fwt%3D2%2Fujg%3D1%2Frs%3DAEy-KP3X42i0kXRgVKl3800X8GWZ-Korng%2Fee%3DEmZ2Bf%3Azr1jrb%3BErl4fe%3AFloWmf%3BJsbNhc%3AXd8iUd%3BLBgRLc%3ASdcwHb%3BMe32dd%3AMEeYgc%3BNPKaK%3ASdcwHb%3BNSEoX%3AlazG7b%3BOj465e%3AKG2eXe%3BPjplud%3AEEDORb%3BQGR0gd%3AMlhmy%3BSNUn3%3AZwDk9d%3Ba56pNe%3AJEfCwb%3BcEt90b%3Aws9Tlc%3BdIoSBb%3ASpsfSb%3BeBAeSb%3AzbML3c%3BiFQyKf%3AvfuNJf%3Bio8t5d%3AyDVVkb%3BkMFpHd%3AOTA3Ae%3BnAFL3%3ANTMZac%3BoGtAuc%3AsOXFj%3BpXdRYb%3AMdUzUe%3BqddgKe%3AxQtZb%3BsP4Vbe%3AVwDzFe%3BuY49fb%3ACOQbmf%3Bul9GGd%3AVDovNc%3BwR5FRb%3AO1Gjze%3BxqZiqf%3AwmnU7d%3ByxTchf%3AKUM7Z%3BzxnPse%3AduFQFc%2Fm%3Dws9Tlc%2Cn73qwf%2CUUJqVe%2CIZT63%2Ce5qFLc%2CvfuNJf%2CO1Gjze%2CbyfTOb%2ClsjVmc%2CxUdipf%2COTA3Ae%2CCOQbmf%2CfKUV3e%2CaurFic%2CU0aPgd%2CZwDk9d%2CV3dDOb%2CmI3LFb%2CWO9ee%2CeD1YLc%2CgZjhIf%2CO6y8ed%2CMpJwZc%2CPrPYRd%2CLEikZe%2CNwH0H%2COmgaI%2ClazG7b%2CXVMNvd%2CL1AAkb%2CKUM7Z%2CMlhmy%2CduFQFc%2Chc6Ubd%2Clwddkf%2Cgychg%2Cw9hDv%2CEEDORb%2CRMhBfe%2CSdcwHb%2CaW3pY%2CSpsfSb%2CEFQ78c%2CUlmmrd%2CZfAoz%2CmdR7q%2CwmnU7d%2CxQtZb%2CZ5uLle%2CJNoxi%2CkWgXee%2CMI6k7c%2CkjKdXe%2CBVgquf%2CovKuLd%2ChKSk3e%2CMdUzUe%2CyDVVkb%2CzbML3c%2CKG2eXe%2Czr1jrb%2CVwDzFe%2CUas9Hd%2CA7fCU%2CpjICDe&error=Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zr1jrb%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zbML3c%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20MdUzUe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20Z5uLle%3A%20gbar%20is%20not%20defined&line=297
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /_/BloggerCommentUi/jserror?script=https%3A%2F%2Fwww.blogger.com%2F_%2Fscs%2Fmss-static%2F_%2Fjs%2Fk%3Dboq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O%2Fck%3Dboq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O%2Fam%3DQBikBg%2Fd%3D1%2Fexm%3D_b%2C_tp%2Fexcm%3D_b%2C_tp%2Ccommentformiframeview%2Fed%3D1%2Fwt%3D2%2Fujg%3D1%2Frs%3DAEy-KP3X42i0kXRgVKl3800X8GWZ-Korng%2Fee%3DEmZ2Bf%3Azr1jrb%3BErl4fe%3AFloWmf%3BJsbNhc%3AXd8iUd%3BLBgRLc%3ASdcwHb%3BMe32dd%3AMEeYgc%3BNPKaK%3ASdcwHb%3BNSEoX%3AlazG7b%3BOj465e%3AKG2eXe%3BPjplud%3AEEDORb%3BQGR0gd%3AMlhmy%3BSNUn3%3AZwDk9d%3Ba56pNe%3AJEfCwb%3BcEt90b%3Aws9Tlc%3BdIoSBb%3ASpsfSb%3BeBAeSb%3AzbML3c%3BiFQyKf%3AvfuNJf%3Bio8t5d%3AyDVVkb%3BkMFpHd%3AOTA3Ae%3BnAFL3%3ANTMZac%3BoGtAuc%3AsOXFj%3BpXdRYb%3AMdUzUe%3BqddgKe%3AxQtZb%3BsP4Vbe%3AVwDzFe%3BuY49fb%3ACOQbmf%3Bul9GGd%3AVDovNc%3BwR5FRb%3AO1Gjze%3BxqZiqf%3AwmnU7d%3ByxTchf%3AKUM7Z%3BzxnPse%3AduFQFc%2Fm%3Dws9Tlc%2Cn73qwf%2CUUJqVe%2CIZT63%2Ce5qFLc%2CvfuNJf%2CO1Gjze%2CbyfTOb%2ClsjVmc%2CxUdipf%2COTA3Ae%2CCOQbmf%2CfKUV3e%2CaurFic%2CU0aPgd%2CZwDk9d%2CV3dDOb%2CmI3LFb%2CWO9ee%2CeD1YLc%2CgZjhIf%2CO6y8ed%2CMpJwZc%2CPrPYRd%2CLEikZe%2CNwH0H%2COmgaI%2ClazG7b%2CXVMNvd%2CL1AAkb%2CKUM7Z%2CMlhmy%2CduFQFc%2Chc6Ubd%2Clwddkf%2Cgychg%2Cw9hDv%2CEEDORb%2CRMhBfe%2CSdcwHb%2CaW3pY%2CSpsfSb%2CEFQ78c%2CUlmmrd%2CZfAoz%2CmdR7q%2CwmnU7d%2CxQtZb%2CZ5uLle%2CJNoxi%2CkWgXee%2CMI6k7c%2CkjKdXe%2CBVgquf%2CovKuLd%2ChKSk3e%2CMdUzUe%2CyDVVkb%2CzbML3c%2CKG2eXe%2Czr1jrb%2CVwDzFe%2CUas9Hd%2CA7fCU%2CpjICDe&error=Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zr1jrb%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zbML3c%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20MdUzUe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20Z5uLle%3A%20gbar%20is%20not%20defined&line=297 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 106535
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:03 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'nonce-U9IWSU_GIgSxOQAFuRX33A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=Ch2-EumX3QAQJhOdUHAJQZctRGoQTz8URoY185CQyAGP83muXLhJqnih8tMC24h-aRui-2SCqp8DIV7w4uMKgXNgWTErwsJseiV2x48pd6reu4WQnhLSV4Q661NTG2cu5zJOBFeoxcshO6xLmvTF_TalDWlLgd1I5YSqyhUgxeA; expires=Sun, 02-Jun-2024 21:39:03 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.metrogossipcity.online/feeds/posts/default/-/Bollywood%20Movies?alt=json-in-script&max-results=3&callback=jQuery112403087553361536921_1701553146556&_=1701553146557
200 OK 3.9 kB URL GET HTTP/1.1 www.metrogossipcity.online/feeds/posts/default/-/Bollywood%20Movies?alt=json-in-script&max-results=3&callback=jQuery112403087553361536921_1701553146556&_=1701553146557
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type Unicode text, UTF-8 text, with very long lines (10880)
Hash ab2270db3ab88d54816084dd90cced0e
314469831c517933b75c77943a2af948c560e1aa
02d6b8beb6a13b9e234c7da1e8b12752500d19d255e24f2009e228980107ea63
GET /feeds/posts/default/-/Bollywood%20Movies?alt=json-in-script&max-results=3&callback=jQuery112403087553361536921_1701553146556&_=1701553146557 HTTP/1.1
Host: www.metrogossipcity.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Cookie: _ga_TSYCWQ1XXC=GS1.1.1701553146.1.0.1701553146.0.0.0; _ga=GA1.1.641361575.1701553147; _ga_366590757=GS1.1.1701553146.1.0.1701553146.0.0.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
ETag: W/"acd8689df1d63cc1e70d566c1e06ca30f1082bb0b1e339fad9aff62296a16de9"
Date: Sat, 02 Dec 2023 21:39:03 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Vary: Accept-Encoding
Expires: Sat, 02 Dec 2023 21:39:04 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 02 Dec 2023 17:51:54 GMT
Content-Length: 3891
X-Frame-Options: SAMEORIGIN
cameesse.net/9?z=6388426&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=77a9ecc6dc904af98b307cbbe77bfc71
204 No Content 0 B URL OPTIONS HTTP/2 cameesse.net/9?z=6388426&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=77a9ecc6dc904af98b307cbbe77bfc71
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /9?z=6388426&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=77a9ecc6dc904af98b307cbbe77bfc71 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 02 Dec 2023 21:39:03 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/pWeKh2kF5_4/sddefault.webp
200 OK 15 kB URL GET HTTP/2 i.ytimg.com/vi_webp/pWeKh2kF5_4/sddefault.webp
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintC8:30:4C:1A:A8:FF:83:E1:A2:7F:DB:02:8C:D9:05:46:C4:D6:CA:95
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b10af3b1d95e114b5ae7f5615a1fda7d
eef003e345e4084bb4362bbbf148326ddb33e859
7dc61895226bb9acc1d375592e5046b8019d9836512bde0a6ed1f25061a6fe5a
GET /vi_webp/pWeKh2kF5_4/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 15238
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Dec 2023 21:39:03 GMT
expires: Sat, 02 Dec 2023 23:39:03 GMT
cache-control: public, max-age=7200
etag: "1585486332"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gishejuy.com/500/6388425?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 1.4 kB URL GET HTTP/2 gishejuy.com/500/6388425?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint99:91:AA:4E:BA:FC:75:A0:0A:79:EE:F6:15:64:FA:15:B2:BC:61:31
ValidityWed, 25 Oct 2023 09:21:45 GMT - Tue, 23 Jan 2024 09:21:44 GMT
File type JSON data\012- , ASCII text, with very long lines (1740), with no line terminators
Hash 7efa9e4c74810d166631e851b2c5c90b
36d135527d294984110c50405669acaf04a52d17
d2cd686113e8818470f2b1fe3e72bbda9ca7e7d833d0a1db49b65db473abfe8c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /500/6388425?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Cookie: OAID=fadc33d085e9460bb94742e1c2d60650
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:03 GMT
content-type: application/javascript
x-trace-id: aef22eebc2803d05e492fee71e5be348
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: http://www.metrogossipcity.online
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=77a9ecc6dc904af98b307cbbe77bfc71; expires=Sun, 01 Dec 2024 21:39:03 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/js/th/lYY52XQrUlH64Wh-f-QMzQSikq1nuSlNPE5Z4_DU2e4.js
200 OK 15 kB URL GET HTTP/3 www.google.com/js/th/lYY52XQrUlH64Wh-f-QMzQSikq1nuSlNPE5Z4_DU2e4.js
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (38673)
Hash 1e5f8b711886c56ac3b42b46e8a98b36
801b5154aa0c22d8cca350a48af2682456633fde
958639d9742b5251fae1687e7fe40ccd04a292ad67b9294d3c4e59e3f0d4d9ee
GET /js/th/lYY52XQrUlH64Wh-f-QMzQSikq1nuSlNPE5Z4_DU2e4.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 15149
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 11:08:52 GMT
expires: Thu, 28 Nov 2024 11:08:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Nov 2023 17:00:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 297011
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/remote.js
200 OK 34 kB URL GET HTTP/3 www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/remote.js
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (537)
Hash 63aa8296f70f3dcbf8b5df6faf8d46c3
2494976b44b1d3ec3b5825297e243679e7cca1dd
869da04350e0925de923dd2c39c41d18ba0625e3541bd5059ed5a611550552b6
GET /s/player/31e0b6d9/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/pWeKh2kF5_4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:21 GMT
expires: Fri, 29 Nov 2024 04:32:21 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 234402
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gishejuy.com/400/6388425
200 OK 60 kB IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint99:91:AA:4E:BA:FC:75:A0:0A:79:EE:F6:15:64:FA:15:B2:BC:61:31
ValidityWed, 25 Oct 2023 09:21:45 GMT - Tue, 23 Jan 2024 09:21:44 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 352bb6ac4f9caa8cb97d3f45c82fd8ad
f2e0187a0d64621568899468ebede159692a697f
baedbaecbb1e7bec82da38e7177576b235d3acae06514f26112a60c7b8a97d10
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /400/6388425 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: application/javascript
x-trace-id: 9bca937be6350cb9272f46365d9fb579
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=fadc33d085e9460bb94742e1c2d60650; expires=Sun, 01 Dec 2024 21:39:02 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/APkrFKYXWjD7Yi4ulnxji7CFJEhRtVcyCNwYpX5KiQfd=s68-c-k-c0x00ffffff-no-rj
200 OK 1.6 kB URL GET HTTP/2 yt3.ggpht.com/ytc/APkrFKYXWjD7Yi4ulnxji7CFJEhRtVcyCNwYpX5KiQfd=s68-c-k-c0x00ffffff-no-rj
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash e31546a7fa80f24e21de3a265d33e8ff
ed0f68ea3990e0ed55c2d9ffef2998ae9397a730
e708d842c2a8f940883685d55fc97c8e9bf7ed7bb1d8c5fde86613518d0bed5c
GET /ytc/APkrFKYXWjD7Yi4ulnxji7CFJEhRtVcyCNwYpX5KiQfd=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1561
x-xss-protection: 0
date: Sat, 02 Dec 2023 19:04:33 GMT
expires: Sun, 03 Dec 2023 19:04:33 GMT
cache-control: public, max-age=86400, no-transform
age: 9270
etag: "v4f"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 02 Dec 2023 21:39:03 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bygliscortor.com/500/6388427?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 26 kB URL GET HTTP/2 bygliscortor.com/500/6388427?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectbygliscortor.com
FingerprintE9:3F:2E:14:B5:B9:D8:B9:B7:A5:42:6A:E9:9B:44:7D:88:E9:50:AF
ValidityThu, 30 Nov 2023 09:56:26 GMT - Wed, 28 Feb 2024 09:56:25 GMT
File type JSON data\012- , ASCII text, with very long lines (58146), with no line terminators
Hash 40eee459ecf55152e108e1b30cb2ce61
690fe6079671a79ebd2678d79d3de7294a26cb4f
11fa5475b0caf4d224beb2a4c7e511fbc2134a0268ed049c54c5c7c9780b0c12
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /500/6388427?excludes=&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Cookie: OAID=073e162be2594cbda82c710a8cafb13b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:03 GMT
content-type: application/javascript
x-trace-id: 539bfaed904b577145299c57d112373a
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: http://www.metrogossipcity.online
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=77a9ecc6dc904af98b307cbbe77bfc71; expires=Sun, 01 Dec 2024 21:39:03 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 8a323c19b4a4b37e83482f19d670aae7
08a193c03bcf7c46b38be7d8b4162ea614668620
98d3c1c8289d3dc164544cb2e8a60b8bf7621c8894df37cacdabc2b00ca2bce0
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1320
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 02 Dec 2023 21:39:03 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=0b0ed063f9b544d89485cd5b97e363a6&zoneId=6388428&checkDuplicate=true&ymid=&var=
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?pub=0&userId=0b0ed063f9b544d89485cd5b97e363a6&zoneId=6388428&checkDuplicate=true&ymid=&var=
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash f119c5aeaff6d805579878925a19f7f2
376edbcbd3f6252ee4f6134774c94740b01ba686
485dd7dfab7d61732fcc648296b9614def935a5b0327f2b93bf0a9564937875b
GET /gid.js?pub=0&userId=0b0ed063f9b544d89485cd5b97e363a6&zoneId=6388428&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Cookie: ID=77a9ecc6dc904af98b307cbbe77bfc71
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:03 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=77a9ecc6dc904af98b307cbbe77bfc71; expires=Sun, 01 Dec 2024 21:39:03 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
cameesse.net/9?z=6388426&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=77a9ecc6dc904af98b307cbbe77bfc71
204 No Content 2.7 kB URL OPTIONS HTTP/2 cameesse.net/9?z=6388426&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=77a9ecc6dc904af98b307cbbe77bfc71
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
File type JSON data\012- , ASCII text, with very long lines (6468), with no line terminators
Hash 0c4d4ead55df9e8af6be413593c7b0c4
bc50c2162ab540699e53ba1cb685c233d4c1dfa4
9c2082aea30a81f749cd7f2bd1005442b02cc7df0ba7ea20e9559414bf09d165
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /9?z=6388426&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=77a9ecc6dc904af98b307cbbe77bfc71 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 105
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Cookie: scm=1; OAID=d3d6d878899d4631acb3987606b19664; oaidts=1701553142
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:03 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 6c7e27e7cb632c1c256ae65723391863
access-control-expose-headers: X-Sc
set-cookie: OAID=77a9ecc6dc904af98b307cbbe77bfc71; expires=Sun, 01 Dec 2024 21:39:03 GMT; secure; SameSite=None
oaidts=1701553142; expires=Sun, 01 Dec 2024 21:39:03 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
ibrapush.com/custom
200 OK 39 B IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectibrapush.com
FingerprintAC:F6:AB:6F:AB:34:17:90:49:79:7B:7C:FD:CE:24:5B:02:33:E5:E2
ValidityFri, 10 Nov 2023 10:01:20 GMT - Thu, 08 Feb 2024 10:01:19 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Content-Type: application/json
Content-Length: 440
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:04 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: dde7a4afecd6ca908a46837a70fa276b
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgPA4FgHtvLtGYCBXOPklepVIIpELiSMl3MG4xMpTaClUvL9PGNFtQLVadIas6j25JMpCDJamvXAJ-wyqqFPT0FqDidVPGgsDbtQ2Mnjk1LEYG-2BPyh4Dt2YtyFSKjFnQLw8HSxpuj4X0AD0kRCl1mUm84svoHkmKbBdU21eUE4fhbHhhJsRjVHWoZMKc/s1600/Napoleon%202023.jpg
200 OK 9.2 kB URL GET HTTP/3 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgPA4FgHtvLtGYCBXOPklepVIIpELiSMl3MG4xMpTaClUvL9PGNFtQLVadIas6j25JMpCDJamvXAJ-wyqqFPT0FqDidVPGgsDbtQ2Mnjk1LEYG-2BPyh4Dt2YtyFSKjFnQLw8HSxpuj4X0AD0kRCl1mUm84svoHkmKbBdU21eUE4fhbHhhJsRjVHWoZMKc/s1600/Napoleon%202023.jpg
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 184x273, components 3\012- data
Hash e25233e73f7e36e5ab9bd1f7b37ea434
031b330006d7d21f8d699d4060c364f733acc7ba
38da41dfc8bb04282cc9d1502d82c3d4cae95fe1041da5b903dcc5fd54334293
GET /img/b/R29vZ2xl/AVvXsEgPA4FgHtvLtGYCBXOPklepVIIpELiSMl3MG4xMpTaClUvL9PGNFtQLVadIas6j25JMpCDJamvXAJ-wyqqFPT0FqDidVPGgsDbtQ2Mnjk1LEYG-2BPyh4Dt2YtyFSKjFnQLw8HSxpuj4X0AD0kRCl1mUm84svoHkmKbBdU21eUE4fhbHhhJsRjVHWoZMKc/s1600/Napoleon%202023.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v24a3"
expires: Sun, 03 Dec 2023 21:39:04 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Napoleon 2023.jpg"
x-content-type-options: nosniff
date: Sat, 02 Dec 2023 21:39:04 GMT
server: fife
content-length: 9172
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cameesse.net/27/b7af9eee900df9a8aa2af9ad8ee46174
200 OK 130 kB URL GET HTTP/2 cameesse.net/27/b7af9eee900df9a8aa2af9ad8ee46174
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 130 kB (130457 bytes)
Hash 1b6fe93542ecde80243f7484fbf486ca
8055d5f2fe18061e7379638d860db6d2a00db2f3
6be833a2c01b8873984fc0af03e4247be181b018afd292243d0544c65bbb6e6a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /27/b7af9eee900df9a8aa2af9ad8ee46174 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Cookie: scm=1; OAID=d3d6d878899d4631acb3987606b19664; oaidts=1701553142
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: c6e8aca3d02ae0f8849d6e34dec0a646
cache-control: max-age:290304000, public
last-modified: Fri, 24 Nov 2023 06:46:08 GMT
expires: Fri, 24 Dec 2083 06:46:08 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.youtube.com/generate_204?Nn-uEQ
204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?Nn-uEQ
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?Nn-uEQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/pWeKh2kF5_4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Sat, 02 Dec 2023 21:39:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 10:04:07 GMT
expires: Fri, 29 Nov 2024 10:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 214497
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:28:20 GMT
expires: Fri, 29 Nov 2024 11:28:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 209444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
amunfezanttor.com/event
200 OK 0 B IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:04 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
cameesse.net/11?rnd=3648502905&z=6388426&b=17227367&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=kjDdVvBEDx5jj0gG1HM7sxjRkK1EZWc0QcmjFuReencMRnYWg6eRybO4oSxxCek6_n5g8WrwZb2D06OupmA1PHqJuGIHAGT0zvKNhQw48MkZiGiGalokomZZxzTSZUuD6nN-F-FYZLCiSEHoIYoCn-eR_636DZC3MqTgBD8Ro83x8Y1w_IOzr5XDmHhKWiIT-txuLaASUF7oUket9ILNRu2eBh6IsPClvsOtash0Uwhax1Odn_vH25ZqRLrijI6xhkip1FYV5qi4Dc54QPNP2lciUYqR5YGzhnePU2AOpHc2w_IqrAc1EtW8dWZQeLOM41CwnhZdca4gdbhfaaKwiUdHPekGk-5C4rGZ4nDUH1fba2zufD2ib9KUunWZT7XtyTJ69YFE5IJdADjK02B6nuqGvLtiaX7pBecGjb0lsk_3TRj7nsc5vqwBYntDG-JcMIfFr71d6Hkotr-ZhwPvbISBT_npmseCHI041h96Mf1kxlj264NpnKs_sDpg4-RqZkD2gMbuAn6qpmfNqqxABrw9wHgYQpWbgQ171l87mf6MTCJiOpgNqcF4NjoIu077mzJkm-uMvm7dgZLSk9vCb6qBiVOJIZEvp9igxy13OFTh5VANLrr9y2QQkSBGmNp4pETMQrcpPRjfqymUkAUTNRyC4n5iSJ7hlxCqDPDE538=&ruid=8adf679d-fa3a-454d-a714-ae68855978a0&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=943
200 OK 0 B URL GET HTTP/2 cameesse.net/11?rnd=3648502905&z=6388426&b=17227367&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=kjDdVvBEDx5jj0gG1HM7sxjRkK1EZWc0QcmjFuReencMRnYWg6eRybO4oSxxCek6_n5g8WrwZb2D06OupmA1PHqJuGIHAGT0zvKNhQw48MkZiGiGalokomZZxzTSZUuD6nN-F-FYZLCiSEHoIYoCn-eR_636DZC3MqTgBD8Ro83x8Y1w_IOzr5XDmHhKWiIT-txuLaASUF7oUket9ILNRu2eBh6IsPClvsOtash0Uwhax1Odn_vH25ZqRLrijI6xhkip1FYV5qi4Dc54QPNP2lciUYqR5YGzhnePU2AOpHc2w_IqrAc1EtW8dWZQeLOM41CwnhZdca4gdbhfaaKwiUdHPekGk-5C4rGZ4nDUH1fba2zufD2ib9KUunWZT7XtyTJ69YFE5IJdADjK02B6nuqGvLtiaX7pBecGjb0lsk_3TRj7nsc5vqwBYntDG-JcMIfFr71d6Hkotr-ZhwPvbISBT_npmseCHI041h96Mf1kxlj264NpnKs_sDpg4-RqZkD2gMbuAn6qpmfNqqxABrw9wHgYQpWbgQ171l87mf6MTCJiOpgNqcF4NjoIu077mzJkm-uMvm7dgZLSk9vCb6qBiVOJIZEvp9igxy13OFTh5VANLrr9y2QQkSBGmNp4pETMQrcpPRjfqymUkAUTNRyC4n5iSJ7hlxCqDPDE538=&ruid=8adf679d-fa3a-454d-a714-ae68855978a0&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=943
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /11?rnd=3648502905&z=6388426&b=17227367&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=kjDdVvBEDx5jj0gG1HM7sxjRkK1EZWc0QcmjFuReencMRnYWg6eRybO4oSxxCek6_n5g8WrwZb2D06OupmA1PHqJuGIHAGT0zvKNhQw48MkZiGiGalokomZZxzTSZUuD6nN-F-FYZLCiSEHoIYoCn-eR_636DZC3MqTgBD8Ro83x8Y1w_IOzr5XDmHhKWiIT-txuLaASUF7oUket9ILNRu2eBh6IsPClvsOtash0Uwhax1Odn_vH25ZqRLrijI6xhkip1FYV5qi4Dc54QPNP2lciUYqR5YGzhnePU2AOpHc2w_IqrAc1EtW8dWZQeLOM41CwnhZdca4gdbhfaaKwiUdHPekGk-5C4rGZ4nDUH1fba2zufD2ib9KUunWZT7XtyTJ69YFE5IJdADjK02B6nuqGvLtiaX7pBecGjb0lsk_3TRj7nsc5vqwBYntDG-JcMIfFr71d6Hkotr-ZhwPvbISBT_npmseCHI041h96Mf1kxlj264NpnKs_sDpg4-RqZkD2gMbuAn6qpmfNqqxABrw9wHgYQpWbgQ171l87mf6MTCJiOpgNqcF4NjoIu077mzJkm-uMvm7dgZLSk9vCb6qBiVOJIZEvp9igxy13OFTh5VANLrr9y2QQkSBGmNp4pETMQrcpPRjfqymUkAUTNRyC4n5iSJ7hlxCqDPDE538=&ruid=8adf679d-fa3a-454d-a714-ae68855978a0&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=943 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Cookie: scm=1; OAID=77a9ecc6dc904af98b307cbbe77bfc71; oaidts=1701553142
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:04 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: f885c25e4af000d22a98d913579e9bc3
access-control-expose-headers: X-Sc
set-cookie: OAID=77a9ecc6dc904af98b307cbbe77bfc71; expires=Sun, 01 Dec 2024 21:39:04 GMT; secure; SameSite=None
oaidts=1701553142; expires=Sun, 01 Dec 2024 21:39:04 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:43 GMT
expires: Wed, 06 Dec 2023 21:37:43 GMT
cache-control: public, max-age=604800
age: 259281
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
amunfezanttor.com/event
200 OK 94 B IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
File type JSON data\012- , ASCII text
Hash 5adf9fb28dd77878656a1a401f2844de
9c0472d25f619934e9d321677d262dc907d2c08d
99e17eecdae06eb20d7f51205fcb6a1c426f5f3c646edab9e0327bdf19fdb80a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Content-Type: application/json
Content-Length: 562
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:04 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
200 OK 191 kB URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190794 bytes)
Hash 46561da768f0a7b8369ccdc80964ea91
8f43d31955a2a643314958c2f62cf79b6aef7771
51c6f5d8a9d51815464fbf6f3010c767bc7cd3421ef4607f93a2dce22470b659
GET /recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 02 Dec 2023 21:39:04 GMT
date: Sat, 02 Dec 2023 21:39:04 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
amunfezanttor.com/event
200 OK 94 B IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
File type JSON data\012- , ASCII text
Hash 761d1222110429fa0db6e6250ae2f91d
87290c3f0e3130f133cdb4b8fe540199225ae27e
3110cc6f97348ce8d5be87ab52146e873e155ba737c0cddec45ad1ccd208a717
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Content-Type: application/json
Content-Length: 562
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:04 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
d3x2.myfastcdn.com/www/images/f15dbe580a237f0d067aa9c11c74f177.png?width=984
200 OK 43 kB URL GET HTTP/1.1 d3x2.myfastcdn.com/www/images/f15dbe580a237f0d067aa9c11c74f177.png?width=984
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
File type RIFF (little-endian) data, Web/P image\012- data
Hash 30dfa8f99fd1b894a13124afca5d3f0b
1a633e0cd811da1c79144281db3e4cb1fa0b758a
4e1e68518abbc63ade654c8b3c511879445421873579cf422c60c70808807881
GET /www/images/f15dbe580a237f0d067aa9c11c74f177.png?width=984 HTTP/1.1
Host: d3x2.myfastcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 02 Dec 2023 21:39:04 GMT
Content-Type: image/webp
Content-Length: 42760
Connection: keep-alive
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
edge-cache-tag: 614095050190827332879261464066804609414,613570411217116831189459287628353010494,29ecf9b93bbf306179626feeda1fab70
etag: "a1772a76de23e0060a65906211d11fee"
last-modified: Thu, 26 Oct 2023 12:46:23 GMT
req-referer: https://go2ved.shop/
status: 200 OK
surrogate-reporting: width=900,height=600,bytes=78438,owidth=900,oheight=600,obytes=322865
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 1784
X-backend-name: CH_nlb804
Cache-Control: max-age=86400
Vary: ImageFormat, Accept-Encoding
X-vcl-time-ms: 1
Expires: Sun, 03 Dec 2023 21:39:04 GMT
Timing-Allow-Origin: *
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 82f6b86fcb7c569a-OSL
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
200 OK 1.7 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (732)
Hash 5301eb55c9b56fe63b5777c3b46408a9
c0acd0a65748169cfa558d59acdda2ea19e69c98
daae83fcb2b9eb4c3adf0b8a95f9054c2e7e55cf34cce7136308cb700e44b645
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 1652
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 01:54:40 GMT
expires: Fri, 29 Nov 2024 01:54:40 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 243864
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
200 OK 6.5 kB URL GET HTTP/3 www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (35889), with no line terminators
Hash e287450e0a5c5a5625f7ba3716c1b0cf
3287eee808b2a77f7e4ea16b148f4cd173cddb66
5ee6fb081a76cfc34678b67e894a1fa91ed96857c4d94710cb1a8cea5ea1d76b
GET /static/v1/v-css/3268905543-lightbox_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6501
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 16:24:14 GMT
expires: Thu, 28 Nov 2024 16:24:14 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 13:00:48 GMT
content-type: text/css
vary: Accept-Encoding
age: 278090
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ibrapush.com/custom
200 OK 39 B IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectibrapush.com
FingerprintAC:F6:AB:6F:AB:34:17:90:49:79:7B:7C:FD:CE:24:5B:02:33:E5:E2
ValidityFri, 10 Nov 2023 10:01:20 GMT - Thu, 08 Feb 2024 10:01:19 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Content-Type: application/json
Content-Length: 437
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:04 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: e1c14325ce981f3f5ed30a45c78b005a
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ibrapush.com/custom
200 OK 39 B IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectibrapush.com
FingerprintAC:F6:AB:6F:AB:34:17:90:49:79:7B:7C:FD:CE:24:5B:02:33:E5:E2
ValidityFri, 10 Nov 2023 10:01:20 GMT - Thu, 08 Feb 2024 10:01:19 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Content-Type: application/json
Content-Length: 769
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:04 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 6da03f26b9869a9cd5bb280bf2a5f058
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/2258190084-lbx.js
200 OK 123 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/2258190084-lbx.js
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document, ASCII text, with very long lines (1442)
Size 123 kB (123088 bytes)
Hash e27d61d5ff8a43c556071fcd1de3f812
fbd0cf41491256f72017761429b83fd458210095
6f69f544e069f5d0f3b9aeb56f6c553ac9e78a70b85e1856b45ed5b51ecf631f
GET /static/v1/jsbin/2258190084-lbx.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 123088
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 02:51:37 GMT
expires: Thu, 28 Nov 2024 02:51:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Nov 2023 19:57:54 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 326847
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1701553151004
Content-Type: application/json
X-Goog-Visitor-Id: CgtyMjZmNFhwZ1pWQSj1x66rBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231128.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1701553147405&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=23&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C307%2C198&vis=1&wgl=true&ca_type=image
Content-Length: 15709
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/pWeKh2kF5_4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Sat, 02 Dec 2023 21:39:05 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+796; expires=Mon, 01-Dec-2025 21:39:05 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 02 Dec 2023 21:39:05 GMT
cache-control: private
bygliscortor.com/impression/NcChDuMbHkjGU8u5_Rb5ly0PS3Vdn7MF_vzwRKwR7I25gmyELuAcIx38T1LJeRiGUEdiBbEKEmUNG8CjQVCsZQz-8fz97IrPKWab5dGpX59jWp7WwMDA-LbFmy0PpeDPdn3DGXGk7HYRcqW8yeCZbZkZj3n95HjFpU-CCpvWYQsV6XtoDm-dPkEJzM2OoULYYtv9SsbkTbylrUijp0zltdA0rbPcppps0fAz9q3rraS6LCCX1uzNAnY3WU7cKGs8DSA9l-2FbGBwm6WRSJDf9IPjkUKM48wTqYSw9VbCCxEy99x4q0_cqdwcLuwKroL_AwcVEdyK14rV5DF1rTmejTUasDJ9nCgxk_JnuNbO0v3MnkwxzAAPzH-f7js1L_Xh7hF0AG6xxvGmu24O5PxI7Cn1C2Y7yQhV1Oac8YXUAwXPRA6Y7g7mZd2UyooMZ8GM6xGbIg_SVr8wal2kHcs4u0CWIvNZE6GPb3olOUD0rjl6h-YY6pS0NSltwHMtbDGWg6q3tDh54cyfrFxv1p9Fc5JU6piifhmKqf4JcC6KqqsAqK0nzjPz0NM8N-0l5FbXDGV-7kgBTylbwifznrSV7DcP-wJpj8i-wgDC2hM2CFXxsQBVFxEE13KdR191F2bwFyKb0GZkCZgqBM_ysdwDZhBvALTroUQ6kH1PdqREiFpE27aNjYoezIM4hKaIbmXOoflvdD7k597wE5KrpU5SXf5ZCWTefMDvCIef7eTeB1DCssTw2jl8VziUbDn9FphfzNTcJ3rMv7EYiQHNHAcP_BP8K39FLpUuEReUJ_5UOfk6a6xq2BKbz9bmwXwrJV8UoT1wfRaEzIM=?_z=6388427&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 43 B URL GET HTTP/2 bygliscortor.com/impression/NcChDuMbHkjGU8u5_Rb5ly0PS3Vdn7MF_vzwRKwR7I25gmyELuAcIx38T1LJeRiGUEdiBbEKEmUNG8CjQVCsZQz-8fz97IrPKWab5dGpX59jWp7WwMDA-LbFmy0PpeDPdn3DGXGk7HYRcqW8yeCZbZkZj3n95HjFpU-CCpvWYQsV6XtoDm-dPkEJzM2OoULYYtv9SsbkTbylrUijp0zltdA0rbPcppps0fAz9q3rraS6LCCX1uzNAnY3WU7cKGs8DSA9l-2FbGBwm6WRSJDf9IPjkUKM48wTqYSw9VbCCxEy99x4q0_cqdwcLuwKroL_AwcVEdyK14rV5DF1rTmejTUasDJ9nCgxk_JnuNbO0v3MnkwxzAAPzH-f7js1L_Xh7hF0AG6xxvGmu24O5PxI7Cn1C2Y7yQhV1Oac8YXUAwXPRA6Y7g7mZd2UyooMZ8GM6xGbIg_SVr8wal2kHcs4u0CWIvNZE6GPb3olOUD0rjl6h-YY6pS0NSltwHMtbDGWg6q3tDh54cyfrFxv1p9Fc5JU6piifhmKqf4JcC6KqqsAqK0nzjPz0NM8N-0l5FbXDGV-7kgBTylbwifznrSV7DcP-wJpj8i-wgDC2hM2CFXxsQBVFxEE13KdR191F2bwFyKb0GZkCZgqBM_ysdwDZhBvALTroUQ6kH1PdqREiFpE27aNjYoezIM4hKaIbmXOoflvdD7k597wE5KrpU5SXf5ZCWTefMDvCIef7eTeB1DCssTw2jl8VziUbDn9FphfzNTcJ3rMv7EYiQHNHAcP_BP8K39FLpUuEReUJ_5UOfk6a6xq2BKbz9bmwXwrJV8UoT1wfRaEzIM=?_z=6388427&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectbygliscortor.com
FingerprintE9:3F:2E:14:B5:B9:D8:B9:B7:A5:42:6A:E9:9B:44:7D:88:E9:50:AF
ValidityThu, 30 Nov 2023 09:56:26 GMT - Wed, 28 Feb 2024 09:56:25 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impression/NcChDuMbHkjGU8u5_Rb5ly0PS3Vdn7MF_vzwRKwR7I25gmyELuAcIx38T1LJeRiGUEdiBbEKEmUNG8CjQVCsZQz-8fz97IrPKWab5dGpX59jWp7WwMDA-LbFmy0PpeDPdn3DGXGk7HYRcqW8yeCZbZkZj3n95HjFpU-CCpvWYQsV6XtoDm-dPkEJzM2OoULYYtv9SsbkTbylrUijp0zltdA0rbPcppps0fAz9q3rraS6LCCX1uzNAnY3WU7cKGs8DSA9l-2FbGBwm6WRSJDf9IPjkUKM48wTqYSw9VbCCxEy99x4q0_cqdwcLuwKroL_AwcVEdyK14rV5DF1rTmejTUasDJ9nCgxk_JnuNbO0v3MnkwxzAAPzH-f7js1L_Xh7hF0AG6xxvGmu24O5PxI7Cn1C2Y7yQhV1Oac8YXUAwXPRA6Y7g7mZd2UyooMZ8GM6xGbIg_SVr8wal2kHcs4u0CWIvNZE6GPb3olOUD0rjl6h-YY6pS0NSltwHMtbDGWg6q3tDh54cyfrFxv1p9Fc5JU6piifhmKqf4JcC6KqqsAqK0nzjPz0NM8N-0l5FbXDGV-7kgBTylbwifznrSV7DcP-wJpj8i-wgDC2hM2CFXxsQBVFxEE13KdR191F2bwFyKb0GZkCZgqBM_ysdwDZhBvALTroUQ6kH1PdqREiFpE27aNjYoezIM4hKaIbmXOoflvdD7k597wE5KrpU5SXf5ZCWTefMDvCIef7eTeB1DCssTw2jl8VziUbDn9FphfzNTcJ3rMv7EYiQHNHAcP_BP8K39FLpUuEReUJ_5UOfk6a6xq2BKbz9bmwXwrJV8UoT1wfRaEzIM=?_z=6388427&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Cookie: OAID=77a9ecc6dc904af98b307cbbe77bfc71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:07 GMT
content-type: image/gif
content-length: 43
x-trace-id: c99d4d3014e30e22153327f43e80be0e
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
gishejuy.com/impression/8YbRCG_45BcHZ7JaCRXtyfjmcb7HljMnYj8GCPOP-28n6VXYFikK-O-c89WuOpSpL6jVLQorv1Bg-5274zq0hTo8UD5iGyuq3N7kklrbruwYAXca0pbx5dUAetKizlacD7fPtFazE95RAaBPNmURHgX5a00fczvp43XVaNIz_tTvoHqt62TYztf8OGcyNuXvaAXrmDLHfRAhgHMuoFOh8T1JAmpUYSCSSonv8zwIh2SB6VGP2osJnh39h1T4vhoCfbMtKMowCoOSAnSjobaVB_bCqfpdiMNdBIyE2KZfigoTOPWKqQQdpyB0-L7qjYnhVx1fd9rQxrMtIx6UoLvCgweHwAJPi8gPPwO9Ylx7yro6GWQ8Ps81iAiSMnac7kgIl534XjBy1lWEW_V30bIEVlUmCKGZ_QLtf1oB46fPgLqkuY8hEdKjOQgUOzFhRzuP85uVd_Tqm52aKr502ywY6VoAMWr9u6AaGChpM0deOawR4QRVMHtoDDQOJFPjrFZqiJUaFNy3ETQC6AuW7Qb20RBBHc70ybqC90wbQUISmNFgkQWp7CyPK0zIcEolYcWaVWRrr5sYD37bLWkvare6t5FUqzCeMeLImWFLxwpxrCXWbmpofHt9lLr-vM0CwnWEiZ2BJKkvlUQOAibmOg892mmd0tuFK3AddSEcBsvhohOIapDd492lyOPcm_bu0M-uxC07toz3TSKt-LlgamqCXyXrRo7dhmQjk-AabrI2OK9-cxD_hY5vKRFXTEw1sIWtD2LfVNqmdfj6pYna9ErwD4udFEdIN7d9zI1Sazpx-O4GclIytGbDvtHPnyyZDDCBpanDof_UUZs=?_z=6388425&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 43 B URL GET HTTP/2 gishejuy.com/impression/8YbRCG_45BcHZ7JaCRXtyfjmcb7HljMnYj8GCPOP-28n6VXYFikK-O-c89WuOpSpL6jVLQorv1Bg-5274zq0hTo8UD5iGyuq3N7kklrbruwYAXca0pbx5dUAetKizlacD7fPtFazE95RAaBPNmURHgX5a00fczvp43XVaNIz_tTvoHqt62TYztf8OGcyNuXvaAXrmDLHfRAhgHMuoFOh8T1JAmpUYSCSSonv8zwIh2SB6VGP2osJnh39h1T4vhoCfbMtKMowCoOSAnSjobaVB_bCqfpdiMNdBIyE2KZfigoTOPWKqQQdpyB0-L7qjYnhVx1fd9rQxrMtIx6UoLvCgweHwAJPi8gPPwO9Ylx7yro6GWQ8Ps81iAiSMnac7kgIl534XjBy1lWEW_V30bIEVlUmCKGZ_QLtf1oB46fPgLqkuY8hEdKjOQgUOzFhRzuP85uVd_Tqm52aKr502ywY6VoAMWr9u6AaGChpM0deOawR4QRVMHtoDDQOJFPjrFZqiJUaFNy3ETQC6AuW7Qb20RBBHc70ybqC90wbQUISmNFgkQWp7CyPK0zIcEolYcWaVWRrr5sYD37bLWkvare6t5FUqzCeMeLImWFLxwpxrCXWbmpofHt9lLr-vM0CwnWEiZ2BJKkvlUQOAibmOg892mmd0tuFK3AddSEcBsvhohOIapDd492lyOPcm_bu0M-uxC07toz3TSKt-LlgamqCXyXrRo7dhmQjk-AabrI2OK9-cxD_hY5vKRFXTEw1sIWtD2LfVNqmdfj6pYna9ErwD4udFEdIN7d9zI1Sazpx-O4GclIytGbDvtHPnyyZDDCBpanDof_UUZs=?_z=6388425&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint99:91:AA:4E:BA:FC:75:A0:0A:79:EE:F6:15:64:FA:15:B2:BC:61:31
ValidityWed, 25 Oct 2023 09:21:45 GMT - Tue, 23 Jan 2024 09:21:44 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impression/8YbRCG_45BcHZ7JaCRXtyfjmcb7HljMnYj8GCPOP-28n6VXYFikK-O-c89WuOpSpL6jVLQorv1Bg-5274zq0hTo8UD5iGyuq3N7kklrbruwYAXca0pbx5dUAetKizlacD7fPtFazE95RAaBPNmURHgX5a00fczvp43XVaNIz_tTvoHqt62TYztf8OGcyNuXvaAXrmDLHfRAhgHMuoFOh8T1JAmpUYSCSSonv8zwIh2SB6VGP2osJnh39h1T4vhoCfbMtKMowCoOSAnSjobaVB_bCqfpdiMNdBIyE2KZfigoTOPWKqQQdpyB0-L7qjYnhVx1fd9rQxrMtIx6UoLvCgweHwAJPi8gPPwO9Ylx7yro6GWQ8Ps81iAiSMnac7kgIl534XjBy1lWEW_V30bIEVlUmCKGZ_QLtf1oB46fPgLqkuY8hEdKjOQgUOzFhRzuP85uVd_Tqm52aKr502ywY6VoAMWr9u6AaGChpM0deOawR4QRVMHtoDDQOJFPjrFZqiJUaFNy3ETQC6AuW7Qb20RBBHc70ybqC90wbQUISmNFgkQWp7CyPK0zIcEolYcWaVWRrr5sYD37bLWkvare6t5FUqzCeMeLImWFLxwpxrCXWbmpofHt9lLr-vM0CwnWEiZ2BJKkvlUQOAibmOg892mmd0tuFK3AddSEcBsvhohOIapDd492lyOPcm_bu0M-uxC07toz3TSKt-LlgamqCXyXrRo7dhmQjk-AabrI2OK9-cxD_hY5vKRFXTEw1sIWtD2LfVNqmdfj6pYna9ErwD4udFEdIN7d9zI1Sazpx-O4GclIytGbDvtHPnyyZDDCBpanDof_UUZs=?_z=6388425&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Cookie: OAID=77a9ecc6dc904af98b307cbbe77bfc71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:07 GMT
content-type: image/gif
content-length: 43
x-trace-id: 8a8a3e21a9c7fbbc4867498ae64c755b
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
offerimage.com/www/images/1254ddfd42baa84cea2221d2e82fa511.png
200 OK 70 kB URL GET HTTP/2 offerimage.com/www/images/1254ddfd42baa84cea2221d2e82fa511.png
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 1254ddfd42baa84cea2221d2e82fa511
84b26dfb937aa8b9746a20e52f9d1330a9a29eab
eba572a9f6836dc915e75251fed8c1e6129c7013cb380af95899e9824a82fd92
GET /www/images/1254ddfd42baa84cea2221d2e82fa511.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 21:39:07 GMT
content-type: image/png
content-length: 69506
last-modified: Mon, 28 Aug 2023 16:35:16 GMT
etag: "64ecccc4-10f82"
expires: Sun, 03 Dec 2023 08:10:44 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 48503
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6b8845ddd56c1-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
200 OK 17 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash fcc7ee5678541adea03770b8cfafd146
e5d4c9d76cabeef9e8faa14ff0ed07bd097396fc
1474e26a5116379d3fa3f65cec9f195f0d826c24891a55a15f39c92dae12405d
GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 02 Dec 2023 21:39:07 GMT
date: Sat, 02 Dec 2023 21:39:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 232893
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gishejuy.com/500/6388425?excludes=18833904&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 0 B URL OPTIONS HTTP/2 gishejuy.com/500/6388425?excludes=18833904&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint99:91:AA:4E:BA:FC:75:A0:0A:79:EE:F6:15:64:FA:15:B2:BC:61:31
ValidityWed, 25 Oct 2023 09:21:45 GMT - Tue, 23 Jan 2024 09:21:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /500/6388425?excludes=18833904&oaid=77a9ecc6dc904af98b307cbbe77bfc71&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:07 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
200 OK 15 kB URL GET HTTP/2 offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 9e9e762a8aeda4556eb0010f07639539
0bcb67a031d30b5513b5e574b4ef7de2ca2db096
32dce39ac731f9cec2f539d042bcfcd5ad867b4a4cc25ffc7d36feb6611264e4
GET /www/images/9e9e762a8aeda4556eb0010f07639539.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 21:39:07 GMT
content-type: image/jpeg
content-length: 14857
cache-control: max-age=86400
cf-bgj: h2pri
etag: "655a0954-3a09"
expires: Sun, 03 Dec 2023 07:37:56 GMT
last-modified: Sun, 19 Nov 2023 13:10:44 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 50471
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6b885ffa556c1-OSL
X-Firefox-Spdy: h2
gishejuy.com/impression/S2p8T6QRNWN9TTL7UmFxIvIhUaLgky2A9DlNUz2c0j1_IwDBX3SKA18xrhPrxgjcJgPdABRo8b1z0jFhHf1jz2qLcb56nhTOKjUZRJeyuC5pzZd9l-UqUKGgqMgqA3MlgewS1WLkfZsj5E5ZWxcZhexRrHOarS0fZZTJ54alABEEnAIwL3al-0gDI_Z78Llhp4EPX7mj7pLWHullfPYaBTQ5N4xyTo6Y3I5Y8T31njJCF460IWzKsJqF4P15dF003iKg5Ul9KFQmhNcKqAY7h6BCngS5DFzB5nec9eZM6TgAoY-JdThCcEJRAmgipyIVmVUXZOXXJGbTd1cjJfPOaUvljO3al2gEJZxBm_V9np_9udyJs3DA3dECK_hfa8HYx065liUhFaJO7bE__GwLjkiP4uqzl-f-Q9bAmPx9EG0F6QQqeGpMgKIvr8uRNRYXDJl-W1mOfxOc5LJKaThoenrJFGbhslTMhtM1hOJ1EXgNONt9brp3Oaudn8c87MGYqQSOTONxu0fLBPqeN2aTOPUYGYWdVp3lThkrorjqXj79lwRvPX81m0RJBNNYoikSaOVugR7qHrA9pvH2gK9Yh6NmAm_kTflbYFLFNA==?_z=6388425&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 43 B URL GET HTTP/2 gishejuy.com/impression/S2p8T6QRNWN9TTL7UmFxIvIhUaLgky2A9DlNUz2c0j1_IwDBX3SKA18xrhPrxgjcJgPdABRo8b1z0jFhHf1jz2qLcb56nhTOKjUZRJeyuC5pzZd9l-UqUKGgqMgqA3MlgewS1WLkfZsj5E5ZWxcZhexRrHOarS0fZZTJ54alABEEnAIwL3al-0gDI_Z78Llhp4EPX7mj7pLWHullfPYaBTQ5N4xyTo6Y3I5Y8T31njJCF460IWzKsJqF4P15dF003iKg5Ul9KFQmhNcKqAY7h6BCngS5DFzB5nec9eZM6TgAoY-JdThCcEJRAmgipyIVmVUXZOXXJGbTd1cjJfPOaUvljO3al2gEJZxBm_V9np_9udyJs3DA3dECK_hfa8HYx065liUhFaJO7bE__GwLjkiP4uqzl-f-Q9bAmPx9EG0F6QQqeGpMgKIvr8uRNRYXDJl-W1mOfxOc5LJKaThoenrJFGbhslTMhtM1hOJ1EXgNONt9brp3Oaudn8c87MGYqQSOTONxu0fLBPqeN2aTOPUYGYWdVp3lThkrorjqXj79lwRvPX81m0RJBNNYoikSaOVugR7qHrA9pvH2gK9Yh6NmAm_kTflbYFLFNA==?_z=6388425&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint99:91:AA:4E:BA:FC:75:A0:0A:79:EE:F6:15:64:FA:15:B2:BC:61:31
ValidityWed, 25 Oct 2023 09:21:45 GMT - Tue, 23 Jan 2024 09:21:44 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impression/S2p8T6QRNWN9TTL7UmFxIvIhUaLgky2A9DlNUz2c0j1_IwDBX3SKA18xrhPrxgjcJgPdABRo8b1z0jFhHf1jz2qLcb56nhTOKjUZRJeyuC5pzZd9l-UqUKGgqMgqA3MlgewS1WLkfZsj5E5ZWxcZhexRrHOarS0fZZTJ54alABEEnAIwL3al-0gDI_Z78Llhp4EPX7mj7pLWHullfPYaBTQ5N4xyTo6Y3I5Y8T31njJCF460IWzKsJqF4P15dF003iKg5Ul9KFQmhNcKqAY7h6BCngS5DFzB5nec9eZM6TgAoY-JdThCcEJRAmgipyIVmVUXZOXXJGbTd1cjJfPOaUvljO3al2gEJZxBm_V9np_9udyJs3DA3dECK_hfa8HYx065liUhFaJO7bE__GwLjkiP4uqzl-f-Q9bAmPx9EG0F6QQqeGpMgKIvr8uRNRYXDJl-W1mOfxOc5LJKaThoenrJFGbhslTMhtM1hOJ1EXgNONt9brp3Oaudn8c87MGYqQSOTONxu0fLBPqeN2aTOPUYGYWdVp3lThkrorjqXj79lwRvPX81m0RJBNNYoikSaOVugR7qHrA9pvH2gK9Yh6NmAm_kTflbYFLFNA==?_z=6388425&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=http%3A%2F%2Fwww.metrogossipcity.online%2F2023%2F11%2Fhow-much-disneys-wish-cost-to-make-what.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Cookie: OAID=77a9ecc6dc904af98b307cbbe77bfc71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:10 GMT
content-type: image/gif
content-length: 43
x-trace-id: ea57fc2e7093afd0d4c900f5c74d7ae0
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
5.8 kB URL aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP
File type gzip compressed data, max speed, from Unix\012- data
Hash 26f74a51f3a41ab81bb1600c4dff77f8
94f623e1202d4fe4243e01b574201944e21ac815
68c20496e6e0670329c0a07f07d26fa6c870903c3c5f0f5082d8f6a09373be62
GET /update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:19 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=90
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-01-19-16-42-22.chain; p384ecdsa=t7j8YLL_u0xicmqflgs3S0pyS1sP-a9Zl61BsfLgdXz1LUC90g6B3Y-ymIxMxm78ocwXYCVS3q_dZI_X6JD6nLCKjpH2qqKLKXkfVV7uU8xJFLSE6ph9RijUAvyI7M12
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.youtube.com/embed/pWeKh2kF5_4
200 OK 550 kB URL GET HTTP/3 www.youtube.com/embed/pWeKh2kF5_4
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58198)
Size 550 kB (550339 bytes)
Hash a22916f59a1617d89b99a971f516958f
179479e10f041a5698d96751e9cf5ef2193f9e4a
cb3e1cb9900533c722f4f1013e99c77bd2d0f4228a9ec8f9204abae314838350
GET /embed/pWeKh2kF5_4 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:01 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: require-trusted-types-for 'script';report-uri /cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=tGi9JsHET-4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=r26f4XpgZVA; Domain=.youtube.com; Expires=Thu, 30-May-2024 21:39:01 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxICEgA%3D; Domain=.youtube.com; Expires=Thu, 30-May-2024 21:39:01 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+972; expires=Mon, 01-Dec-2025 21:39:01 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602
16 kB URL www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type gzip compressed data, max compression\012- data
Hash ffa7136f4fad409b9d50d2a1cb63cfe0
68442cba48f10d2cec5c7de0bd9aab14588bc5ac
5578058d0c7abf7f000929e7ee279b582e50bf32fed36d94822b65fc57004f85
GET /comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:01 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: same-site
content-security-policy: script-src 'nonce-HNbEfDN5zWlA5m74kczFqg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=CvLIuDR6BUH7xowlo4GuPD1VGI5QULFOh2GoaipkTtRMDa9XygIa6PuJkmoNFGxUF64lAbmP9Em_FDiXoQY66uhLHA4pueQLs0TG_Y9t-xYp2KKNeZrYuWSQ4vPWfP1cpfqclPm5L_2wV6S1QO9JBydBeVglcSIhvBQc76_-00Y; expires=Sun, 02-Jun-2024 21:39:01 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
Requested by https://www.youtube.com/embed/pWeKh2kF5_4
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1701553167282
Content-Type: application/json
X-Goog-Visitor-Id: CgtyMjZmNFhwZ1pWQSj1x66rBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231128.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1701553147405&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=23&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C307%2C198&vis=1&wgl=true&ca_type=image
Content-Length: 821
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/pWeKh2kF5_4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Sat, 02 Dec 2023 21:39:22 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+016; expires=Mon, 01-Dec-2025 21:39:22 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 02 Dec 2023 21:39:22 GMT
cache-control: private
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjBX3OS9MloEw5drmO3UaOg2mfRBKlCxqb6Two3Om8iNGO9t6drZZRrZoNpiTctlK_C2WTATGuzef_NlRMoU2dYbaG2hbjh513eQPKJ6TfIsRgZVoWofZQtSluEvyNw_a6ABsduH0yAFWbBJLEBiupYE1tClCmvhtSpMEWC-MgVajvRgHhUmubQkGZSu40/s320/Farrey.jpg
200 OK 28 kB URL GET HTTP/3 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjBX3OS9MloEw5drmO3UaOg2mfRBKlCxqb6Two3Om8iNGO9t6drZZRrZoNpiTctlK_C2WTATGuzef_NlRMoU2dYbaG2hbjh513eQPKJ6TfIsRgZVoWofZQtSluEvyNw_a6ABsduH0yAFWbBJLEBiupYE1tClCmvhtSpMEWC-MgVajvRgHhUmubQkGZSu40/s320/Farrey.jpg
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 256x320, components 3\012- data
Hash da90986357c764d8660e96b44f31663d
80b5ba5d3f8800f4762846804a26f863ed4fa41b
a6b8fd62fa7edf8b808be48890652bbcf6f51f2c4a8f7c79a9352f5dbf1058ba
GET /img/b/R29vZ2xl/AVvXsEjBX3OS9MloEw5drmO3UaOg2mfRBKlCxqb6Two3Om8iNGO9t6drZZRrZoNpiTctlK_C2WTATGuzef_NlRMoU2dYbaG2hbjh513eQPKJ6TfIsRgZVoWofZQtSluEvyNw_a6ABsduH0yAFWbBJLEBiupYE1tClCmvhtSpMEWC-MgVajvRgHhUmubQkGZSu40/s320/Farrey.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v249f"
expires: Sun, 03 Dec 2023 21:39:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Farrey.jpg"
x-content-type-options: nosniff
date: Sat, 02 Dec 2023 21:39:03 GMT
server: fife
content-length: 28308
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
veepteero.com/88/12752
200 OK 3.0 kB IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint1A:C6:97:A2:07:05:7E:05:7E:51:8B:FD:B1:65:6D:73:73:55:0A:0A
ValiditySun, 15 Oct 2023 05:22:23 GMT - Sat, 13 Jan 2024 05:22:22 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3305), with no line terminators
Hash 2906183b68584beac9ea2471b64e4df9
5a968c77081df78d524a9215519e32b867c73063
b4dc413576e8c0afa95a716304a8dba6ed5cef4c5eecb9977e60118735ec83bf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /88/12752 HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:01 GMT
content-type: application/json
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
ibrapush.com/pfe/current/tag.min.js?z=6388428
200 OK 13 kB URL GET HTTP/2 ibrapush.com/pfe/current/tag.min.js?z=6388428
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectibrapush.com
FingerprintAC:F6:AB:6F:AB:34:17:90:49:79:7B:7C:FD:CE:24:5B:02:33:E5:E2
ValidityFri, 10 Nov 2023 10:01:20 GMT - Thu, 08 Feb 2024 10:01:19 GMT
File type C source, ASCII text, with very long lines (13300), with no line terminators
Hash 258578af3c107ccb907f73c3a2f4c25f
7a192edea829968fb7f57f2a2fc4cb5b612598be
1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75
GET /pfe/current/tag.min.js?z=6388428 HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
link: <https://my.rtmark.net>; rel=dns-prefetch;, <https://my.rtmark.net>; rel=preconnect
content-encoding: gzip
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
200 OK 56 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Dec 2023 11:33:17 GMT
expires: Sun, 01 Dec 2024 11:33:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/css
vary: Accept-Encoding
age: 36346
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
200 OK 12 B URL POST HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 6949f52318584a4b51c719a9b84a7287
9fbd870c6afd4bdd6fbbd87f52df2c81dd23e905
72603096ec3515dbc615ab8837fd1b15e91ee827bc7af41d71c9882b08699375
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1724
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 02 Dec 2023 21:39:43 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://www.metrogossipcity.online
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
ibrapush.com/zone?pub=0&zone_id=6388428&is_mobile=false&domain=www.metrogossipcity.online&var=&ymid=&var_3=&tg=0&sw=3.1.471
200 OK 880 B URL GET HTTP/2 ibrapush.com/zone?pub=0&zone_id=6388428&is_mobile=false&domain=www.metrogossipcity.online&var=&ymid=&var_3=&tg=0&sw=3.1.471
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectibrapush.com
FingerprintAC:F6:AB:6F:AB:34:17:90:49:79:7B:7C:FD:CE:24:5B:02:33:E5:E2
ValidityFri, 10 Nov 2023 10:01:20 GMT - Thu, 08 Feb 2024 10:01:19 GMT
File type troff or preprocessor input, ASCII text, with very long lines (977), with no line terminators
Hash 43e378e746e6f1d90d2fbe2ff5fdb9e9
f1385e7418fe5ec765feede6ee44719bcd99bc7c
e8ff03cad5c852292935b509f34c0acb88dc4c63b437cc244aea546301b9cb53
GET /zone?pub=0&zone_id=6388428&is_mobile=false&domain=www.metrogossipcity.online&var=&ymid=&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: application/json; charset=utf-8
content-length: 880
x-trace-id: d15a07eaf9584743603aaf2745987c03
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 31 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 21:39:00 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 927315
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82f6b859b985b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ibrapush.com/pfe/current/defaultSkin.min.js
200 OK 57 kB URL GET HTTP/2 ibrapush.com/pfe/current/defaultSkin.min.js
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectibrapush.com
FingerprintAC:F6:AB:6F:AB:34:17:90:49:79:7B:7C:FD:CE:24:5B:02:33:E5:E2
ValidityFri, 10 Nov 2023 10:01:20 GMT - Thu, 08 Feb 2024 10:01:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:04 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-df63"
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
alwingulla.com/88/tag.min.js
200 OK 73 kB URL GET HTTP/2 alwingulla.com/88/tag.min.js
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subjectalwingulla.com
Fingerprint2C:B1:7E:4A:CE:97:8A:C0:01:AF:4F:7E:07:B7:0B:33:0B:C8:78:FD
ValidityWed, 15 Nov 2023 17:59:15 GMT - Tue, 13 Feb 2024 17:59:14 GMT
File type ASCII text, with very long lines (65494)
Hash 2d428c5ba40b75f4ea669fb70624ebed
c95ca10a3d854fbcf9cf160b42d52085b49af563
fe7a57f07742169ce53977a6c716baad041a0f875de0496e378f897f63f418a2
GET /88/tag.min.js HTTP/1.1
Host: alwingulla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 21:39:00 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 0e835e882b4e4713bf6477088bd5016c
cache-control: max-age=86400
last-modified: Fri, 01 Dec 2023 17:27:59 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Sun, 03 Dec 2023 02:15:12 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 69828
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F9P0m4c%2BsJ%2FUzHP7mrzqFmpWACYc4ltRkLKEWqSeSeblQKIeKsxOzY8Em4bCKudK5hiGvURhZEsfA%2Faf70arNyCO9o6xGyb3LnoC4B5ubL2MrwdxBP5uCHarS0ONq3f2Ow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6b85988c556c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ibrapush.com/pfe/current/universal.min.js?v=3.1.471
200 OK 88 kB URL GET HTTP/2 ibrapush.com/pfe/current/universal.min.js?v=3.1.471
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerLet's Encrypt
Subjectibrapush.com
FingerprintAC:F6:AB:6F:AB:34:17:90:49:79:7B:7C:FD:CE:24:5B:02:33:E5:E2
ValidityFri, 10 Nov 2023 10:01:20 GMT - Thu, 08 Feb 2024 10:01:19 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d46d2997ab218d1dba1ab614422ed53f
3f1f6b9847c8ad209835db366c62fcb209b83a67
09e8ce2dfeac0ad09cd24788931b38ea7e7592f2c28eecc324b2dd1cd69d1b42
GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.metrogossipcity.online/
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-1572c"
access-control-allow-origin: http://www.metrogossipcity.online
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
200 OK 1.0 kB URL GET HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (1034), with no line terminators
Hash 8ff570ac79b01798f6172dc91aecd296
076786842fcca23027a0afda814f5525de89c44c
49ab6bbffb3a5c4dc82a49a95a4a2cccf9affa6e0ec399832689f2320030c872
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Sat, 02 Dec 2023 21:39:02 GMT
date: Sat, 02 Dec 2023 21:39:02 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602
200 OK 0 B URL GET HTTP/2 www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:01 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: same-site
content-security-policy: script-src 'nonce-HNbEfDN5zWlA5m74kczFqg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=CvLIuDR6BUH7xowlo4GuPD1VGI5QULFOh2GoaipkTtRMDa9XygIa6PuJkmoNFGxUF64lAbmP9Em_FDiXoQY66uhLHA4pueQLs0TG_Y9t-xYp2KKNeZrYuWSQ4vPWfP1cpfqclPm5L_2wV6S1QO9JBydBeVglcSIhvBQc76_-00Y; expires=Sun, 02-Jun-2024 21:39:01 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602
200 OK 66 kB URL GET HTTP/3 www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33857)
Hash 356c271e31cca71c760ccd4e64d169e7
e14e7c432cf675248322c717f9f9c0b824383d6d
4d7a302bad5d0b44b5c1bd84de3b1341aee24ba733f7e122f622b9b8d4cc6bf8
GET /comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:01 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-XbLYm2Bj-8o7yQHBelMlhA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=IQiV2Iy3BSIZQD1FdE0sbCovynqf404us-GUmbhJQyURbeTT9ADl4k-asZT_1wdPPOJTx_4Uk0OTOOfrhdCii7gh444-CwI2HplO0fadudyKVtO4GUkgB6F-ueWVlMDFX9R0dv_dBK8bOBy18OSwL23eTDOvW3QpmJq79_0ILqs; expires=Sun, 02-Jun-2024 21:39:01 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tzegilo.com/stattag.js
200 OK 19 kB IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint52:B8:ED:73:BB:55:6F:9C:F8:97:7C:04:34:2B:AD:DB:55:0A:C9:6A
ValidityThu, 05 Oct 2023 17:59:18 GMT - Wed, 03 Jan 2024 17:59:17 GMT
File type ASCII text, with very long lines (18369)
Hash 89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 21:39:02 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4219
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ks2uMg4sHQkFGVicc93%2FdI%2BiTq%2BwrYa2tntqhhkfDZ1EhvQymX2PY9S8Xl3nzTM5%2B6s14SuGcZBZ6zR4npjJAJp9t0ef87EA%2FNp3YtsqvE4YTyFrgmQqGGVru9LkGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6b8667f1456cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
200 OK 61 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52479)
Hash e80109e3718cd26d36b2eae0940cf103
d0cb025cc289bf4709b819fc1b9fa7eb4c6a6fd3
089862ec364bb9852642d72243d8c2de7f0e28ba7983bc6db688f0c8e66bb258
GET /recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ip64cnq387qx HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:03 GMT
content-security-policy: script-src 'nonce-JI1MKUMhydWL5g0HqB5p-Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=bm51tf
200 OK 1.2 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=bm51tf
IP
Requested by https://www.blogger.com/comment/frame/481800729407244029?po=3747335500130799386&hl=en&blogspotRpcToken=5019602#%7B%22color%22%3A%22rgb(136%2C%20136%2C%20136)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(17%2C%2017%2C%2017)%22%2C%22fontFamily%22%3A%22PT%20Sans%2C%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1242), with no line terminators
Hash 5f64133a740a19dda373fcf3413b0b60
b0b822147f22dbe509cffc785f7549c4ec1a928b
d213359293937fcf8c7167e2e3654286d5c437754b30acf9e3dd4c93d47eecf0
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.p3UiCj65kJc.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3X42i0kXRgVKl3800X8GWZ-Korng/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=bm51tf HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 673
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 12:59:25 GMT
expires: Thu, 28 Nov 2024 12:59:25 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 290377
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.metrogossipcity.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:56 GMT
expires: Thu, 28 Nov 2024 21:13:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 260711
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
200 OK 6.8 kB URL GET HTTP/3 www.blogger.com/navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
Requested by http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6956), with no line terminators
Hash 7ba11489ed56b6b756abb8098610b4ea
e4feca8e1d659cce9818848cd0d195495683873c
865d6d6cdc1cba54d0d19afa53fed291110c577cbeee3b152d75df5d0eeb2484
GET /navbar.g?targetBlogID=481800729407244029&blogName=Metro+Dossip+City&publishMode=PUBLISH_MODE_HOSTED&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=http://www.metrogossipcity.online/search&blogLocale=en&v=2&homepageUrl=http://www.metrogossipcity.online/&targetPostID=3747335500130799386&blogPostOrPageUrl=http://www.metrogossipcity.online/2023/11/how-much-disneys-wish-cost-to-make-what.html&vt=-6227579304994673684&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.metrogossipcity.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 21:39:02 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2654
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
142.250.74.147
139.45.197.242
104.21.72.155
0.0.0.0