Report - cortinasportoalegre.com.br/asb.co.nz/Tax-customer-update/asb/auth.php?country_x=United+States&locale-8731002x=E?

Report Overview

Submitted URL
cortinasportoalegre.com.br/asb.co.nz/Tax-customer-update/asb/auth.php?country_x=United+States&locale-8731002x=E?_US
IP
200.160.2.95
ASN
#22548 Nucleo de Inf. e Coord. do Ponto BR - NIC.
Submitted
2023-03-20 09:00:27
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
pagead2.googlesyndication.com	101	2021-02-20T16:52:05Z	2023-03-26T06:39:34Z	406 B	705 B	142.250.74.130
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	44.238.238.191
www.cortinasuberlandia.com.br	unknown	2020-01-27T20:15:52Z	2023-02-05T14:04:54Z	1.3 kB	20 kB	142.250.74.179
1.bp.blogspot.com	8403	2012-05-21T15:44:19Z	2023-03-25T05:09:24Z	3.1 kB	46 kB	142.250.74.161
www.blogger.com	8975	2012-05-22T09:35:03Z	2023-03-25T05:09:24Z	2.8 kB	73 kB	142.250.74.73
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
apis.google.com	105	2013-05-06T22:20:21Z	2023-03-26T05:11:23Z	379 B	22 kB	142.250.74.46
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-26T05:56:25Z	429 B	913 B	142.250.74.3
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	2.7 kB	7.1 kB	23.36.76.226
cortinasportoalegre.com.br	unknown	2015-07-16T13:58:15Z	2023-01-24T13:43:45Z	446 B	254 B	200.160.2.95
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	6.9 kB	14 kB	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.3 kB	55 kB	34.120.237.76
blogger.googleusercontent.com	16485	2012-05-25T19:41:01Z	2023-03-25T12:31:00Z	3.0 kB	21 kB	142.250.74.129

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-03-20	medium	cortinasportoalegre.com.br	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 07:39:42 Times Seen36970201 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.cortinasuberlandia.com.br/	275 B	2023-03-07	2024-04-19
Pretty URL www.cortinasuberlandia.com.br/ IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-19 18:58:19 Times Seen57181 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	www.cortinasuberlandia.com.br/	302 B	2023-03-07	2024-04-19
Pretty URL www.cortinasuberlandia.com.br/ IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 13:33:07 Times Seen28609 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	www.cortinasuberlandia.com.br/	713 B	2023-03-07	2023-03-26
Pretty URL www.cortinasuberlandia.com.br/ IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:32:32 Last Seen2023-03-26 11:31:37 Times Seen2 Hash ee4042db04707064521d4a57d17a036f 002eb49b17f018f857a264b9742a9e6aed99316e 125d94ed4b64a73ba04401f5df446c649fa2cd125857e4ffa5e056ad75aa44af Loading...

	www.cortinasuberlandia.com.br/	789 B	2023-03-07	2024-02-13
Pretty URL www.cortinasuberlandia.com.br/ IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	www.cortinasuberlandia.com.br/	6.7 kB	2023-03-26	2023-03-26
Pretty URL www.cortinasuberlandia.com.br/ IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:31:37 Last Seen2023-03-26 11:31:37 Times Seen1 Hash 84f6384ab4af9524b1603738692e3c7e 66daf2362bf343a32e076ff7fe8d09fb9bed0f1c eaef4a6419ac75168c29d5c14386f18ab458c096f7e40dfc56ffdd55aef2eedc Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_0?le=scs	184 kB	2023-03-14	2023-03-29
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 08:21:13 Last Seen2023-03-29 21:06:09 Times Seen2369 Hash 83e82d6ef077cd4364ba584480b434d8 19d1a0471d929877fc5d598321de87db71b285d2 bd6340f635fa5c1b1553730b9c16bb527be592bfbcc7b690b9a93b573e6a3bc6 Loading...

	www.blogger.com/navbar.g?targetBlogID=4300343279488834812&blogName=Cortinas+Uberlandia&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.cortinasuberlandia.com.br/search&blogLocale=pt_PT&v=2&homepageUrl=https://www.cortinasuberlandia.com.br/&vt=-113211466047429368&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fwww.cortinasuberlandia.com.br&pfname=&rpctoken=11850604	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=4300343279488834812&blogName=Cortinas+Uberlandia&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.cortinasuberlandia.com.br/search&blogLocale=pt_PT&v=2&homepageUrl=https://www.cortinasuberlandia.com.br/&vt=-113211466047429368&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fwww.cortinasuberlandia.com.br&pfname=&rpctoken=11850604 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	www.blogger.com/video.g?token=AD6v5dxAjM06u-XuQdB8hBLXBmC2GbsNM4ZBNieiFbfWBhWTf_XxVd0b7ZYUaNXIJKZQ8Rq0rouULRwL_dM4WLVJ4V84Uqo_JQgDsp0BkNtrGTPOW9YccOVqXWf1qhG-6L3BWG8GfTsB	1.6 kB	2023-03-26	2023-03-26
Pretty URL www.blogger.com/video.g?token=AD6v5dxAjM06u-XuQdB8hBLXBmC2GbsNM4ZBNieiFbfWBhWTf_XxVd0b7ZYUaNXIJKZQ8Rq0rouULRwL_dM4WLVJ4V84Uqo_JQgDsp0BkNtrGTPOW9YccOVqXWf1qhG-6L3BWG8GfTsB IP 142.250.74.73 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:31:37 Last Seen2023-03-26 11:31:37 Times Seen1 Hash 5c5330a459ca8bd020cff1f7652b46dc 310a79ff391b9e6835d061db92ce2c04ae087e5c f84c5e6bcd3ceefee79576f7e2457b31e17b6cc5229266650f5969c78c4df490 Loading...

	www.blogger.com/static/v1/jsbin/2221649954-lbx__pt_pt.js	378 kB	2023-03-26	2023-03-26
Pretty URL www.blogger.com/static/v1/jsbin/2221649954-lbx__pt_pt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:27:46 Last Seen2023-03-26 11:31:37 Times Seen2 Hash 439509d71862ba8bc0d2e84b5231ea0b 711672645767c55695862af26ec12e9bb96998eb b47fbb8f769f89b70510e47c3b70c0b8936cd3121c1cc6065397780643ca3b5f Loading...

	www.cortinasuberlandia.com.br/	134 B	2023-03-07	2024-04-19
Pretty URL www.cortinasuberlandia.com.br/ IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-19 13:33:07 Times Seen13758 Hash 7e2a455be32f5870991d61ec53c7dc39 5b4ae6802be8b8b8033c315ae65a16eeaf7682aa 8f0eb730a7427cc79a611009ff5de0a3d74e5249ea9a9db98d1954e2b933d91d Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-04-19
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 13:33:11 Times Seen47787 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_0?le=scs	137 kB	2023-03-14	2023-03-29
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 08:21:13 Last Seen2023-03-29 21:06:09 Times Seen3177 Hash 4ab84de7482ff360597e1b374a7862e7 c3f06d0268a33f97a58d678c268943c707b115e9 b2f7439a381788f41b8c1220e2f16192de64ee0163b42c8c23927a6c574a022e Loading...

	www.blogger.com/static/v1/jsbin/2377135408-video_compiled.js	36 kB	2023-03-14	2023-04-20
Pretty URL www.blogger.com/static/v1/jsbin/2377135408-video_compiled.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:32:05 Last Seen2023-04-20 00:55:58 Times Seen74 Hash c384678cc0d05ec567606a04ba025119 809fa307c18cdce210119242b2f9918c784dcf49 972c4e02d30e8fbb981e51772713c393b363471f29864ea2998c56675213b530 Loading...

	apis.google.com/js/platform.js	55 kB	2023-03-14	2023-03-29
Pretty URL apis.google.com/js/platform.js IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 08:21:13 Last Seen2023-03-29 21:06:09 Times Seen3870 Hash c874d023758ac55a514bc05a1cc1de6d eaa59255d7deef455c34fa45636a0c6b34111ecf e8b9cf349d0e2a75f2e35e2016738c17bbabdac9f0dc78bb4683b622503cb217 Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	55 kB	2023-03-14	2023-03-29
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 08:09:47 Last Seen2023-03-29 21:03:23 Times Seen3066 Hash 4f1d359090cecbba0cce17c99308c278 e3294d803ab5dc4c353120fd27da1bc80bbdd435 0e2ae170de91fd88ef5cb157ee21d40358973ea8a71dc656c6b1e2ec73339c3a Loading...

	www.cortinasuberlandia.com.br/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-20
Pretty URL www.cortinasuberlandia.com.br/js/cookienotice.js IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-20 00:17:58 Times Seen113036 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	www.cortinasuberlandia.com.br/	269 B	2023-03-07	2024-04-19
Pretty URL www.cortinasuberlandia.com.br/ IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 13:33:07 Times Seen27926 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	www.blogger.com/navbar.g?targetBlogID=4300343279488834812&blogName=Cortinas+Uberlandia&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.cortinasuberlandia.com.br/search&blogLocale=pt_PT&v=2&homepageUrl=https://www.cortinasuberlandia.com.br/&vt=-113211466047429368&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fwww.cortinasuberlandia.com.br&pfname=&rpctoken=11850604	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=4300343279488834812&blogName=Cortinas+Uberlandia&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.cortinasuberlandia.com.br/search&blogLocale=pt_PT&v=2&homepageUrl=https://www.cortinasuberlandia.com.br/&vt=-113211466047429368&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fwww.cortinasuberlandia.com.br&pfname=&rpctoken=11850604 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	www.blogger.com/video.g?token=AD6v5dy9eajuvX4Juu0kMx64pCgY1ZiZbMB2-Dhw2DBLsNTJBH1-ZgtPYd8jgdkFGwY5ZUEJ3KQiWKeYN7AiwAqDnmZ-gliJaVuQ13cwuJg3h6b10rDPl3weewO8uRM1iOFjt6B2_MEu	917 B	2023-03-26	2023-03-26
Pretty URL www.blogger.com/video.g?token=AD6v5dy9eajuvX4Juu0kMx64pCgY1ZiZbMB2-Dhw2DBLsNTJBH1-ZgtPYd8jgdkFGwY5ZUEJ3KQiWKeYN7AiwAqDnmZ-gliJaVuQ13cwuJg3h6b10rDPl3weewO8uRM1iOFjt6B2_MEu IP 142.250.74.73 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:31:37 Last Seen2023-03-26 11:31:37 Times Seen1 Hash 00ba059d29b65f4fa6762b46a7431e90 b29a14710152b49ef521d46a8b019b4e0ebca5a6 a51a2d6df702dd6db37d2f6260e76276d1a3b24a35173337b6d5074eff90218d Loading...

	www.blogger.com/video.g?token=AD6v5dx7ilqzmkDYfTsPCmvhNaPp0fQrdXTo6kSAlMX1GJQo9OAxRuobxDzMIa5yR0XV46QOLu0J90Wc2bbiHNLnFKTflaFNUpvyhnYTyfFy6fMCGZD8bYPUCTyX4v-taUPaErAyqsw	924 B	2023-03-26	2023-03-26
Pretty URL www.blogger.com/video.g?token=AD6v5dx7ilqzmkDYfTsPCmvhNaPp0fQrdXTo6kSAlMX1GJQo9OAxRuobxDzMIa5yR0XV46QOLu0J90Wc2bbiHNLnFKTflaFNUpvyhnYTyfFy6fMCGZD8bYPUCTyX4v-taUPaErAyqsw IP 142.250.74.73 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:31:37 Last Seen2023-03-26 11:31:37 Times Seen1 Hash fcaf411bd47b8f13283675e4e4e1a9f9 ca40ca44fa9b51db95a27bb8d747483fbbd79f32 f9592d3033c0343cd6db5f9bb702cc8fd5f7652ae2c16a78277b5f19dbee0687 Loading...

HTTP Transactions (62)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10005
Expires: Mon, 20 Mar 2023 11:47:01 GMT
Date: Mon, 20 Mar 2023 09:00:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
28774b36cf8bb6b054329393a33f6239
728313ddff6d5ceb6db3eb8445f039779616a140
08378fe6a897ab5a9c8d3bc2748c9670659d0d0d164317fdfac88d23fee78fa0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08378FE6A897AB5A9C8D3BC2748C9670659D0D0D164317FDFAC88D23FEE78FA0"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5309
Expires: Mon, 20 Mar 2023 10:28:45 GMT
Date: Mon, 20 Mar 2023 09:00:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5285a032a285729d3e4a546310ed052d
d370c14bbc2d168cc3703bcb6b94ea0ece26e69d
a811aac1eb89de0666a7de8d3eda1dc3affa7ce5353219211a1beee1211536b5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A811AAC1EB89DE0666A7DE8D3EDA1DC3AFFA7CE5353219211A1BEEE1211536B5"
Last-Modified: Mon, 20 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15613
Expires: Mon, 20 Mar 2023 13:20:29 GMT
Date: Mon, 20 Mar 2023 09:00:16 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Mar 2023 08:27:14 GMT
content-type: application/json
age: 1982
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: U3ondByxG2ypTun+ij1vuT5ahwYw3y7lKRNhXBbo8l0OuLskQRYCwzwT3YEGFsAODd4KQJ/VcK8=
x-amz-request-id: BZR25APTT76PSZXQ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 20 Mar 2023 08:52:42 GMT
age: 454
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 09:00:16 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Retry-After, Content-Type, Expires, Alert, Pragma, ETag, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Mar 2023 08:17:21 GMT
age: 2576
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3462d41d9283fedf24f278089d5d1570
b8bcea77656f775cdc34620322cc616216ed2b95
55e47b413ba648a98eb6e92ab73aee602912cd13e7da23ef3cea1490c1b9de50

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55E47B413BA648A98EB6E92AB73AEE602912CD13E7DA23EF3CEA1490C1B9DE50"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3525
Expires: Mon, 20 Mar 2023 09:59:02 GMT
Date: Mon, 20 Mar 2023 09:00:17 GMT
Connection: keep-alive

cortinasportoalegre.com.br/asb.co.nz/Tax-customer-update/asb/auth.php?country_x=United+States&locale-8731002x=E?_US

200.160.2.95

302 Found

60 B

URL HTTP/1.1
cortinasportoalegre.com.br/asb.co.nz/Tax-customer-update/asb/auth.php?country_x=United+States&locale-8731002x=E?_US
IP
200.160.2.95:0
ASN
#22548 Nucleo de Inf. e Coord. do Ponto BR - NIC.

File type
HTML document, ASCII text
Size
60 B (60 bytes)
Hash
0e1c395d41781518f500517f157d940c
7996510542c43822f94641d2d60d5a9485d8cd15
334670ee519afcd991f19f3b5986d13afba6b99a5a6b6018c082831619c53663

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asb.co.nz/Tax-customer-update/asb/auth.php?country_x=United+States&locale-8731002x=E?_US HTTP/1.1
Host: cortinasportoalegre.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Cache-Control: max-age=300
Content-Type: text/html; charset=utf-8
Location: https://www.cortinasuberlandia.com.br
Date: Mon, 20 Mar 2023 09:00:17 GMT
Content-Length: 60

push.services.mozilla.com/

44.238.238.191

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.238.238.191:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: o4CLEcobMpeGNGNzADex4g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Gu60Ojh5gQ7ouCPZoWsVTitAHyw=

ocsp.pki.goog/s/gts1d4/3EOyP6Bj0Hk

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/3EOyP6Bj0Hk
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b3fc58cc4277e0faa00be514764d00ab
8bcf74ee998e9558b458bf5492acfb62cffe3637
02735fae1ea5095adee8771dd378977209ecf59fcb683519f6eebca05bf4e878

HTTP Headers

POST /s/gts1d4/3EOyP6Bj0Hk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.cortinasuberlandia.com.br/

142.250.74.179

200 OK

16 kB

URL HTTP/2
www.cortinasuberlandia.com.br/
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1599)
Size
16 kB (15503 bytes)
Hash
4f3747aed70e8a31d6e2cea7501a1506
62dedc0f489912a8dfeccbd8baa4156f1930c04e
cebdeb5315f01ba060eb94c898a8cdd1aa2b96124a03a7c5226936b0e53f8507

HTTP Headers

GET / HTTP/1.1
Host: www.cortinasuberlandia.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Mon, 20 Mar 2023 09:00:18 GMT
date: Mon, 20 Mar 2023 09:00:18 GMT
cache-control: private, max-age=0
last-modified: Tue, 28 Feb 2023 14:15:39 GMT
etag: W/"3316bfb5bb188ac842c2197945b825f18ca4d02a66466edf42b4515627bfbd13"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 15503
server: GSE
X-Firefox-Spdy: h2

www.cortinasuberlandia.com.br/js/cookienotice.js

142.250.74.179

200 OK

2.0 kB

URL HTTP/2
www.cortinasuberlandia.com.br/js/cookienotice.js
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: www.cortinasuberlandia.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Mon, 20 Mar 2023 09:00:18 GMT
expires: Mon, 27 Mar 2023 09:00:18 GMT
cache-control: public, max-age=604800
last-modified: Sun, 19 Mar 2023 21:49:44 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6f0dd79b56dd9304aeda92ff826d098f
eceb133a75f39b8ee21269814bae7c77a5fdc38e
87e559bed86ebcb242349ab4b74b8c11820b7b290cecdd0b564c016a51b89690

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67bdaa59e9fd10a3a8737d9b47c51e3d
9a3840be8f9f50d8618a7bbf45b942af016e51d6
eb03e577c0bde664aab6c825f5060073e1cc8935dc1c119cc8ecce01ffc267b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67bdaa59e9fd10a3a8737d9b47c51e3d
9a3840be8f9f50d8618a7bbf45b942af016e51d6
eb03e577c0bde664aab6c825f5060073e1cc8935dc1c119cc8ecce01ffc267b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67bdaa59e9fd10a3a8737d9b47c51e3d
9a3840be8f9f50d8618a7bbf45b942af016e51d6
eb03e577c0bde664aab6c825f5060073e1cc8935dc1c119cc8ecce01ffc267b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/platform.js

142.250.74.46

200 OK

21 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1429)
Size
21 kB (21022 bytes)
Hash
2e9e150d66328b6b6a88e285fc282762
22b038643bd45f842349cc7a4a7075cc0f074725
30d9bc41eb379b7b441031e0df6d0742df42ca92be34697f729b8eca83dc9d54

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21022
date: Mon, 20 Mar 2023 09:00:18 GMT
expires: Mon, 20 Mar 2023 09:00:18 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "5ebb85d0c8d0a403"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c7f13db45731a395748d02aa5c08ef0
6274934e927ccc8c6b48456c315c506664cddc86
2a961cbe03e97dc771a717323d592372e4d72ee788440ae1f420b29fb0342e47

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c7f13db45731a395748d02aa5c08ef0
6274934e927ccc8c6b48456c315c506664cddc86
2a961cbe03e97dc771a717323d592372e4d72ee788440ae1f420b29fb0342e47

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

1.bp.blogspot.com/-PmwnT2HypMI/Xyi2KdUZVXI/AAAAAAAAACA/bWnyuC3obwcQZmG8Aj5rgrJO9tqwdBmCACLcBGAsYHQ/s1600/persianas%2Buberlandia.jpg

142.250.74.161

200 OK

12 kB

URL HTTP/2
1.bp.blogspot.com/-PmwnT2HypMI/Xyi2KdUZVXI/AAAAAAAAACA/bWnyuC3obwcQZmG8Aj5rgrJO9tqwdBmCACLcBGAsYHQ/s1600/persianas%2Buberlandia.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 259x195, components 3\012- data
Size
12 kB (11942 bytes)
Hash
20f0f7bec2f4960861149b79ace071bf
45eb3b593fdccff31e1babfc8b84a9e3535d800c
f4e2dfdae174a9f58bdfe80136fd8e4e1e96501d7ccbb709f6f7b96cc498f2a4

HTTP Headers

GET /-PmwnT2HypMI/Xyi2KdUZVXI/AAAAAAAAACA/bWnyuC3obwcQZmG8Aj5rgrJO9tqwdBmCACLcBGAsYHQ/s1600/persianas%2Buberlandia.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v21"
expires: Tue, 21 Mar 2023 09:00:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="persianas uberlandia.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:18 GMT
server: fife
content-length: 11942
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-tOLgbKNqhY4/XeG0dIYCuPI/AAAAAAAAAAM/DE_plQTIrpMVu8WRbAUzTcTzK4mBxZz4wCLcBGAsYHQ/s16000/cortinas%2Buberlandia.jpg

142.250.74.161

200 OK

7.6 kB

URL HTTP/2
1.bp.blogspot.com/-tOLgbKNqhY4/XeG0dIYCuPI/AAAAAAAAAAM/DE_plQTIrpMVu8WRbAUzTcTzK4mBxZz4wCLcBGAsYHQ/s16000/cortinas%2Buberlandia.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 300x168, components 3\012- data
Size
7.6 kB (7585 bytes)
Hash
f851a6f03649963bb85cf699896f2d0c
0d02d5530283af96230355bf1662d83536a7933f
3a806a8379f45dab703f4fa3c0718256742e2ac8cbc99514c306e96e58c1d831

HTTP Headers

GET /-tOLgbKNqhY4/XeG0dIYCuPI/AAAAAAAAAAM/DE_plQTIrpMVu8WRbAUzTcTzK4mBxZz4wCLcBGAsYHQ/s16000/cortinas%2Buberlandia.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v4"
expires: Tue, 21 Mar 2023 09:00:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="cortinas uberlandia.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:18 GMT
server: fife
content-length: 7585
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-PmwnT2HypMI/Xyi2KdUZVXI/AAAAAAAAACA/bWnyuC3obwcQZmG8Aj5rgrJO9tqwdBmCACLcBGAsYHQ/w72-h72-p-k-no-nu/persianas%2Buberlandia.jpg

142.250.74.161

200 OK

3.6 kB

URL HTTP/2
1.bp.blogspot.com/-PmwnT2HypMI/Xyi2KdUZVXI/AAAAAAAAACA/bWnyuC3obwcQZmG8Aj5rgrJO9tqwdBmCACLcBGAsYHQ/w72-h72-p-k-no-nu/persianas%2Buberlandia.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.6 kB (3574 bytes)
Hash
ba9fb4cb8a71291aaef0b17318e7be87
9382f560b906ef0bb4e061eafe4d092327b3b29f
37d7ccfb1ba7cd4a040f8b57eb6f3bf4e9daa8915bb54672c2500ea3fbf0ec0b

HTTP Headers

GET /-PmwnT2HypMI/Xyi2KdUZVXI/AAAAAAAAACA/bWnyuC3obwcQZmG8Aj5rgrJO9tqwdBmCACLcBGAsYHQ/w72-h72-p-k-no-nu/persianas%2Buberlandia.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v21"
expires: Tue, 21 Mar 2023 09:00:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="persianas uberlandia.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:18 GMT
server: fife
content-length: 3574
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-cFhGis8WWCg/Xyi4752OaJI/AAAAAAAAACM/zjWZw1Q3GK0tVNtUucyT_45wzmdahA7TwCLcBGAsYHQ/s1600/cortinas.jpg

142.250.74.161

200 OK

9.5 kB

URL HTTP/2
1.bp.blogspot.com/-cFhGis8WWCg/Xyi4752OaJI/AAAAAAAAACM/zjWZw1Q3GK0tVNtUucyT_45wzmdahA7TwCLcBGAsYHQ/s1600/cortinas.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 263x192, components 3\012- data
Size
9.5 kB (9545 bytes)
Hash
86713261d1c813c0c6fee6ef5ae4c133
ab90a7319c9c3cd0692a7f0c612e8b9ce76f21ad
c24d5d7c6a5e0ee002e196ddc33042a72be87935193e46027b1e0e1027d81933

HTTP Headers

GET /-cFhGis8WWCg/Xyi4752OaJI/AAAAAAAAACM/zjWZw1Q3GK0tVNtUucyT_45wzmdahA7TwCLcBGAsYHQ/s1600/cortinas.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v24"
expires: Tue, 21 Mar 2023 09:00:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="cortinas.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:18 GMT
server: fife
content-length: 9545
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-cFhGis8WWCg/Xyi4752OaJI/AAAAAAAAACM/zjWZw1Q3GK0tVNtUucyT_45wzmdahA7TwCLcBGAsYHQ/w72-h72-p-k-no-nu/cortinas.jpg

142.250.74.161

200 OK

3.4 kB

URL HTTP/2
1.bp.blogspot.com/-cFhGis8WWCg/Xyi4752OaJI/AAAAAAAAACM/zjWZw1Q3GK0tVNtUucyT_45wzmdahA7TwCLcBGAsYHQ/w72-h72-p-k-no-nu/cortinas.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.4 kB (3361 bytes)
Hash
f71ee0d5438751aba1e2ef127fc8ce70
ba1614aaeba77f50bdac8bd1556e0861356d3eac
a52735c907f1013a98701bab26194fe99202cc0c68be82435f006f6b5a968531

HTTP Headers

GET /-cFhGis8WWCg/Xyi4752OaJI/AAAAAAAAACM/zjWZw1Q3GK0tVNtUucyT_45wzmdahA7TwCLcBGAsYHQ/w72-h72-p-k-no-nu/cortinas.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v24"
expires: Tue, 21 Mar 2023 09:00:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="cortinas.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:18 GMT
server: fife
content-length: 3361
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-2bE3uRP_hJo/Xyi6tIrlcTI/AAAAAAAAACY/osamhoICIBsCO_MsyrPDkPYTlU5L0vDKwCLcBGAsYHQ/s1600/persianas.jpg

142.250.74.161

200 OK

6.8 kB

URL HTTP/2
1.bp.blogspot.com/-2bE3uRP_hJo/Xyi6tIrlcTI/AAAAAAAAACY/osamhoICIBsCO_MsyrPDkPYTlU5L0vDKwCLcBGAsYHQ/s1600/persianas.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 258x196, components 3\012- data
Size
6.8 kB (6772 bytes)
Hash
00c6ff529e73f0b4c27789c440162191
8fb6d4014373c3abf17d60d4e5fd15baecab0ec4
aee93168154d233e8e4aede1365c4bdd77acff30efcc4ff261b2d0b2250c40d9

HTTP Headers

GET /-2bE3uRP_hJo/Xyi6tIrlcTI/AAAAAAAAACY/osamhoICIBsCO_MsyrPDkPYTlU5L0vDKwCLcBGAsYHQ/s1600/persianas.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v27"
expires: Tue, 21 Mar 2023 09:00:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="persianas.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:18 GMT
server: fife
content-length: 6772
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c7f13db45731a395748d02aa5c08ef0
6274934e927ccc8c6b48456c315c506664cddc86
2a961cbe03e97dc771a717323d592372e4d72ee788440ae1f420b29fb0342e47

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/3389988682-widgets.js

142.250.74.73

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/3389988682-widgets.js
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56895 bytes)
Hash
9499c51b064d1e56fccd572f39f94eae
c8a95eea0f9d2e84aa6788a6dcb86d6b569a3da4
9c868d3622f0920a454c7c05008a0993a8040a87ef31326dc17ba182065e5313

HTTP Headers

GET /static/v1/widgets/3389988682-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56895
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 02:04:25 GMT
expires: Thu, 14 Mar 2024 02:04:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 15 Mar 2023 00:51:20 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 456953
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css

142.250.74.73

200 OK

7.8 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35959)
Size
7.8 kB (7776 bytes)
Hash
5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630

HTTP Headers

GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 13:08:04 GMT
expires: Thu, 14 Mar 2024 13:08:04 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Mar 2023 21:52:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 417134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d2b91b87a3060a36d0002f6338924521
b216a0ae0e118f942207ae6c51a5309393fe79f4
835446923abce8bde27c74317de5388462f43f7cbf93293a15891a2a2554e406

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67bdaa59e9fd10a3a8737d9b47c51e3d
9a3840be8f9f50d8618a7bbf45b942af016e51d6
eb03e577c0bde664aab6c825f5060073e1cc8935dc1c119cc8ecce01ffc267b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c7f13db45731a395748d02aa5c08ef0
6274934e927ccc8c6b48456c315c506664cddc86
2a961cbe03e97dc771a717323d592372e4d72ee788440ae1f420b29fb0342e47

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c7f13db45731a395748d02aa5c08ef0
6274934e927ccc8c6b48456c315c506664cddc86
2a961cbe03e97dc771a717323d592372e4d72ee788440ae1f420b29fb0342e47

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10519
Expires: Mon, 20 Mar 2023 11:55:38 GMT
Date: Mon, 20 Mar 2023 09:00:19 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10519
Expires: Mon, 20 Mar 2023 11:55:38 GMT
Date: Mon, 20 Mar 2023 09:00:19 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10338 bytes)
Hash
78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bka10YWXvoKBRkwgvJNMzm1SSv_J1USzdugO9lPduHxe2uYFYkXh4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 04:25:44 GMT
age: 16475
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7695 bytes)
Hash
302595cc68fe8cf12121d0f652b3194d
e5532a3fed552246e8a63ea2ba75e174273a7b9f
6ca3599a9af06f51d4dc205d4ebd8f7f8b38c54864b6b478eac8c0d1adbc97c6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7695
x-amzn-requestid: 1009077b-14aa-42e5-86f1-de94b8b2aba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDETIHf8oAMFxEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641780e0-07bbb0376f1c1941731e00ba;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: v9Nl9e72FJH0vW19kOEzsw_ibM-64AdrJlcg7sFRiOWKDDZoHJYbjA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:49:05 GMT
age: 40274
etag: "e5532a3fed552246e8a63ea2ba75e174273a7b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10519
Expires: Mon, 20 Mar 2023 11:55:38 GMT
Date: Mon, 20 Mar 2023 09:00:19 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
934dffe86562e18d6b226867f9c530a0
3ed5d88373639e94a066afd2ba76e68ed66af07d
6b213829600abe87f729b89cfe8b22875588e07adc5c0f0d3d26aec0f7308f57

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24e4aa78-0ee1-4b04-8fed-b9e18ef3dc8d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9798 bytes)
Hash
dea3a1324b960e401a08c2cb04727426
8c37df5978cf6391f65828c045ee849d581504d3
d7a35e850cc1d912c1308c279d918005919bcfc30087934beaafcc792ac36e0c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24e4aa78-0ee1-4b04-8fed-b9e18ef3dc8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9798
x-amzn-requestid: cb50a348-357d-470c-934a-41da54b6ecbe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDEj0H5goAMF1-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6417814b-61658765317b3e9c781d7347;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:40:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: emnHxZdaHLcn6gr4_OncYwPHDVryfhlzyBtxIzV38nNkysvy34nZHQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:11:23 GMT
age: 38936
etag: "8c37df5978cf6391f65828c045ee849d581504d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51533590-da87-4812-896e-5b883e86ca26.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (4000 bytes)
Hash
6070b228321fcff24280a0282db8339f
f27b17b7ff1a8c47dfcc3815dc9e097992190b74
f76f6c4c5cb65a6ec03853432a3cfa458eadee602789ce729d7de0b86ca1940d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51533590-da87-4812-896e-5b883e86ca26.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 24988fc6-aec7-4c59-a437-fd175e535149
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDVWHFBIAMF2Yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f55-75e20fad03b26102300ae78e;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: qHAqxfrWsXZtyhWC0UVRT4RyvbDmhnd7iQ3iIsmqnsJT9MothJSvUg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 50faaaa196a6b0875217ef7827f97d7c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:37:21 GMT
age: 40978
etag: "f27b17b7ff1a8c47dfcc3815dc9e097992190b74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10519
Expires: Mon, 20 Mar 2023 11:55:38 GMT
Date: Mon, 20 Mar 2023 09:00:19 GMT
Connection: keep-alive

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6839 bytes)
Hash
2dd89721d1aeaf671e76434c7d8a4ad7
a3dedec80d68e8f0326548d03b0e594ffc87ecd1
ff593609540ed01673c58483ce57a40cc712000d32427ccf2486fd0035728448

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6839
x-amzn-requestid: c478a5c6-cb9b-4324-be41-b79c32f99570
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDU6GKyoAMF6uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f52-180dc15d2627e08d3182a761;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DSmKBceJ2qg1APkPHqdky68b35cxstD-4bvUpzS55J--1FjVZ0AbKg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:22:00 GMT
age: 38299
etag: "a3dedec80d68e8f0326548d03b0e594ffc87ecd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2e64fc6f9ae4228dd2fc48d61e1d8841
ae781abd01bae215d2ccc65fe308aaa4e3df6706
f8f424b8de4cb7cea5608432bbad1786f02cbc7e3c111f5d395288065f134fa0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6d92bde-aeaf-4220-ab31-32d913cebcbf.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9844 bytes)
Hash
df9bad66ead39008462af08bda8ff3cb
816a0f35e0cf37329fa233a8fefe9a8addf04edc
f1bf32da41b171c73b741c247ddfbc91d2e82daba395fde6798de3a2571f3fc3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6d92bde-aeaf-4220-ab31-32d913cebcbf.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9844
x-amzn-requestid: 05aa623d-9c20-49ff-a68d-323d0dcf4d59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDEhgFXzoAMFvMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6417813c-078768b7057ff73c29e5514b;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:40:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: AOhxtm5AelyUDMj3ZY3nYaHSJV2steyS9Yqi9CPpsos7lOelfxy6PA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:50:29 GMT
age: 40190
etag: "816a0f35e0cf37329fa233a8fefe9a8addf04edc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
934dffe86562e18d6b226867f9c530a0
3ed5d88373639e94a066afd2ba76e68ed66af07d
6b213829600abe87f729b89cfe8b22875588e07adc5c0f0d3d26aec0f7308f57

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

142.250.74.130

200 OK

42 B

URL HTTP/2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
42 B (42 bytes)
Hash
d0360ff032091f5b24fb22cdc84a6890
76140dbc7eb007f3ec7995d88e7491ebebcf159c
29ea95cbc925c4afd08a2d36d812406c2a0172e0bb2703fce7a76749667472d7

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Mon, 20 Mar 2023 00:00:34 GMT
expires: Mon, 03 Apr 2023 00:00:34 GMT
cache-control: public, max-age=1209600
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 32385
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2e64fc6f9ae4228dd2fc48d61e1d8841
ae781abd01bae215d2ccc65fe308aaa4e3df6706
f8f424b8de4cb7cea5608432bbad1786f02cbc7e3c111f5d395288065f134fa0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.cortinasuberlandia.com.br/favicon.ico

142.250.74.179

200 OK

412 B

URL HTTP/2
www.cortinasuberlandia.com.br/favicon.ico
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size
412 B (412 bytes)
Hash
501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.cortinasuberlandia.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Mon, 20 Mar 2023 09:00:19 GMT
date: Mon, 20 Mar 2023 09:00:19 GMT
cache-control: private, max-age=86400
last-modified: Tue, 28 Feb 2023 14:15:39 GMT
etag: W/"3316bfb5bb188ac842c2197945b825f18ca4d02a66466edf42b4515627bfbd13"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/a/AVvXsEjA4khKKEefFOi1SCMkdg1cxkh0AGn9dBqUtuZsL3JhgpJrVbFYluQJ591tc0zfIy1DPfwR-jzI293iH17e_-0WsQeiWAI9uS2EXeCRbiyhjZayBGcRx-iQkupTeXWYSmOAcTUJ8A3Vmg6JVCFHMMqBoHc7MSoI4qbyCLEM5W4_-4zkcXdbrStXolzp

142.250.74.129

200 OK

4.5 kB

URL HTTP/2
blogger.googleusercontent.com/img/a/AVvXsEjA4khKKEefFOi1SCMkdg1cxkh0AGn9dBqUtuZsL3JhgpJrVbFYluQJ591tc0zfIy1DPfwR-jzI293iH17e_-0WsQeiWAI9uS2EXeCRbiyhjZayBGcRx-iQkupTeXWYSmOAcTUJ8A3Vmg6JVCFHMMqBoHc7MSoI4qbyCLEM5W4_-4zkcXdbrStXolzp
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 320 x 132, 8-bit colormap, non-interlaced\012- data
Size
4.5 kB (4496 bytes)
Hash
50886c3f32e348edc08a53177c9f4c58
97719fe495b35e04ab583bff1d7305ed4bb545d7
1de27f601f05499aaca959efe37e58d1d71249153acd02d1eedf56b3a77e77aa

HTTP Headers

GET /img/a/AVvXsEjA4khKKEefFOi1SCMkdg1cxkh0AGn9dBqUtuZsL3JhgpJrVbFYluQJ591tc0zfIy1DPfwR-jzI293iH17e_-0WsQeiWAI9uS2EXeCRbiyhjZayBGcRx-iQkupTeXWYSmOAcTUJ8A3Vmg6JVCFHMMqBoHc7MSoI4qbyCLEM5W4_-4zkcXdbrStXolzp HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v65"
expires: Tue, 21 Mar 2023 09:00:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="whatsapp.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:19 GMT
server: fife
content-length: 4496
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/a/AVvXsEj9RRSR8HsYpEiU2olKWSKQm9NT4lE8tHmdXTGn7vnpw0O9IygnFGrZ_sIQyPFp0yDjNyM526cA4_RpToyWiESp8IhbhCn_I8cKlq1DTuGOnOI8AxeYhw3gMrVhy7nTc6aGXinjN7BYMOySqmGM2LRTbVg4EhpS2fjbjACiB2eLfvQXkcg7wfKxzxir

142.250.74.129

200 OK

4.5 kB

URL HTTP/2
blogger.googleusercontent.com/img/a/AVvXsEj9RRSR8HsYpEiU2olKWSKQm9NT4lE8tHmdXTGn7vnpw0O9IygnFGrZ_sIQyPFp0yDjNyM526cA4_RpToyWiESp8IhbhCn_I8cKlq1DTuGOnOI8AxeYhw3gMrVhy7nTc6aGXinjN7BYMOySqmGM2LRTbVg4EhpS2fjbjACiB2eLfvQXkcg7wfKxzxir
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 320 x 132, 8-bit colormap, non-interlaced\012- data
Size
4.5 kB (4496 bytes)
Hash
50886c3f32e348edc08a53177c9f4c58
97719fe495b35e04ab583bff1d7305ed4bb545d7
1de27f601f05499aaca959efe37e58d1d71249153acd02d1eedf56b3a77e77aa

HTTP Headers

GET /img/a/AVvXsEj9RRSR8HsYpEiU2olKWSKQm9NT4lE8tHmdXTGn7vnpw0O9IygnFGrZ_sIQyPFp0yDjNyM526cA4_RpToyWiESp8IhbhCn_I8cKlq1DTuGOnOI8AxeYhw3gMrVhy7nTc6aGXinjN7BYMOySqmGM2LRTbVg4EhpS2fjbjACiB2eLfvQXkcg7wfKxzxir HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6b"
expires: Tue, 21 Mar 2023 09:00:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="whatsapp.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:19 GMT
server: fife
content-length: 4496
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/a/AVvXsEgL1eV3dws_tMFHv1i2WOXsYI5wTghjrrQdAabpCx8GjPs5De0QP_2H3GQWBJvP1-_KjOsQjEfsHv5JdAH0ZDhpZ5Zw4lK7umcnTw7yQojG0We5t1cwaAZ_RWzc932d7BO1iMMAgjGnq5su0HO0FJD-VdHW4ClqtkI-KYWAKU-jrT4NjI68rq5KWWLn

142.250.74.129

200 OK

4.5 kB

URL HTTP/2
blogger.googleusercontent.com/img/a/AVvXsEgL1eV3dws_tMFHv1i2WOXsYI5wTghjrrQdAabpCx8GjPs5De0QP_2H3GQWBJvP1-_KjOsQjEfsHv5JdAH0ZDhpZ5Zw4lK7umcnTw7yQojG0We5t1cwaAZ_RWzc932d7BO1iMMAgjGnq5su0HO0FJD-VdHW4ClqtkI-KYWAKU-jrT4NjI68rq5KWWLn
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 320 x 132, 8-bit colormap, non-interlaced\012- data
Size
4.5 kB (4496 bytes)
Hash
50886c3f32e348edc08a53177c9f4c58
97719fe495b35e04ab583bff1d7305ed4bb545d7
1de27f601f05499aaca959efe37e58d1d71249153acd02d1eedf56b3a77e77aa

HTTP Headers

GET /img/a/AVvXsEgL1eV3dws_tMFHv1i2WOXsYI5wTghjrrQdAabpCx8GjPs5De0QP_2H3GQWBJvP1-_KjOsQjEfsHv5JdAH0ZDhpZ5Zw4lK7umcnTw7yQojG0We5t1cwaAZ_RWzc932d7BO1iMMAgjGnq5su0HO0FJD-VdHW4ClqtkI-KYWAKU-jrT4NjI68rq5KWWLn HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6a"
expires: Tue, 21 Mar 2023 09:00:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="whatsapp.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:19 GMT
server: fife
content-length: 4496
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

142.250.74.129

200 OK

1.0 kB

URL HTTP/2
blogger.googleusercontent.com/img/a/AVvXsEjA4khKKEefFOi1SCMkdg1cxkh0AGn9dBqUtuZsL3JhgpJrVbFYluQJ591tc0zfIy1DPfwR-jzI293iH17e_-0WsQeiWAI9uS2EXeCRbiyhjZayBGcRx-iQkupTeXWYSmOAcTUJ8A3Vmg6JVCFHMMqBoHc7MSoI4qbyCLEM5W4_-4zkcXdbrStXolzp=w72-h72-p-k-no-nu
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1028 bytes)
Hash
05b29c021ce8c5bf4ee985b64b909433
f0e9c8e86b31fdb3b18b3bd79d1ec27a9bc49f86
f1d116db564f32387fc0c82f64ef66ab525becd1203a5e54f9b50f78d9988e81

HTTP Headers

GET /img/a/AVvXsEjA4khKKEefFOi1SCMkdg1cxkh0AGn9dBqUtuZsL3JhgpJrVbFYluQJ591tc0zfIy1DPfwR-jzI293iH17e_-0WsQeiWAI9uS2EXeCRbiyhjZayBGcRx-iQkupTeXWYSmOAcTUJ8A3Vmg6JVCFHMMqBoHc7MSoI4qbyCLEM5W4_-4zkcXdbrStXolzp=w72-h72-p-k-no-nu HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v65"
expires: Tue, 21 Mar 2023 09:00:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="whatsapp.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:19 GMT
server: fife
content-length: 1028
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/a/AVvXsEgB5rqVJWUkk-6G0ObOT437S0u31lLiYVsJJhRxIgmCMT39bUZvw2Ukvhl1YxfspsQ6gR11WuWYCVWFXQ7rtkXuDBfTw5BGekK229ccT3uBPj7VQ2JkItipLb3TcrAJZig_iOj3QO4AVjpzgf1ZrZLJkubo-kglp8m5ar2KOiPLD8zz2vEi1bGuT0U6

142.250.74.129

200 OK

4.5 kB

URL HTTP/2
blogger.googleusercontent.com/img/a/AVvXsEgB5rqVJWUkk-6G0ObOT437S0u31lLiYVsJJhRxIgmCMT39bUZvw2Ukvhl1YxfspsQ6gR11WuWYCVWFXQ7rtkXuDBfTw5BGekK229ccT3uBPj7VQ2JkItipLb3TcrAJZig_iOj3QO4AVjpzgf1ZrZLJkubo-kglp8m5ar2KOiPLD8zz2vEi1bGuT0U6
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 320 x 132, 8-bit colormap, non-interlaced\012- data
Size
4.5 kB (4496 bytes)
Hash
50886c3f32e348edc08a53177c9f4c58
97719fe495b35e04ab583bff1d7305ed4bb545d7
1de27f601f05499aaca959efe37e58d1d71249153acd02d1eedf56b3a77e77aa

HTTP Headers

GET /img/a/AVvXsEgB5rqVJWUkk-6G0ObOT437S0u31lLiYVsJJhRxIgmCMT39bUZvw2Ukvhl1YxfspsQ6gR11WuWYCVWFXQ7rtkXuDBfTw5BGekK229ccT3uBPj7VQ2JkItipLb3TcrAJZig_iOj3QO4AVjpzgf1ZrZLJkubo-kglp8m5ar2KOiPLD8zz2vEi1bGuT0U6 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v67"
expires: Tue, 21 Mar 2023 09:00:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="whatsapp.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Mon, 20 Mar 2023 09:00:19 GMT
server: fife
content-length: 4496
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
934dffe86562e18d6b226867f9c530a0
3ed5d88373639e94a066afd2ba76e68ed66af07d
6b213829600abe87f729b89cfe8b22875588e07adc5c0f0d3d26aec0f7308f57

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/video.g?token=AD6v5dy9eajuvX4Juu0kMx64pCgY1ZiZbMB2-Dhw2DBLsNTJBH1-ZgtPYd8jgdkFGwY5ZUEJ3KQiWKeYN7AiwAqDnmZ-gliJaVuQ13cwuJg3h6b10rDPl3weewO8uRM1iOFjt6B2_MEu

142.250.74.73

200 OK

1.2 kB

URL HTTP/2
www.blogger.com/video.g?token=AD6v5dy9eajuvX4Juu0kMx64pCgY1ZiZbMB2-Dhw2DBLsNTJBH1-ZgtPYd8jgdkFGwY5ZUEJ3KQiWKeYN7AiwAqDnmZ-gliJaVuQ13cwuJg3h6b10rDPl3weewO8uRM1iOFjt6B2_MEu
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (909)
Size
1.2 kB (1232 bytes)
Hash
86db728a7bd6801ea53d4ec1efdb07f0
9504bcec31fb5fb01845ab32f2038cfc65f23ebc
f377433c59cc71a58171c8dc5f503de8ba883f4559d4b307adb1aee6a8efc8ed

HTTP Headers

GET /video.g?token=AD6v5dy9eajuvX4Juu0kMx64pCgY1ZiZbMB2-Dhw2DBLsNTJBH1-ZgtPYd8jgdkFGwY5ZUEJ3KQiWKeYN7AiwAqDnmZ-gliJaVuQ13cwuJg3h6b10rDPl3weewO8uRM1iOFjt6B2_MEu HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: private, max-age=25200
pragma: no-cache
expires: Mon, 20 Mar 2023 09:00:19 GMT
date: Mon, 20 Mar 2023 09:00:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1232
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/video.g?token=AD6v5dxAjM06u-XuQdB8hBLXBmC2GbsNM4ZBNieiFbfWBhWTf_XxVd0b7ZYUaNXIJKZQ8Rq0rouULRwL_dM4WLVJ4V84Uqo_JQgDsp0BkNtrGTPOW9YccOVqXWf1qhG-6L3BWG8GfTsB

142.250.74.73

200 OK

1.4 kB

URL HTTP/2
www.blogger.com/video.g?token=AD6v5dxAjM06u-XuQdB8hBLXBmC2GbsNM4ZBNieiFbfWBhWTf_XxVd0b7ZYUaNXIJKZQ8Rq0rouULRwL_dM4WLVJ4V84Uqo_JQgDsp0BkNtrGTPOW9YccOVqXWf1qhG-6L3BWG8GfTsB
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1579)
Size
1.4 kB (1423 bytes)
Hash
6d9c293863a18fd16e1b99477333f456
8cb9bc589249816407bcb12bff0fcace0cb8270b
3cae495ac62c2c8a60f9a49f556f5d2ac3e9524d78d4732635dc5a01aa1c81d6

HTTP Headers

GET /video.g?token=AD6v5dxAjM06u-XuQdB8hBLXBmC2GbsNM4ZBNieiFbfWBhWTf_XxVd0b7ZYUaNXIJKZQ8Rq0rouULRwL_dM4WLVJ4V84Uqo_JQgDsp0BkNtrGTPOW9YccOVqXWf1qhG-6L3BWG8GfTsB HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: private, max-age=25200
pragma: no-cache
expires: Mon, 20 Mar 2023 09:00:19 GMT
date: Mon, 20 Mar 2023 09:00:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1423
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/images/icons/material/system/1x/play_arrow_white_48dp.png

142.250.74.3

200 OK

220 B

URL HTTP/2
www.gstatic.com/images/icons/material/system/1x/play_arrow_white_48dp.png
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size
220 B (220 bytes)
Hash
bbea220e3d4187feca59742dd22e2b27
800f7aea14ae6bb26b4d178af19e2b5fb6700d8a
b0c543456be59cd54e3b13f2fbc2071c25c6f79a6bb45957bbc12e033b55cf06

HTTP Headers

GET /images/icons/material/system/1x/play_arrow_white_48dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 220
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 13:13:45 GMT
expires: Thu, 14 Mar 2024 13:13:45 GMT
cache-control: public, max-age=31536000
age: 416794
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/video.g?token=AD6v5dx7ilqzmkDYfTsPCmvhNaPp0fQrdXTo6kSAlMX1GJQo9OAxRuobxDzMIa5yR0XV46QOLu0J90Wc2bbiHNLnFKTflaFNUpvyhnYTyfFy6fMCGZD8bYPUCTyX4v-taUPaErAyqsw

142.250.74.73

200 OK

1.2 kB

URL HTTP/2
www.blogger.com/video.g?token=AD6v5dx7ilqzmkDYfTsPCmvhNaPp0fQrdXTo6kSAlMX1GJQo9OAxRuobxDzMIa5yR0XV46QOLu0J90Wc2bbiHNLnFKTflaFNUpvyhnYTyfFy6fMCGZD8bYPUCTyX4v-taUPaErAyqsw
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (916)
Size
1.2 kB (1234 bytes)
Hash
7d9eaf69ad344748263fb58904feae0c
594efe1de4bfff176cac1f71bb9aaebf03b5e86e
edeb6dd373281b1948888ff7c5b265d0bfa20c77a2b7f709504eb4bad4f1745f

HTTP Headers

GET /video.g?token=AD6v5dx7ilqzmkDYfTsPCmvhNaPp0fQrdXTo6kSAlMX1GJQo9OAxRuobxDzMIa5yR0XV46QOLu0J90Wc2bbiHNLnFKTflaFNUpvyhnYTyfFy6fMCGZD8bYPUCTyX4v-taUPaErAyqsw HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cortinasuberlandia.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: private, max-age=25200
pragma: no-cache
expires: Mon, 20 Mar 2023 09:00:19 GMT
date: Mon, 20 Mar 2023 09:00:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1234
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d2b91b87a3060a36d0002f6338924521
b216a0ae0e118f942207ae6c51a5309393fe79f4
835446923abce8bde27c74317de5388462f43f7cbf93293a15891a2a2554e406

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 09:00:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL