r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Sat, 14 Jan 2023 23:45:53 GMT
Date: Sat, 14 Jan 2023 22:21:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3063227f59d1935298b0620fa7919145
478e1d8bef04b1f95381cac01829c03b6779d420
619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12142
Expires: Sun, 15 Jan 2023 01:43:56 GMT
Date: Sat, 14 Jan 2023 22:21:34 GMT
Connection: keep-alive
mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
142.250.74.33200 OK 31 kB URL HTTP/1.1 mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2771)
Hash acc90eeef6b72b71d001b5a9f23bb742
e161ea7a9b6f896d86924b12d3b40db65c1d20a5
378b0f00576e8e9d2db5268ffe52531e539eb24ee58d2172cf6c2bda7dcd555b
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
GET /search/label/Ideia%20Anonymous HTTP/1.1
Host: mundodoshacker.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 14 Jan 2023 22:21:34 GMT
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 09 Jan 2023 18:51:19 GMT
ETag: W/"64d3140bd2e61ac7a4471dabbab522215b0b6e2ec9804af7e28bad8cadf04216"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 31118
Server: GSE
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 21:48:56 GMT
content-type: application/json
age: 1958
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7bd85a261739c122eefb74ffddaec99
e2e059b0740592e8591d432249aafe5fcb8af23c
71bdd130b8d143f228542f678e91c98ab4e5844fb9f47b036e15372660be25fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71BDD130B8D143F228542F678E91C98AB4E5844FB9F47B036E15372660BE25FD"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3898
Expires: Sat, 14 Jan 2023 23:26:32 GMT
Date: Sat, 14 Jan 2023 22:21:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1xk2RguTqwwW+ZQSuT1SN9rvemxvJTQbhBVZbzgZms8Zppbb96Ryi4gCXECMUxWstk4aE3OPHR2icBsraHYnLA==
x-amz-request-id: 6WHRVPP0KZ0ST06P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 21:43:53 GMT
age: 2261
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
188.114.98.234200 OK 6.9 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP 188.114.98.234:0
File type ASCII text, with very long lines (27303)
Hash cbf8915e56f5efdf55a4da5c71837b9c
db61665daaf3bee57a3a6eb075fdd9affcd44dfe
2410e6da0ec1d910a51c92e147f56180ac8ec3789cb1a3ed09990366546e196c
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 22:21:34 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 565, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 2021-06-08 19:04:20
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: e9a84d03a1f7c6aa17012c712a6e5dd5
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 19179142
Server: cloudflare
CF-RAY: 7899c3f3ba290b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 22:21:34 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,700
142.250.74.74200 OK 521 B URL HTTP/1.1 fonts.googleapis.com/css?family=Montserrat:400,700
IP 142.250.74.74:0
Hash b52e405858cd07e929b5387c0ed0d1de
8dc157b5ece5222f0f175eee9379a699dee76cd8
e289bd897465ef8c6c74d81d09ee98cf500d744073df727158f6323caf335547
GET /css?family=Montserrat:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 14 Jan 2023 22:21:34 GMT
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
mundodoshacker.blogspot.com/js/cookienotice.js
142.250.74.33200 OK 2.0 kB URL HTTP/1.1 mundodoshacker.blogspot.com/js/cookienotice.js
IP 142.250.74.33:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: mundodoshacker.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:22 GMT
Expires: Sat, 21 Jan 2023 22:21:22 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 14 Jan 2023 19:54:15 GMT
Content-Type: text/javascript
Age: 12
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70fb67acbcd1cd07bf61a5cbf5aaaa6f
5ac0773f7f1ad263a1c279b8afc9055eecbf3787
e261b2910c042fac3821dcc968af75e010bbac179a1ad5ebd284e97fff682794
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 83579ff88cab4d4d05d4741599104d9c
fe74c219f8655a4ca36fe397884e55ab63d1288a
a492a770e88739fac8094f7b73f87474cee4ad2ccbf9f1963b935474544ef3f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c892b3b0307d65e7dac4465d5c3d4b25
a5313ac9679f793a6704e56a68705c40c0eb3982
9423b3f1a58c7698c193c5ce8ffe7d88b735945f155a74f6beeffe59ec3e8aae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c892b3b0307d65e7dac4465d5c3d4b25
a5313ac9679f793a6704e56a68705c40c0eb3982
9423b3f1a58c7698c193c5ce8ffe7d88b735945f155a74f6beeffe59ec3e8aae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b111ef82a33bd2b2b3d2b52034492d14
7f753449a31cb983369fbfa8394569f3ca5c6219
fff2ff42d2cb0bfdb042c83b88175f25cc5224afb44e9488da817bccded79ce8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
216.58.207.202200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
IP 216.58.207.202:0
File type ASCII text, with very long lines (32341)
Hash 856f85cc1b07156fa844b44a10c236c2
7cef457c0e1cd0c20f4e699564ea8997f0332021
c61aa9ce7b32f93630abac1a4b27382f9333e0ff69477c9d9099070ae0742b01
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 14 Jan 2023 12:53:10 GMT
expires: Sun, 14 Jan 2024 12:53:10 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 34104
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-lvBYzzAxmYc/W4Bp6zUxgpI/AAAAAAAAFek/sX7EpCTv6IIVkuBJHiaY08qDiGm41NTeACLcBGAs/s1600/programar2.png
216.58.207.225200 OK 12 kB URL HTTP/2 2.bp.blogspot.com/-lvBYzzAxmYc/W4Bp6zUxgpI/AAAAAAAAFek/sX7EpCTv6IIVkuBJHiaY08qDiGm41NTeACLcBGAs/s1600/programar2.png
IP 216.58.207.225:0
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 4380ef4a97f582dba0a3f67d73b18a60
e4ec0fb3fa456f5029fcdc37e32674f72cfd7481
29d9877c290eca75846bd9380a8992f82f4425ec3231169bfeae6badb69a4a6c
GET /-lvBYzzAxmYc/W4Bp6zUxgpI/AAAAAAAAFek/sX7EpCTv6IIVkuBJHiaY08qDiGm41NTeACLcBGAs/s1600/programar2.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="programar2.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 11591
x-xss-protection: 0
date: Sat, 14 Jan 2023 22:21:23 GMT
expires: Sun, 15 Jan 2023 22:21:23 GMT
cache-control: public, max-age=86400, no-transform
etag: "v15ea"
content-type: image/png
age: 11
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
142.250.74.41200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 142.250.74.41:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 14 Jan 2023 09:30:51 GMT
expires: Sun, 14 Jan 2024 09:30:51 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 13 Jan 2023 20:51:53 GMT
content-type: text/css
age: 46243
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-NWBGkaeiR5I/VN094Ri_GuI/AAAAAAAADzU/NGtTOqUjfE0/s72-c/apostilas.gif
216.58.207.225200 OK 4.3 kB URL HTTP/2 3.bp.blogspot.com/-NWBGkaeiR5I/VN094Ri_GuI/AAAAAAAADzU/NGtTOqUjfE0/s72-c/apostilas.gif
IP 216.58.207.225:0
File type GIF image data, version 89a, 72 x 72\012- data
Hash 05fe648d2573bb36052014d18500505b
0fc6268d8b933e8c882fe0284cfb6c9e068c1f4d
b62db8baf2b9f39ee08a747a26f5a972a1961b8822cec6da6d8b647119c20d2e
GET /-NWBGkaeiR5I/VN094Ri_GuI/AAAAAAAADzU/NGtTOqUjfE0/s72-c/apostilas.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="apostilas.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4280
x-xss-protection: 0
date: Sat, 14 Jan 2023 22:21:23 GMT
expires: Sun, 15 Jan 2023 22:21:23 GMT
cache-control: public, max-age=86400, no-transform
etag: "vf36"
content-type: image/gif
age: 11
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-E-mdNPkiPME/UY25l5W_DNI/AAAAAAAAABk/q-UL89H572s/s72-c/baixar-gta-san-andreas-pc-torrent-full-crack-download.png
216.58.207.225200 OK 12 kB URL HTTP/1.1 4.bp.blogspot.com/-E-mdNPkiPME/UY25l5W_DNI/AAAAAAAAABk/q-UL89H572s/s72-c/baixar-gta-san-andreas-pc-torrent-full-crack-download.png
IP 216.58.207.225:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 290273c547be4f9947d9fb6fd574c71f
691e174b33bee4bf7c3579b01cf8fc146f139d49
b5f5bde83929ad0337e9139e36d336b778569fa279611db52c6a12ed1c4729e4
GET /-E-mdNPkiPME/UY25l5W_DNI/AAAAAAAAABk/q-UL89H572s/s72-c/baixar-gta-san-andreas-pc-torrent-full-crack-download.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="baixar-gta-san-andreas-pc-torrent-full-crack-download.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 12451
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:23 GMT
Expires: Sun, 15 Jan 2023 22:21:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v19"
Content-Type: image/png
Age: 11
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b111ef82a33bd2b2b3d2b52034492d14
7f753449a31cb983369fbfa8394569f3ca5c6219
fff2ff42d2cb0bfdb042c83b88175f25cc5224afb44e9488da817bccded79ce8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 50d12ff189e31e07479b683765b1180d
ec5812c12e3fc220421150e3e4b2e1e50a845873
1f9ebb1ad3a500768aa22e2af04873e7e88e6516f29500f466e7acc07ce916a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2364148299-widgets.js
142.250.74.41200 OK 58 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2364148299-widgets.js
IP 142.250.74.41:0
File type ASCII text, with very long lines (2221)
Hash aa3204f753ce29caca5fae8a9ed6c1ba
80df973191a590e44e09645faa5876e778359636
949f134de8cb10f358cf6b0c04f4879bba57ba2426c2364d91eca2432269b2aa
GET /static/v1/widgets/2364148299-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57511
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 05:21:33 GMT
expires: Fri, 12 Jan 2024 05:21:33 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Jan 2023 19:54:40 GMT
content-type: text/javascript
age: 234001
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-k1uVj6VIq_o/UY19Ry-AOlI/AAAAAAAABE8/axPeBdWxVEY/s72-c/photoshopcs5.jpg
216.58.207.225200 OK 3.3 kB URL HTTP/1.1 2.bp.blogspot.com/-k1uVj6VIq_o/UY19Ry-AOlI/AAAAAAAABE8/axPeBdWxVEY/s72-c/photoshopcs5.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 2897493ef48004f5f2eb22c2200f4d4d
56b4b2e58b6c43b5b98747721645b9d4bede215f
557fc714276ddbd7524c07c0a277880a817f73865cdc23c898e112af13490c6e
GET /-k1uVj6VIq_o/UY19Ry-AOlI/AAAAAAAABE8/axPeBdWxVEY/s72-c/photoshopcs5.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="photoshopcs5.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3305
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:23 GMT
Expires: Sun, 15 Jan 2023 22:21:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10ea"
Content-Type: image/jpeg
Age: 11
1.bp.blogspot.com/-EsLsXbD9XwI/UWmEGvN2BbI/AAAAAAAAA_Q/C4WmZJWnzKU/s72-c/ardamax_keylogger-logo.jpg
216.58.207.225200 OK 4.2 kB URL HTTP/1.1 1.bp.blogspot.com/-EsLsXbD9XwI/UWmEGvN2BbI/AAAAAAAAA_Q/C4WmZJWnzKU/s72-c/ardamax_keylogger-logo.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash b3a0cd22df2b0671bacdf459b2ef8219
7761e3a131302be0a8812d45569947139c478ff3
d8c4827135cd3cc7e4d8445d35543f1d7e8f3ec2bfb889ad954cf642f851309a
GET /-EsLsXbD9XwI/UWmEGvN2BbI/AAAAAAAAA_Q/C4WmZJWnzKU/s72-c/ardamax_keylogger-logo.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="ardamax_keylogger-logo.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4193
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:23 GMT
Expires: Sun, 15 Jan 2023 22:21:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10ea"
Content-Type: image/jpeg
Age: 11
1.bp.blogspot.com/-KmJGXWDcA9U/VN6jxpCKnsI/AAAAAAAAD08/yahxD5JmTc8/s72-c/We-Are-Legion-426x615.jpg
216.58.207.225200 OK 4.4 kB URL HTTP/1.1 1.bp.blogspot.com/-KmJGXWDcA9U/VN6jxpCKnsI/AAAAAAAAD08/yahxD5JmTc8/s72-c/We-Are-Legion-426x615.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash cb77e14a29ed7edc13764d36dd388b05
453bf6024b1c88a590fb46fc9226f07fed5a2822
c2c833c5f3d6592af42c764d4942276a953a2368f3845936d1bdfd608c46d1ff
GET /-KmJGXWDcA9U/VN6jxpCKnsI/AAAAAAAAD08/yahxD5JmTc8/s72-c/We-Are-Legion-426x615.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="We-Are-Legion-426x615.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4376
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:23 GMT
Expires: Sun, 15 Jan 2023 22:21:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf50"
Content-Type: image/jpeg
Age: 11
1.bp.blogspot.com/-6G0oMcEd0hM/VN6i4kWkOII/AAAAAAAAD00/lVXvDZqUMc8/s72-c/anonymous-global-blackout.jpg
216.58.207.225200 OK 3.4 kB URL HTTP/1.1 1.bp.blogspot.com/-6G0oMcEd0hM/VN6i4kWkOII/AAAAAAAAD00/lVXvDZqUMc8/s72-c/anonymous-global-blackout.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5d387b72ca15ea805b0cf57775825cea
f6a4c11969138725fd7c641f4608da526e5e7c1e
a4239ffb4fdfb788e89c02d550a52a050a5a62a70e9c7d7edb59e1df88e9f7c5
GET /-6G0oMcEd0hM/VN6i4kWkOII/AAAAAAAAD00/lVXvDZqUMc8/s72-c/anonymous-global-blackout.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anonymous-global-blackout.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3358
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:23 GMT
Expires: Sun, 15 Jan 2023 22:21:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf4e"
Content-Type: image/jpeg
Age: 11
i.ytimg.com/vi/B1vdel0S7Ic/default.jpg
142.250.74.118200 OK 4.8 kB URL HTTP/2 i.ytimg.com/vi/B1vdel0S7Ic/default.jpg
IP 142.250.74.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 2f103276d757cde7b8f74e3c34c6b13b
e3b173f276cb2b2c10f1280fffd9a7f681a3b7f8
a5cf88a4b796c6d80c9dbf26818de7569ae4352c20c5d404f5f02f487d1e5927
GET /vi/B1vdel0S7Ic/default.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 4782
date: Sat, 14 Jan 2023 22:21:34 GMT
expires: Sun, 15 Jan 2023 00:21:34 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
segurancadainformacao.org/guiahacker.js
190.2.139.23200 OK 7.1 kB URL HTTP/1.1 segurancadainformacao.org/guiahacker.js
IP 190.2.139.23:0
ASN #49981 WorldStream B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (16841)
Hash 235117c12d1e24180c8e2c9553732aff
3689c9e1ed7efa851ea5bf49495ec01923d75ee9
c8211252899bf4e277e83a6befb39f8744a41d085be156e385b01acd0fabf5cc
Analyzer Verdict Alert fortinet Malware
GET /guiahacker.js HTTP/1.1
Host: segurancadainformacao.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Sat, 14 Jan 2023 22:21:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
X-Powered-By: PHP/7.2.34
Content-Encoding: gzip
3.bp.blogspot.com/-uQGDCw3ZJCs/VNzEq5rr9yI/AAAAAAAADxg/j0hHGy3ts-Y/s72-c/mercado-ecommerce-redes-sociais-7-dicas-conquistar-clientes.jpg
216.58.207.225200 OK 5.4 kB URL HTTP/1.1 3.bp.blogspot.com/-uQGDCw3ZJCs/VNzEq5rr9yI/AAAAAAAADxg/j0hHGy3ts-Y/s72-c/mercado-ecommerce-redes-sociais-7-dicas-conquistar-clientes.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 3b4e70af0e44c989746a351d6d51edec
c0738263cead134dcc337acf1ee791aca346e266
1300f90050bad040f2a9e78b500e813d157306041136e8dce2bf212c8ca28d25
GET /-uQGDCw3ZJCs/VNzEq5rr9yI/AAAAAAAADxg/j0hHGy3ts-Y/s72-c/mercado-ecommerce-redes-sociais-7-dicas-conquistar-clientes.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="mercado-ecommerce-redes-sociais-7-dicas-conquistar-clientes.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5448
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:23 GMT
Expires: Sun, 15 Jan 2023 22:21:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf19"
Content-Type: image/jpeg
Age: 11
apis.google.com/js/platform.js
216.58.207.238200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Sat, 14 Jan 2023 22:21:34 GMT
expires: Sat, 14 Jan 2023 22:21:34 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 83579ff88cab4d4d05d4741599104d9c
fe74c219f8655a4ca36fe397884e55ab63d1288a
a492a770e88739fac8094f7b73f87474cee4ad2ccbf9f1963b935474544ef3f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c892b3b0307d65e7dac4465d5c3d4b25
a5313ac9679f793a6704e56a68705c40c0eb3982
9423b3f1a58c7698c193c5ce8ffe7d88b735945f155a74f6beeffe59ec3e8aae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c892b3b0307d65e7dac4465d5c3d4b25
a5313ac9679f793a6704e56a68705c40c0eb3982
9423b3f1a58c7698c193c5ce8ffe7d88b735945f155a74f6beeffe59ec3e8aae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c892b3b0307d65e7dac4465d5c3d4b25
a5313ac9679f793a6704e56a68705c40c0eb3982
9423b3f1a58c7698c193c5ce8ffe7d88b735945f155a74f6beeffe59ec3e8aae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70fb67acbcd1cd07bf61a5cbf5aaaa6f
5ac0773f7f1ad263a1c279b8afc9055eecbf3787
e261b2910c042fac3821dcc968af75e010bbac179a1ad5ebd284e97fff682794
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b111ef82a33bd2b2b3d2b52034492d14
7f753449a31cb983369fbfa8394569f3ca5c6219
fff2ff42d2cb0bfdb042c83b88175f25cc5224afb44e9488da817bccded79ce8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5ac0e204e812ce8905ac046581ff4e95
c0322d4ecff9356cca1a8e55d62e8d2f9540eca7
de65a926e0a1ce8b9724754564cef8e4bbe7709cef911e5dbd30db03211e6673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
188.114.98.234200 OK 67 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 188.114.98.234:0
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mundodoshacker.blogspot.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 22:21:35 GMT
Content-Type: font/woff2
Content-Length: 66624
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "db812d8a70a4e88e888744c1c9a27e89"
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 01/01/2023 12:36:06
CDN-ProxyVer: 1.03
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 1054
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: ada2442c0e2b649f8b99040354df2404
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 12
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7899c3f60cc4b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mundodoshacker.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 30928
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 13 Jan 2023 13:36:33 GMT
Expires: Sat, 13 Jan 2024 13:36:33 GMT
Cache-Control: public, max-age=31536000
Age: 117902
Last-Modified: Mon, 11 Jul 2022 18:57:39 GMT
Content-Type: font/woff2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.211.2200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.211.2:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 07:26:10 GMT
Expires: Sat, 28 Jan 2023 07:26:10 GMT
Cache-Control: public, max-age=1209600
Age: 53725
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a42ebceb58848f8667b5e3385cc8bf84
bff62a29a874ec050c9fb898c4bcd8e605407835
c436f31a573fe1f00fa245a5abc75bfabff6b38ba6e7cd8a7d9d6b1a879f191c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C436F31A573FE1F00FA245A5ABC75BFABFF6B38BA6E7CD8A7D9D6B1A879F191C"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11751
Expires: Sun, 15 Jan 2023 01:37:26 GMT
Date: Sat, 14 Jan 2023 22:21:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dd3c12997e3fa0689e23726969139853
310d2f58fc0a77c8acbee384fc26b857ff674cd6
0f0b9dee90ada1c14c3deaa12ac4efa933d9947c9eea01835b4e67a9c7d233c1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0F0B9DEE90ADA1C14C3DEAA12AC4EFA933D9947C9EEA01835B4E67A9C7D233C1"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=497
Expires: Sat, 14 Jan 2023 22:29:52 GMT
Date: Sat, 14 Jan 2023 22:21:35 GMT
Connection: keep-alive
mundodoshacker.blogspot.com/feeds/posts/summary/-/http://mundodoshacker.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1
142.250.74.33400 Bad Request 193 B URL HTTP/1.1 mundodoshacker.blogspot.com/feeds/posts/summary/-/http://mundodoshacker.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 83b482393f028e6de91b032e7fae746b
50bad14cd7b4602d7b9f1ef6d769288588594fc8
031cbc91f964c96aa1975380c3bd66f5fe254439f3281bf0e06bc385c3912aa2
GET /feeds/posts/summary/-/http://mundodoshacker.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1 HTTP/1.1
Host: mundodoshacker.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
HTTP/1.1 400 Bad Request
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
Date: Sat, 14 Jan 2023 22:21:35 GMT
Server: Blogger Render Server 1.0
Content-Length: 193
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cleverjump.org/counter.js
217.23.10.44200 OK 5.6 kB URL HTTP/1.1 cleverjump.org/counter.js
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
File type ASCII text, with CRLF line terminators
Hash 83126dc4af783a2179ab362a5bbec530
b1fe91477d92ab09066f28ddda5b31a4bf0f1689
cb1ef4607e93916a5dd30beae4617069924cb5f10edb65d8f93468c3fbdc1dc4
GET /counter.js HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 14 Jan 2023 22:21:35 GMT
Content-Type: application/javascript
Content-Length: 5571
Last-Modified: Wed, 20 Jan 2021 12:50:32 GMT
Connection: keep-alive
ETag: "60082718-15c3"
Expires: Sun, 15 Jan 2023 22:21:35 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes
statinside.com/counter.js
217.23.10.44200 OK 3.7 kB URL HTTP/1.1 statinside.com/counter.js
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
File type exported SGML document, ASCII text, with very long lines (8439)
Hash b5aa25093742549715a6dfbe795232e7
7438c6075282dd839122f3ba3634ad405fb2067b
59c784457013ec85621d34cb7df09cab6398599ef6fabd2de565bc0a2649271d
GET /counter.js HTTP/1.1
Host: statinside.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 14 Jan 2023 22:21:35 GMT
Content-Type: application/javascript
Last-Modified: Fri, 13 Jan 2023 16:16:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63c183d4-20f8"
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 22:17:25 GMT
age: 250
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
2.bp.blogspot.com/-k1uVj6VIq_o/UY19Ry-AOlI/AAAAAAAABE8/axPeBdWxVEY/s150/photoshopcs5.jpg
216.58.207.225200 OK 8.2 kB URL HTTP/1.1 2.bp.blogspot.com/-k1uVj6VIq_o/UY19Ry-AOlI/AAAAAAAABE8/axPeBdWxVEY/s150/photoshopcs5.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 122x150, components 3\012- data
Hash b4e74c49fcdc34d463732b3123fd1e89
1e5100ffb0d3e03f45426a2713bdb170b4e505e2
08b28cae40a8ea11582440d819192e9a4d8963509738de543d0c4e7e5ec952d8
GET /-k1uVj6VIq_o/UY19Ry-AOlI/AAAAAAAABE8/axPeBdWxVEY/s150/photoshopcs5.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="photoshopcs5.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 8170
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:24 GMT
Expires: Sun, 15 Jan 2023 22:21:24 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10ea"
Content-Type: image/jpeg
Age: 11
1.bp.blogspot.com/-EsLsXbD9XwI/UWmEGvN2BbI/AAAAAAAAA_Q/C4WmZJWnzKU/s150/ardamax_keylogger-logo.jpg
216.58.207.225200 OK 9.7 kB URL HTTP/1.1 1.bp.blogspot.com/-EsLsXbD9XwI/UWmEGvN2BbI/AAAAAAAAA_Q/C4WmZJWnzKU/s150/ardamax_keylogger-logo.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 117x150, components 3\012- data
Hash 0beb1c580d1f3586c4533f643e553174
76cec4b060e5cf0c5559b8c5a056d261e1ccfc3b
ecd50c60c1d3fe5dd059d1a1b2d9a68fe4a22e5c09e10a278ef6b85bc4e1bde8
GET /-EsLsXbD9XwI/UWmEGvN2BbI/AAAAAAAAA_Q/C4WmZJWnzKU/s150/ardamax_keylogger-logo.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="ardamax_keylogger-logo.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9651
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:24 GMT
Expires: Sun, 15 Jan 2023 22:21:24 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10ea"
Content-Type: image/jpeg
Age: 11
3.bp.blogspot.com/-uQGDCw3ZJCs/VNzEq5rr9yI/AAAAAAAADxg/j0hHGy3ts-Y/s150/mercado-ecommerce-redes-sociais-7-dicas-conquistar-clientes.jpg
216.58.207.225200 OK 7.7 kB URL HTTP/1.1 3.bp.blogspot.com/-uQGDCw3ZJCs/VNzEq5rr9yI/AAAAAAAADxg/j0hHGy3ts-Y/s150/mercado-ecommerce-redes-sociais-7-dicas-conquistar-clientes.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 150x66, components 3\012- data
Hash 4375b90e66bd4993566c994cd104fbd3
d64fee713c7eac184ab1ced5abfd0a44381e9121
53ca9985b045d36843a169f4e813fec1e3ffcd0af0725d0ac7ae7042d4336c71
GET /-uQGDCw3ZJCs/VNzEq5rr9yI/AAAAAAAADxg/j0hHGy3ts-Y/s150/mercado-ecommerce-redes-sociais-7-dicas-conquistar-clientes.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="mercado-ecommerce-redes-sociais-7-dicas-conquistar-clientes.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 7665
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:24 GMT
Expires: Sun, 15 Jan 2023 22:21:24 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf19"
Content-Type: image/jpeg
Age: 11
4.bp.blogspot.com/-E-mdNPkiPME/UY25l5W_DNI/AAAAAAAAABk/q-UL89H572s/s150/baixar-gta-san-andreas-pc-torrent-full-crack-download.png
216.58.207.225200 OK 33 kB URL HTTP/1.1 4.bp.blogspot.com/-E-mdNPkiPME/UY25l5W_DNI/AAAAAAAAABk/q-UL89H572s/s150/baixar-gta-san-andreas-pc-torrent-full-crack-download.png
IP 216.58.207.225:0
File type PNG image data, 106 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash ae9acfb273f01d868beb1f2efe82059d
cccd020eb0d68c6c9dee4cd5328a014245f6820d
bc6029f2242b76499b1017af088e17ecf4d44fed51fda8a3ed81ca5d6767e6b7
GET /-E-mdNPkiPME/UY25l5W_DNI/AAAAAAAAABk/q-UL89H572s/s150/baixar-gta-san-andreas-pc-torrent-full-crack-download.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="baixar-gta-san-andreas-pc-torrent-full-crack-download.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 33387
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:24 GMT
Expires: Sun, 15 Jan 2023 22:21:24 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v19"
Content-Type: image/png
Age: 11
1.bp.blogspot.com/-6G0oMcEd0hM/VN6i4kWkOII/AAAAAAAAD00/lVXvDZqUMc8/s1600/anonymous-global-blackout.jpg
216.58.207.225200 OK 44 kB URL HTTP/1.1 1.bp.blogspot.com/-6G0oMcEd0hM/VN6i4kWkOII/AAAAAAAAD00/lVXvDZqUMc8/s1600/anonymous-global-blackout.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 616x410, components 3\012- data
Hash 2487a967e3d40f5afb684e0fe5e73239
e2d9ab80a9a147f54df1b0881d6ed2956de82732
05d7dd805a32c6e95ee2a99bc1013a1c67a9586db1345dcde36ba955fa87a1c6
GET /-6G0oMcEd0hM/VN6i4kWkOII/AAAAAAAAD00/lVXvDZqUMc8/s1600/anonymous-global-blackout.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anonymous-global-blackout.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 44012
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:24 GMT
Expires: Sun, 15 Jan 2023 22:21:24 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf4e"
Content-Type: image/jpeg
Age: 11
1.bp.blogspot.com/-KmJGXWDcA9U/VN6jxpCKnsI/AAAAAAAAD08/yahxD5JmTc8/s1600/We-Are-Legion-426x615.jpg
216.58.207.225200 OK 125 kB URL HTTP/1.1 1.bp.blogspot.com/-KmJGXWDcA9U/VN6jxpCKnsI/AAAAAAAAD08/yahxD5JmTc8/s1600/We-Are-Legion-426x615.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 426x615, components 3\012- data
Size 125 kB (125261 bytes)
Hash 7aa79ca0695942011b62477d30c6ab4e
3cc945d57bac8bf09327a828c3e8dc709190b8e8
551724d91c1957896803b1ca3e3e917fb2bc6978c7a572574177af64517417ad
GET /-KmJGXWDcA9U/VN6jxpCKnsI/AAAAAAAAD08/yahxD5JmTc8/s1600/We-Are-Legion-426x615.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="We-Are-Legion-426x615.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 125261
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:24 GMT
Expires: Sun, 15 Jan 2023 22:21:24 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf50"
Content-Type: image/jpeg
Age: 11
cleverjump.org/hit?z0;s1280*1024*24;fSmg2ZhfaWxUpcf4QF2lUQ5zHUwA8X7;cshb2;r;uhttp%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous;hMundo%20dos%20Hackers%3A%20Ideia%20Anonymous;0.19449674533399341
217.23.10.44200 OK 0 B URL HTTP/1.1 cleverjump.org/hit?z0;s1280*1024*24;fSmg2ZhfaWxUpcf4QF2lUQ5zHUwA8X7;cshb2;r;uhttp%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous;hMundo%20dos%20Hackers%3A%20Ideia%20Anonymous;0.19449674533399341
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hit?z0;s1280*1024*24;fSmg2ZhfaWxUpcf4QF2lUQ5zHUwA8X7;cshb2;r;uhttp%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous;hMundo%20dos%20Hackers%3A%20Ideia%20Anonymous;0.19449674533399341 HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 14 Jan 2023 22:21:35 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
P3P: CP=CleverJump
Set-Cookie: _cjuh=866qnHffc20iwXNxQoRMuFmlZAKmx1; expires=Sun, 14-Jan-2024 22:21:35 GMT; Max-Age=31536000; path=/hit; httponly; SameSite=None; Secure
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e804586be26c88b95d554afe0ef24d5c
6f99b1fe2330c4661608f17819a4490a92ca296c
38894b7977e8f8e790a71eedf8144799a77ccceb49771e7458392ad7916293db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 14 Jan 2023 20:21:54 GMT
expires: Sat, 14 Jan 2023 22:21:54 GMT
cache-control: public, max-age=7200
age: 7181
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
142.250.74.33304 Not Modified 0 B URL HTTP/1.1 mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
IP 142.250.74.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
GET /search/label/Ideia%20Anonymous HTTP/1.1
Host: mundodoshacker.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
If-Modified-Since: Mon, 09 Jan 2023 18:51:19 GMT
If-None-Match: W/"64d3140bd2e61ac7a4471dabbab522215b0b6e2ec9804af7e28bad8cadf04216"
HTTP/1.1 304 Not Modified
Expires: Sat, 14 Jan 2023 22:21:35 GMT
Date: Sat, 14 Jan 2023 22:21:35 GMT
Cache-Control: private, max-age=0
ETag: W/"64d3140bd2e61ac7a4471dabbab522215b0b6e2ec9804af7e28bad8cadf04216"
Server: GSE
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c01ec61f7ca77158f474b3ab519c12fa
fc82ae0fcd73a83a980b75709a08e65239894e4a
f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5000
Cache-Control: max-age=130112
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:35 GMT
Etag: "63c270a7-1d7"
Expires: Mon, 16 Jan 2023 10:30:07 GMT
Last-Modified: Sat, 14 Jan 2023 09:06:47 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/j/collect?v=1&_v=j99&a=1928265994&t=pageview&_s=1&dl=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ul=en-us&de=UTF-8&dt=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1353365848&gjid=1672794938&cid=785666241.1673734896&tid=UA-21003897-1&_gid=59867980.1673734896&_r=1&_slc=1&z=1534303389
142.250.74.46200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1928265994&t=pageview&_s=1&dl=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ul=en-us&de=UTF-8&dt=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1353365848&gjid=1672794938&cid=785666241.1673734896&tid=UA-21003897-1&_gid=59867980.1673734896&_r=1&_slc=1&z=1534303389
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1928265994&t=pageview&_s=1&dl=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ul=en-us&de=UTF-8&dt=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1353365848&gjid=1672794938&cid=785666241.1673734896&tid=UA-21003897-1&_gid=59867980.1673734896&_r=1&_slc=1&z=1534303389 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://mundodoshacker.blogspot.com
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://mundodoshacker.blogspot.com
date: Sat, 14 Jan 2023 22:21:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e804586be26c88b95d554afe0ef24d5c
6f99b1fe2330c4661608f17819a4490a92ca296c
38894b7977e8f8e790a71eedf8144799a77ccceb49771e7458392ad7916293db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
statinside.com/api/add-page-view
217.23.10.44200 OK 114 B URL HTTP/1.1 statinside.com/api/add-page-view
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
File type JSON data\012- , ASCII text
Hash 3238c95ee99e657336f8ae9d82fcf05b
c052bc548c3e7d8fbcd8ce769a1210f5d70dcf3c
bcbb84789e7a9ccef3b8f2246274ed0b02b10f323a90e1f977f3fc749bd3b090
POST /api/add-page-view HTTP/1.1
Host: statinside.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 293
Origin: http://mundodoshacker.blogspot.com
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 14 Jan 2023 22:21:35 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Access-Control-Allow-Origin: *
Content-Encoding: gzip
cleverjump.org/hit/get-uid.php
217.23.10.44200 OK 30 B URL HTTP/1.1 cleverjump.org/hit/get-uid.php
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
File type ASCII text, with no line terminators
Hash dc89728a9ba4e220cee45bdc1b93cdc2
329006eb4f9642ef31febf533a35d6429dfcff09
6cdb7be33c3580195ab435fcccd3f04a2825495667cf97d87f9f096d09d6a75e
Analyzer Verdict Alert fortinet Malware
GET /hit/get-uid.php HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mundodoshacker.blogspot.com
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Cookie: _cjuh=866qnHffc20iwXNxQoRMuFmlZAKmx1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 14 Jan 2023 22:21:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Access-Control-Allow-Origin: http://mundodoshacker.blogspot.com
Access-Control-Allow-Credentials: true
connect.facebook.net/pt_BR/sdk.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/pt_BR/sdk.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/pt_BR/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 14 Jan 2023 22:21:35 GMT
Connection: keep-alive
Content-Length: 0
widgets.amung.us/tab.js
104.22.75.171200 OK 19 kB IP 104.22.75.171:0
File type ASCII text, with very long lines (29322), with no line terminators
Hash c9ed731944024702b435ba1cc59ef389
80ed46e16bd892d709d35f5ba8dfef01e4d6e320
34b786e8399cc681809345c8e92d95927bc67234f4e592adc1ef2a5d8e4ed449
GET /tab.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 22:21:35 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 12 Jan 2023 17:19:30 GMT
etag: W/"63c04122-728a"
expires: Sun, 15 Jan 2023 21:56:51 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 1484
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7899c3fa5c7209ad-ARN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fc38856297a28cd362a2b0421acf8e7
6f83afbac6052fe285eacd2b69e92fd5b81ed7d9
710ed74bf69a62793e46c7a8557a3a133ad240beadfa3ecc6061b815f24fe9c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6311
Cache-Control: max-age=171006
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:35 GMT
Etag: "63c30b46-1d7"
Expires: Mon, 16 Jan 2023 21:51:41 GMT
Last-Modified: Sat, 14 Jan 2023 20:06:30 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Hr7xEUZPveZ90gL81iZoO5RYYh/MGqwG8liYNCurJGIdVOrD+arqJnLhGlnlk0+xNR98NTBY0PuvTNlMvXy2/A==
content-length: 27815
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/pt_BR/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 3fee22792af599328f34af2a2ad393fa
0de4b7d51cf73ca02476123de8bf47a70b23cf6f
3b6846bb9f09cb6ed0ee2e3ff5ad2bc77aecb287b2c4c80a0f76e432ec9d5112
GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://mundodoshacker.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8a35a9c51532a0d6c07dd8da17240df8
etag: "f3a5d1abdde1572bac09167b16ec9458"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 14 Jan 2023 22:30:22 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: P+4ieSr1mTKPNK8qKtOT+g==
x-fb-debug: ic2XllPjtodWWyOCqtiucwCWeHIdroetgaJ9kGqpe7nMOippyFFIVXzMEXzfRxFPXSkXJ9c2Cyr/opnkq9Rkcg==
content-length: 1687
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
142.250.74.33200 OK 31 kB URL HTTP/1.1 mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2771)
Hash acc90eeef6b72b71d001b5a9f23bb742
e161ea7a9b6f896d86924b12d3b40db65c1d20a5
378b0f00576e8e9d2db5268ffe52531e539eb24ee58d2172cf6c2bda7dcd555b
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
GET /search/label/Ideia%20Anonymous HTTP/1.1
Host: mundodoshacker.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 14 Jan 2023 22:21:35 GMT
Date: Sat, 14 Jan 2023 22:21:35 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 09 Jan 2023 18:51:19 GMT
ETag: W/"64d3140bd2e61ac7a4471dabbab522215b0b6e2ec9804af7e28bad8cadf04216"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 31118
Server: GSE
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fc38856297a28cd362a2b0421acf8e7
6f83afbac6052fe285eacd2b69e92fd5b81ed7d9
710ed74bf69a62793e46c7a8557a3a133ad240beadfa3ecc6061b815f24fe9c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6311
Cache-Control: max-age=171006
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:21:35 GMT
Etag: "63c30b46-1d7"
Expires: Mon, 16 Jan 2023 21:51:41 GMT
Last-Modified: Sat, 14 Jan 2023 20:06:30 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
widgets.getsitecontrol.com/54445/script.js
194.242.11.186200 OK 941 B URL HTTP/1.1 widgets.getsitecontrol.com/54445/script.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (1910)
Hash 1771302184714eb58953d6276688a851
13e213b7668179d1bd415ad1ec5a9827de1f5918
6b6e2fb810f57c9df7e745e65787d84e99d41d754616f4ed33b38ba9bbde10cd
GET /54445/script.js HTTP/1.1
Host: widgets.getsitecontrol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 22:21:35 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Server: BunnyCDN-NO1-830
CDN-PullZone: 44619
CDN-Uid: e3a1246b-2fdd-4153-9207-6ca707c9379d
CDN-RequestCountryCode: NO
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
Access-Control-Expose-Headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
Cache-Control: public, max-age=5
Content-Encoding: gzip
ETag: "1771302184714eb58953d6276688a851"
Last-Modified: Fri, 15 Jun 2018 00:00:09 GMT
CDN-CachedAt: 01/14/2023 22:21:24
x-amz-id-2: i19tQOkqYJNOY0WN+UbwThfu06wVYCFjVuE3xlMRmQ6vSpdjJQkTOwqOMtjXs56QUJ9HF4ywv2K3fm5Jm3s87g==
x-amz-request-id: ZPFP4R42XV5C9BJJ
CDN-ProxyVer: 1.03
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 830
CDN-Status: 200
CDN-RequestId: 24b62eaac9f030382d82dd8bc74de018
CDN-Cache: REVALIDATED
push.services.mozilla.com/
44.230.240.8101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.230.240.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lcXXnt1toYY0Q0chN0VHhw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HlaELkWB8YR9YDr3B/2WfiSREh8=
connect.facebook.net/pt_BR/sdk.js?hash=d35ae1f834870edc93e581c19dae8387
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js?hash=d35ae1f834870edc93e581c19dae8387
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash 4eda12375f0124880f14f9eb3fdb0d12
e7c2d7f8794c543e4cf4ea7250608dcd35194afa
336cba840dde921be22f1870a066acc4d2678739b6f4e318028574f97b7eaa96
GET /pt_BR/sdk.js?hash=d35ae1f834870edc93e581c19dae8387 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mundodoshacker.blogspot.com
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 826ab4b8ff3f41f365734a235b00c5c3
etag: "d1eefc29fd42df9bd2c45852b119cd11"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 14 Jan 2024 21:01:51 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: TtoSN18BJIgPFPnrP9sNEg==
x-fb-debug: HcZn6tXyaynYlamAric+O3+GYy1PPtzxwbuedx1pTdnWQRkcfp9DRxqUb+892t+flqJ005WPhjj+TS4JdDn6iA==
content-length: 86997
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:36 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=7ejjac8ryakb%20&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous&c=t&x=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&y=&a=0&d=1.224&v=27&r=6605
104.22.74.171200 OK 50 B URL HTTP/1.1 whos.amung.us/pingjs/?k=7ejjac8ryakb%20&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous&c=t&x=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&y=&a=0&d=1.224&v=27&r=6605
IP 104.22.74.171:0
File type ASCII text, with no line terminators
Hash a6155510545e36f0b7a59752fb94a6bf
6bc26c33b7c9ac2c45ee1f27c2ff69b273477c8b
3b7da8916aa2c48e39fe110964174ede19e9cbc3c2e50ce327af17b150b51626
GET /pingjs/?k=7ejjac8ryakb%20&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous&c=t&x=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&y=&a=0&d=1.224&v=27&r=6605 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 22:21:36 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7899c3fc0dc80a43-ARN
mundodoshacker.blogspot.com/favicon.ico
142.250.74.33200 OK 726 B URL HTTP/1.1 mundodoshacker.blogspot.com/favicon.ico
IP 142.250.74.33:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash b2d1bbf936599d09641614689943f6ee
07a63d79aec03eb3e6e3c635b8aa7e288f265053
fb1e5d4596c14bdd9589ada5c5887f754af12f402f3104b46946bcb5ea1ea537
GET /favicon.ico HTTP/1.1
Host: mundodoshacker.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/search/label/Ideia%20Anonymous
Cookie: _ga=GA1.3.785666241.1673734896; _gid=GA1.3.59867980.1673734896; _gat=1; si_user_id=1673734895.5861676993027; si_sess_id=1673734895.5861676993027; cj_uid=866qnHffc20iwXNxQoRMuFmlZAKmx1
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Sat, 14 Jan 2023 22:21:36 GMT
Date: Sat, 14 Jan 2023 22:21:36 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 09 Jan 2023 18:51:19 GMT
ETag: W/"64d3140bd2e61ac7a4471dabbab522215b0b6e2ec9804af7e28bad8cadf04216"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 726
Server: GSE
www.facebook.com/tr/?id=270607973442468&ev=PageView&dl=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&rl=&if=false&ts=1673734896383&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.2.1673734896382.274991631&it=1673734896017&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=270607973442468&ev=PageView&dl=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&rl=&if=false&ts=1673734896383&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.2.1673734896382.274991631&it=1673734896017&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=270607973442468&ev=PageView&dl=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&rl=&if=false&ts=1673734896383&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.2.1673734896382.274991631&it=1673734896017&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 14 Jan 2023 22:21:36 GMT
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 14 Jan 2023 22:21:36 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers&t=Mundo%20dos%20Hackers%3A%20Ideia%20Anonymous HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 14 Jan 2023 22:21:36 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!7ejjac8ryakb&dn=TC&cc=1&r=&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous
67.202.105.32200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!7ejjac8ryakb&dn=TC&cc=1&r=&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous
IP 67.202.105.32:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!7ejjac8ryakb&dn=TC&cc=1&r=&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sun, 15 Jan 2023 22:21:36 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Sat, 14 Jan 2023 22:21:36 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 14 Jan 2023 22:21:36 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&ct=Mundo%20dos%20Hackers HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 14 Jan 2023 22:21:36 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!7ejjac8ryakb&lm=0&ts=1673734896407&dn=TC&iso=0&pu=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 14 Jan 2023 22:21:37 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5995
Expires: Sun, 15 Jan 2023 00:01:32 GMT
Date: Sat, 14 Jan 2023 22:21:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5995
Expires: Sun, 15 Jan 2023 00:01:32 GMT
Date: Sat, 14 Jan 2023 22:21:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5995
Expires: Sun, 15 Jan 2023 00:01:32 GMT
Date: Sat, 14 Jan 2023 22:21:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5995
Expires: Sun, 15 Jan 2023 00:01:32 GMT
Date: Sat, 14 Jan 2023 22:21:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d24ea1f095f492934a1f1c63f5d8590c
dade37148c9b9a941f93a8535d8ddc5de3952623
2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8181
x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0paH-OIAMFg5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UiHY2x0SqutHc34ld1De85inybQN432MAN-a8di_58lHW7DPtqRTXA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:36:48 GMT
age: 2689
etag: "dade37148c9b9a941f93a8535d8ddc5de3952623"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64ba27a2f0a3bc61bd325f1fb317b755
c65c58476b66cbb6269ba1d8412d270a0a003ae3
5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9135
x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAnoG6roAMFzgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RnAGo4OuBl5UjyOlUOJqu2nlFLHTOe0ETxokWtbI4frbpkNVnIBSew==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 01:41:40 GMT
age: 74397
etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6f9fd45fe3dfe1bc0ee610925c385d
4ab08950008a4ab0a52091bb6f186c12814276e9
3dab6a58e53155e44117fbd9d40c4f38a7586efe1e69db1a064d2bbc5bbf185a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8681
x-amzn-requestid: 1060e7e7-3864-4ce5-b0aa-cfe24bb1a21a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qdGvqoAMF57g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce42-3cf8e4535d417e6f5142f23d;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6kxbyEvM_92uFBmg6H81nBjWzZ5s-LZO-0PLl8fFxj6YsvQhK_hM4A==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:49:02 GMT
age: 1955
etag: "4ab08950008a4ab0a52091bb6f186c12814276e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1378f107c1996ade14a8fe7fd728072
f52d98d9a0d1d343a539689ea14acf99e148cf8c
4be994757ec7ec42929590169de199e927889261334e258903a0929a1055047d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9154
x-amzn-requestid: fbb1140d-7ec2-4f86-8761-5d04601af70e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAkCEN2IAMFuMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ae6-4baebf1104f9cf2a0ee8a538;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jlRcVyQppaQaPPMKaqadtaEHfdOYXXXbnfrr44l_2E2qaOoh_O0Mog==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 04:21:52 GMT
age: 64785
etag: "f52d98d9a0d1d343a539689ea14acf99e148cf8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2363dbe7bb6a459853d8d19cab50e70b
ded76de1dd453e40dbf6eaa8607cf19fac7f71a4
f96da6354cec52143768014c36ba2b298224a58b0bf38bd2aa5f3bfce69d8670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7447
x-amzn-requestid: dd3543b7-4e6b-4605-acea-a21d39af02ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qSFjAIAMF7HQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce41-56e2ccc63669032d70cba0ba;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 541ytVhsIomv9iD9WJLUeF_3G__jwpLcPR0ziLMEwBnIUumIxmfrug==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:49:02 GMT
age: 1955
etag: "ded76de1dd453e40dbf6eaa8607cf19fac7f71a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epfDqEAZIAMFudQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 05:58:29 GMT
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
age: 58988
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yK/l/0,cross/hO6sUFVze_h.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yK/l/0,cross/hO6sUFVze_h.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash 03c84467ca17a2435201b8347d7640e5
70221452e0c89967404cd0ebf2c2181829b544d8
b83c8af3796bc4a35865286d0441d081ea81505bf146dd0a31541cba4c0c1482
GET /rsrc.php/v3/yK/l/0,cross/hO6sUFVze_h.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 14 Jan 2024 16:57:52 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: A8hEZ8oXokNSAbg0fXZA5Q==
x-fb-debug: plubfk+PeUA0EcWIo7qwYCrP39x+b3Aak56C+VL0j1BQ5OofEC5m3SvLcY74Cd2XtYZOoVUjAkZkkd3MD0s7sw==
content-length: 5511
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 21:58:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: wbTCyJ5zF9v4ZXKTX58G1LddTUuZxnVvYZG0r4beHb8GTGUqOQXaYgxSfRe39U+Vt3olDDyBXe25dDtK4gk3QQ==
priority: u=3,i
content-length: 830
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yw/l/0,cross/yXZ6bHpQNLQ.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 6.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yw/l/0,cross/yXZ6bHpQNLQ.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (8976)
Hash 04f2a75bf726f601cb6b038905121c36
68ebb8e2a69b6e7443f597b867cc7bae2e02bb7b
7636772ca7e46b97cc3690c4e799e3f5ef02c4e5648e06bb9429fa3d3576ed72
GET /rsrc.php/v3/yw/l/0,cross/yXZ6bHpQNLQ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 20:47:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: BPKnW/cm9gHLawOJBRIcNg==
x-fb-debug: ebaYpj/IRRJ9PRg38wz+YVlC7K0FUv0Q4Q+BYbDGUstaf3zB59euP0D2dW7RngaD+TGkDptkt69XENz0YpxziA==
priority: u=3,i
content-length: 6443
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yT/r/Q0u73vkJqvu.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 85 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yT/r/Q0u73vkJqvu.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18622)
Hash 3edd8c5bfc27e9053d8cfb66062c13b3
9c14f433f4285a13bc095ec8169ebbc2833d95aa
43d782c27ccaaf27694968defad381fe9f92851a9a61e5715de2fe61daea7a4b
GET /rsrc.php/v3/yT/r/Q0u73vkJqvu.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 13 Jan 2024 00:59:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Pt2MW/wn6QU9jPtmBiwTsw==
x-fb-debug: 0x3NsM2ZhhiKYabOV8XNreU5GwDUrQ0QabSzdg/gl1DCMKMrpqrX2hY6yjQvmYrGyWsu4OtwDTfRop61qGTH3Q==
priority: u=2
content-length: 85027
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5542)
Hash 1ad15afc034f310427c81b0759603a2b
e5efd1d029dccf5fa8128c84aadb6544a4ab60e0
fedf63f655f9eef24c517c3d6762fb07b142213ba623d4a0b06614fb5d9754bd
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 05 Jan 2024 02:24:37 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GtFa/ANPMQQnyBsHWWA6Kw==
x-fb-debug: 91kRfmXwcjQQ4mUmZi/yW2sGHxr/S/1TTokeEC5U4n0HmjT/BpSx/x9XKjTyKr5rXv67hfpO72Orl/eZl8CHcg==
priority: u=3,i
content-length: 12334
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8741)
Hash c92ef94e30a2dd9473fd9fe533472b73
97049e47de026939c75a885df9e8bb0fb56515ba
f2981c7109e60cf9f5a9e846a25800dbec20a923db028f310b6feb79415650bb
GET /rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 12 Jan 2024 16:05:42 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: yS75TjCi3ZRz/Z/lM0crcw==
x-fb-debug: HkTyuOFUn8iR2cjgNDyglI5ekdD/ZMsOTH01oROj2ag8OclYeCtmVhKq+U/CPUu9sO+hKOjw/FZRZnnuT57PJw==
content-length: 16232
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 293 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (327)
Hash 2f913d812811ef7e6fca30334c5972e2
d17caaa167443dc08696c672380f237e0db3fb02
ee8918a2f5d163099104b70f79065abc8fd309e69add57170546f2706956eef8
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 05 Jan 2024 15:06:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: L5E9gSgR735vyjAzTFly4g==
x-fb-debug: yPDrxn09erk5xCcoQdbbw4A7E/geBRMkT7EN9R/pGcDCWGskqBvcsDHuVSO15iDQE9HLhZZ75ZNnjbS8O4i0dQ==
priority: u=3,i
content-length: 293
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yf/r/b-I-aK9MNQH.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 56 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yf/r/b-I-aK9MNQH.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (48918)
Hash a35ea2c816a7c919b26fb9213189e262
b23b313d5d1c82f72874acbf48d880570e37e1af
dd5c2ad1d1218355e0c7c772cd9fae89a3b628d4c9b6c1588f7a904e57c02f2c
GET /rsrc.php/v3/yf/r/b-I-aK9MNQH.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 13 Jan 2024 22:47:11 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: o16iyBanyRmyb7khMYniYg==
x-fb-debug: Ntun3PNGHAlCDug+VOcwkvllfX3hN2xI/Ef8YYnZoRjLW+yU00BmiEmJZQM8TcUsXDkC7SECCyNlVMWvSLP9GA==
content-length: 56414
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yU/r/M2ZZRWt52Bh.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yU/r/M2ZZRWt52Bh.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 16149e26844b91800f7553c3fdbefd8f
5f5f2151c0c843cde313ff064e542c9ae6f5e775
e2435dd2741f217ea7d1394c443b9b521682cf9857daed8eebc7ceecc9fb4075
GET /rsrc.php/v3/yU/r/M2ZZRWt52Bh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 14 Jan 2024 16:52:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: FhSeJoRLkYAPdVPD/b79jw==
x-fb-debug: Zi8s4/W4l261PiaPucxMVetvLpcIGQUZKrHpieCKzRAvBW6HOxJ9ln76dLvHN+WDEThIWIGNCkH6ktI4HaLrNg==
priority: u=3,i
content-length: 1739
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (3744)
Hash 1d528b587346b24d7e36f3881c2d6a77
9e92e6b415c50f4882ba7e0dd65ff6ee31091bb6
89c5f78d73cde32bff1a97a0e9ff383400e282d0d3473d267132a5000abd28c3
GET /rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 16:28:03 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: HVKLWHNGsk1+NvOIHC1qdw==
x-fb-debug: JkYANgf6gtTPOpXLfWvHrVuqHrAo9h1+7F4Ryj0+ZUuacEoAMLL23v8khOPcKk5wU0jfoR9hJe3DTUEjj3x++Q==
priority: u=3,i
content-length: 1728
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iL6L4/y9/l/pt_BR/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iL6L4/y9/l/pt_BR/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (2905)
Hash 3e7e35ed6ba709407a915ac0cc30f85d
cb9f065196fcc762d04e167e0d6914203d152e9b
bbfc5f811789247bc1780f56e148d47b0b6501c4b1d47f7f12774176c9560e95
GET /rsrc.php/v3iL6L4/y9/l/pt_BR/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 22:43:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Pn417WunCUB6kVrAzDD4XQ==
x-fb-debug: lY/7SAZS67+EMtg/CRKYbjsJozBBrOC7909lPXI+jKPxOvnRgOdoeyGyMHZ5N6IedJmjKX6xQL56QggNyhIjYQ==
priority: u=3,i
content-length: 5466
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yY/r/7Nmln25n6YE.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yY/r/7Nmln25n6YE.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4057)
Hash 7cb89797cea2a84b948dfae53d0c90d4
312bdda4ae1efe3ab71fb0aec473ddc725627f5b
9093dc3e084b6a216b34c7a603eae5a93f793dc5b0a606ccb0da051d5aa12cd4
GET /rsrc.php/v3/yY/r/7Nmln25n6YE.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 05 Jan 2024 15:15:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: fLiXl86iqEuUjfrlPQyQ1A==
x-fb-debug: cl40gEC1ZtAKyoVpnGc0zn50W0PD9hiifpb4uBDjdg1rXUi5u5kP1HrZndGp48rS37CNF1AERI6d1IvjupD8fQ==
priority: u=3,i
content-length: 7199
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iM-F4/y8/l/pt_BR/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iM-F4/y8/l/pt_BR/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (42173)
Hash 7a452711ee32803f381d4a0ea5882cfa
d957a61ad64efd3b26d87f8bb530346cc880392e
213384e9a448e850499ca88023f3f69df51487121727885ace2cd3a11458bdd3
GET /rsrc.php/v3iM-F4/y8/l/pt_BR/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 22:49:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ekUnEe4ygD84HUoOpYgs+g==
x-fb-debug: hesudfJahSbBs35aTqfnZyGaxb7dT5TpjC4keQR9dVXWdlt1VPhWZmvmeQ7weFc2RmZhSjipnleZUYGqNzH4QA==
content-length: 23573
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yY/r/hL7ZHyhHu-8.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 3.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yY/r/hL7ZHyhHu-8.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5828)
Hash 52b3737741781e63a7d3e94e76575445
2f3d82a9587a6076bf929e8643e8d4d33bc96c01
12ed88012e0e91f1d34da217f7d91226558afc78a5a68f362d754b1178cb06bf
GET /rsrc.php/v3/yY/r/hL7ZHyhHu-8.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 12 Jan 2024 02:55:43 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: UrNzd0F4HmOn0+lOdldURQ==
x-fb-debug: tv8/jt/lJOiKQJPeqBruWjIiTebr/kHhq6unKj0K1t3kUNsb3Yf18Swfil0NGSc8vg1ag34DUlgOCaInjgnFoA==
priority: u=3,i
content-length: 3527
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yy/r/2f61oWyjOj5.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yy/r/2f61oWyjOj5.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (4643)
Hash 2f3bd3f5da2acb55828c5dcefde8a274
00f21373747009968870397a243322c067466c97
fae6708a549046751d2ec4b001dd8402482494ec07a924132775332ac354f2a1
GET /rsrc.php/v3/yy/r/2f61oWyjOj5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 04 Jan 2024 23:45:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: LzvT9doqy1WCjF3O/eiidA==
x-fb-debug: PWin+umiqy9D4qCB/u6fJ4QnbNjBqVBWgXAZFD0CSX3YV1+6ZO4t+P5mLaKypdkLhWzQjc3a+V8yuAD/6EYD/A==
priority: u=3,i
content-length: 5358
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yG/r/h8ulkmpky8f.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 15 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yG/r/h8ulkmpky8f.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (56522)
Hash 95b85ba6147504d3f15ba46a0c98a2a3
7c252e33f9efe655e2a989ab7c306dee04650cb2
c7e30ff750f116558ed9dff6bf802e914624409873f0be3f319bd8289bec8b36
GET /rsrc.php/v3/yG/r/h8ulkmpky8f.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 02 Jan 2024 21:30:16 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: lbhbphR1BNPxW6RqDJiiow==
x-fb-debug: gGdTQ1NRo0sZF8GGlHSeQk6J3oS1evK+dxBRCbmaTRZgveSZEQgOsaeoXCK/TSHXvfL9Jkdf8Kn4qBOy3lV4mA==
priority: u=3,i
content-length: 15174
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3ieQS4/yJ/l/pt_BR/eCXpduaJ45n.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 80 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3ieQS4/yJ/l/pt_BR/eCXpduaJ45n.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5723)
Hash 778455fa6531ab5fa4e1519ec8b378c2
67567a31a2e93b93b05f1520e3abd618f5239706
d82204d11a60027d1d1eb75896f3982015b4071fd7bf025f90e40d8fded4ec89
GET /rsrc.php/v3ieQS4/yJ/l/pt_BR/eCXpduaJ45n.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 19:18:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: d4RV+mUxq1+k4VGeyLN4wg==
x-fb-debug: ovKWp5y/97GXXzpBoyGxVXXiLlZbKpfX7k/lJEAu8JUjZx1Nhis3l+IBetwBJvEDtmF9hwnFnK3V+39QK27RYg==
priority: u=3,i
content-length: 79962
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=mundodoshacker.blogspot.com&_ss=8e2g9ian69&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6tp5&_cb=_dtspv.c
141.101.120.11200 OK 0 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=mundodoshacker.blogspot.com&_ss=8e2g9ian69&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6tp5&_cb=_dtspv.c
IP 141.101.120.11:0
GET /pv/?_a=v&_h=mundodoshacker.blogspot.com&_ss=8e2g9ian69&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6tp5&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Cookie: m=1; oa=1; df=1673734896
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:21:36 GMT
content-type: application/javascript
x-t: 0.152
x-c: 0
expires: Sat, 14 Jan 2023 22:21:35 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=32Qb2ET%2FV906Zag%2BQSYL%2F%2F59cuVX1zaG7jCEJOLj3QT1Yc2%2FPO0WBHOQqnK%2FoiD4dvUqBW6%2Bnw3IdSj9%2BZ2zzYh0F2IjEZ80O%2FDWWo5o8hb4wZ1Y5UoZ7Rzkl8Oz5XM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7899c3fd4f510a29-ARN
content-encoding: br
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3igRj4/yM/l/pt_BR/PWGW25A_lOk.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3igRj4/yM/l/pt_BR/PWGW25A_lOk.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
GET /rsrc.php/v3igRj4/yM/l/pt_BR/PWGW25A_lOk.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 13 Jan 2024 19:26:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: oCvtki40JzPJ7ZwpHOLdDA==
x-fb-debug: LrwdAxeQClugEvswvE+rdUXWRnlH11Q6al66F+FouDQORj+9tMFQKlj0ZaIZ05SDG1WcsSjBsk/amHW+P0a3yg==
priority: u=3,i
content-length: 101402
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 22:21:37 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&j=
141.101.120.11200 OK 0 B URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&j=
IP 141.101.120.11:0
GET /i/?l=http%3A%2F%2Fmundodoshacker.blogspot.com%2Fsearch%2Flabel%2FIdeia%2520Anonymous&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:21:36 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Sat, 14-Jan-2023 23:44:56 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sun, 15-Jan-2023 02:21:36 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1673734896; Domain=dtscout.com; Expires=Mon, 24-Apr-2023 22:21:36 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.795
expires: Sat, 14 Jan 2023 22:21:35 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YJylldYRTNxqOy8HxMnBoaZxBCPK6lTnTLgizHiXCMB6GbO6AiY6qxJzcCaBFpwmTxnxHtOWnEurVyTPtOkQ7ojxbPNHoUgLHxBo4yrv9blsCvAC6nDYC%2BdXFowKeik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7899c3fb3df10a29-ARN
content-encoding: br
X-Firefox-Spdy: h2
i.ytimg.com/vi/jsx3skXvsZ0/default.jpg
142.250.74.118200 OK 0 B URL HTTP/2 i.ytimg.com/vi/jsx3skXvsZ0/default.jpg
IP 142.250.74.118:0
GET /vi/jsx3skXvsZ0/default.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 2509
date: Sat, 14 Jan 2023 22:21:34 GMT
expires: Sun, 15 Jan 2023 00:21:34 GMT
cache-control: public, max-age=7200
etag: "1321298060"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-99OzNrvVOzg/VNzOMbPCE0I/AAAAAAAADx8/T1ozg7XgIuY/s1600/logo.png
216.58.207.225200 OK 0 B URL HTTP/1.1 2.bp.blogspot.com/-99OzNrvVOzg/VNzOMbPCE0I/AAAAAAAADx8/T1ozg7XgIuY/s1600/logo.png
IP 216.58.207.225:0
GET /-99OzNrvVOzg/VNzOMbPCE0I/AAAAAAAADx8/T1ozg7XgIuY/s1600/logo.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="logo.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 11846
X-XSS-Protection: 0
Date: Sat, 14 Jan 2023 22:21:23 GMT
Expires: Sun, 15 Jan 2023 22:21:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vf20"
Content-Type: image/png
Age: 11
cdn.tynt.com/tc.js
104.18.36.173200 OK 0 B IP 104.18.36.173:0
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:21:36 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 20:39:09 GMT
vary: Accept-Encoding
etag: W/"63bdcced-4571"
content-encoding: gzip
cf-cache-status: HIT
age: 92387
expires: Tue, 17 Jan 2023 22:21:36 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7899c3fd2becfabc-OSL
X-Firefox-Spdy: h2
1.bp.blogspot.com/-YNmTuIaV8rE/W4BncRBQrZI/AAAAAAAAFeY/Be5Ph1ja9qM3zUTimfCHfZ7Cxxb91MCUACLcBGAs/s1600/programar.png
216.58.207.225200 OK 0 B URL HTTP/2 1.bp.blogspot.com/-YNmTuIaV8rE/W4BncRBQrZI/AAAAAAAAFeY/Be5Ph1ja9qM3zUTimfCHfZ7Cxxb91MCUACLcBGAs/s1600/programar.png
IP 216.58.207.225:0
GET /-YNmTuIaV8rE/W4BncRBQrZI/AAAAAAAAFeY/Be5Ph1ja9qM3zUTimfCHfZ7Cxxb91MCUACLcBGAs/s1600/programar.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mundodoshacker.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="programar.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 37506
x-xss-protection: 0
date: Sat, 14 Jan 2023 22:21:23 GMT
expires: Sun, 15 Jan 2023 22:21:23 GMT
cache-control: public, max-age=86400, no-transform
etag: "v15e7"
content-type: image/png
age: 11
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2