amigadaedu2.blogspot.pt/2012/01/coletanea-de-musicas-para-criancas.html
302 Moved Temporarily 214 B URL HTTP/1.1 amigadaedu2.blogspot.pt/2012/01/coletanea-de-musicas-para-criancas.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 0d8217d0248ef2b43ad76c10a2c20d55
fc69b482ae34ed3269c6465d24e1db46dcc6394c
81b4ec5ef1ffeed565b8bd586ac7742f3a563fb53d97993265be10e23aab5713
GET /2012/01/coletanea-de-musicas-para-criancas.html HTTP/1.1
Host: amigadaedu2.blogspot.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://amigadaedu2.blogspot.com/2012/01/coletanea-de-musicas-para-criancas.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Tue, 06 Dec 2022 02:34:47 GMT
Expires: Tue, 06 Dec 2022 02:34:47 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 214
Server: GSE
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5318
Expires: Tue, 06 Dec 2022 04:03:26 GMT
Date: Tue, 06 Dec 2022 02:34:48 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3770
Cache-Control: max-age=118761
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:48 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:34:09 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 02:18:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 975
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4129
Expires: Tue, 06 Dec 2022 03:43:37 GMT
Date: Tue, 06 Dec 2022 02:34:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dcby8y/gLtIbkujkypnSsndn80KQGQhtx1SRQJAOGP3g0S07NcuGvDQAs95fk/73rz0tyNNHIug=
x-amz-request-id: 1FVGXTB2TGGK5DA6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 01:46:55 GMT
age: 2873
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 02:34:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 02:08:58 GMT
cache-control: public,max-age=3600
age: 1550
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3755
Cache-Control: max-age=113679
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:48 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:09:27 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q1daXEXws/skucZq38l/ow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h5Fv3RuqmA0BIcz51ZderMlhK+0=
amigadaedu2.blogspot.com/2012/01/coletanea-de-musicas-para-criancas.html
200 OK 32 kB URL HTTP/1.1 amigadaedu2.blogspot.com/2012/01/coletanea-de-musicas-para-criancas.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (535)
Hash 6731facb8d0cafacfdf3564a4e6ce2fe
b269614cde96e13ae2f33c2e7cf5a72a9f39ee4c
9a0698f4c0b8d37d67172beb9e8fe9008264e1839f733bda37db8e54bc0e9022
GET /2012/01/coletanea-de-musicas-para-criancas.html HTTP/1.1
Host: amigadaedu2.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Tue, 06 Dec 2022 02:34:49 GMT
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 24 Nov 2022 10:49:45 GMT
ETag: W/"3201afe9eaab926f0e065a6eb27f18702ea8f0f601e1fd57f94a5bc19f4025d7"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 32260
Server: GSE
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 1e5e51fbc58282a2410de240a13bac3d
03e7151c23e4ed5efc5a4415fc5dcb01f0d5e019
ad20d69cf3f84ec6bee56a570acbce60d0ade6bdf201397a1de2417fed11b3fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 29335a536fd47c44f11a984665f501f6
46dbfa43c5a94c6baec55a9e89cb1cb0cee7eb69
39d8bc234639a4fceeee88f10319692733e37388c06ae5567971f9dbb7c0aab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
amigadaedu2.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/1.1 amigadaedu2.blogspot.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: amigadaedu2.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/2012/01/coletanea-de-musicas-para-criancas.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Tue, 06 Dec 2022 02:34:49 GMT
Expires: Tue, 13 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 05 Dec 2022 23:52:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/show_ads.js
200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP
File type ASCII text, with very long lines (3577)
Hash 39e81f7f5c0740cfd885b7de6b4c5854
2640bf8bef78fa5f07a0401daf0dd72b906201db
2754381900747adb138ead3d86fd4ecf8521e75e05e66c97ca6eab7c7f403537
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Tue, 06 Dec 2022 02:34:49 GMT
Expires: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 11847849402405446905
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36118
X-XSS-Protection: 0
apis.google.com/js/platform.js
200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Tue, 06 Dec 2022 02:34:49 GMT
expires: Tue, 06 Dec 2022 02:34:49 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:44:05 GMT
expires: Wed, 29 Nov 2023 13:44:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 564644
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2342155703-widgets.js
200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 593480
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i232.photobucket.com/albums/ee315/JeehMary/obrigado.jpg
301 Moved Permanently 167 B URL HTTP/1.1 i232.photobucket.com/albums/ee315/JeehMary/obrigado.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/ee315/JeehMary/obrigado.jpg HTTP/1.1
Host: i232.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 06 Dec 2022 02:34:49 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i232.photobucket.com/albums/ee315/JeehMary/obrigado.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s5Agx4Abq_wBVlRfSbKJtFX88uYPblryLPpScRELwHiGB_QAf8afZg==
Vary: Origin
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Mon, 05 Dec 2022 19:51:21 GMT
Expires: Mon, 19 Dec 2022 19:51:21 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 24208
pagead2.googlesyndication.com/pagead/show_ads.js
200 OK 34 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/show_ads.js
IP
File type ASCII text, with very long lines (3577)
Hash 01d1b3df18e314136a80882477765a5e
7bdf3fc9b868d1c85e16e3dda70d9ae8420da57f
2163b1aa619cadcb40e52bf65f44c1348bbffcbae99fe800e4f1d7c0a1ef5444
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 06 Dec 2022 02:34:49 GMT
expires: Tue, 06 Dec 2022 02:34:49 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 11720872930088428998
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 34052
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 19:47:40 GMT
expires: Wed, 29 Nov 2023 19:47:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 542829
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s10.histats.com/js9.js
200 OK 4.5 kB IP
File type HTML document, ASCII text, with very long lines (11188), with no line terminators
Hash 445b07c690cf56758808b3bb5008645f
3b3d2443db9248eb84964e4cfb89e8ac5e9527a3
bf1d688a6de25030fa52fcf5307114e7f66a56ea50a7b8cf82560473871dd6a9
GET /js9.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
date: Tue, 06 Dec 2022 02:27:49 GMT
last-modified: Thu, 16 Apr 2020 10:44:17 GMT
x-request-id: 208994515
etag: W/"421254336"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4451
x-iplb-request-id: 5B5A2A9A:0571_2E69C9F0:0050_638EAA49_53DD:21BEA
x-iplb-instance: 42476
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=pub-8559278253540015&plah=amigadaedu2.blogspot.com&bust=31071077
200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=pub-8559278253540015&plah=amigadaedu2.blogspot.com&bust=31071077
IP
File type ASCII text, with very long lines (5918)
Size 120 kB (119785 bytes)
Hash a654867b5626bb582b6360b5f2efd68a
f6f965c3fe30386da9d4912d85e641823fe498ee
9dc670d4c5f3e125372b40ffae493d9e0760091e8ba7b5e7f5a92cbfea8e219c
GET /pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=pub-8559278253540015&plah=amigadaedu2.blogspot.com&bust=31071077 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 06 Dec 2022 02:34:49 GMT
expires: Tue, 06 Dec 2022 02:34:49 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 2269637094593921898
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119785
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
signatures.mylivesignature.com/54487/313/854F93EA110862DE0F045377D2D471C8.png
200 OK 909 B URL HTTP/1.1 signatures.mylivesignature.com/54487/313/854F93EA110862DE0F045377D2D471C8.png
IP
File type PNG image data, 137 x 32, 8-bit colormap, non-interlaced\012- data
Hash 9bb49dede983eb45f58f88011033a479
2add42439a4387d9dbae06c8422833c8871a8242
299d500321080c90dce48e4b86986fe75cbe5e0789559416d0a0c08d8dd29301
GET /54487/313/854F93EA110862DE0F045377D2D471C8.png HTTP/1.1
Host: signatures.mylivesignature.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
cache-control: public, max-age=-383818026
expires: Thu, 07 Oct 2010 18:27:43 GMT
etag: "38d-4accdd9f-8769f9;;;"
last-modified: Wed, 07 Oct 2009 18:27:43 GMT
content-type: image/png
content-length: 909
accept-ranges: bytes
date: Tue, 06 Dec 2022 02:34:49 GMT
server: LiteSpeed
connection: Keep-Alive
photos1.blogger.com/blogger/4407/3587/400/comente.gif
200 OK 32 kB URL HTTP/1.1 photos1.blogger.com/blogger/4407/3587/400/comente.gif
IP
File type GIF image data, version 89a, 185 x 180\012- data
Hash f716b1b78a8855f4ae681a9484a56222
2413739914653868eec1714693e6853ae356a2a6
5d53e8e7e80a7087e0fe549da5317f7639291f61995f19610e24718a57d83f9a
GET /blogger/4407/3587/400/comente.gif HTTP/1.1
Host: photos1.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/photos
Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="photos"
Report-To: {"group":"photos","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/photos"}]}
Content-Length: 31582
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 23:39:46 GMT
Expires: Fri, 01 Dec 2023 23:39:46 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Sat, 18 Feb 2012 15:44:26 GMT
Content-Type: image/gif
Age: 356103
www.linkwithin.com/widget.js?rand=0.12749959821521228
404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js?rand=0.12749959821521228
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js?rand=0.12749959821521228 HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Dec 2022 02:34:49 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
www.linkwithin.com/pixel.png
200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Dec 2022 02:34:49 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
resources.blogblog.com/img/icon18_email.gif
200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:19:21 GMT
expires: Tue, 06 Dec 2022 14:19:21 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 01:54:20 GMT
content-type: image/gif
age: 562528
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:19:01 GMT
expires: Tue, 06 Dec 2022 14:19:01 GMT
cache-control: public, max-age=604800
last-modified: Mon, 28 Nov 2022 19:53:31 GMT
content-type: image/gif
age: 562548
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 181b661534dc3f6bbe887293452f685b
bf4e024b51870992b7b41ee50e570bebf4705bfb
4d7472e9a604e69e65040a318534883d14275d6ef7e19c6eb42a8a25099d8eeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=amigadaedu2.blogspot.com&callback=_gfp_s_&client=ca-pub-8559278253540015&gpid_exp=1
200 OK 249 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=amigadaedu2.blogspot.com&callback=_gfp_s_&client=ca-pub-8559278253540015&gpid_exp=1
IP
File type ASCII text, with very long lines (391), with no line terminators
Hash 46c2010f4fe7fd5f7fc667d52860d8ff
378ce8e3f58c9e0968f92a40fc8d429c5dbb26cc
fb0ad6262365b1d99698fdd2a54ed5e697c0c3339d1df6551b9c788a99094615
GET /gampad/cookie.js?domain=amigadaedu2.blogspot.com&callback=_gfp_s_&client=ca-pub-8559278253540015&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 06 Dec 2022 02:34:49 GMT
server: cafe
cache-control: private
content-length: 249
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d9eb2870e59b2313c46529a862dd2abc
710d2370fd65b0bb34d0c633497f4494258a94e4
3c5603cc9fc783be2538c54616e719e129e59c2cd9f9769f52adf3ebc933bfce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i232.photobucket.com/albums/ee315/JeehMary/obrigado.jpg
200 OK 8.1 kB URL HTTP/2 i232.photobucket.com/albums/ee315/JeehMary/obrigado.jpg
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 895e4f29162f36719556418bcdc496fe
2672ce3a2572c2b08e7eacbad609214a3733f712
df9cdac7f810d24f930b6689597ccb7ece4be0e4735e24487280546fdde94edb
GET /albums/ee315/JeehMary/obrigado.jpg HTTP/1.1
Host: i232.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://amigadaedu2.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 8058
date: Tue, 06 Dec 2022 02:34:49 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="obrigado.webp"
expires: Wed, 06 Dec 2023 02:34:49 GMT
server: photobucket
x-amzn-trace-id: Root=1-638eaa49-094a3a463013fcd82ee1d23d
x-request-id: 7LWGycKJfGguIClzxJUcg
x-cache: Miss from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jej4EZHM71jFxJYj2nb7KSO_ORHbiE2P7TzCYrSpW-YOmT_j9Qye9g==
vary: Accept, Origin
X-Firefox-Spdy: h2
www.blogger.com/img/logo-16.png
200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 07:09:33 GMT
Expires: Tue, 06 Dec 2022 07:09:33 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 05:51:11 GMT
Content-Type: image/png
Age: 588316
users1.nofeehost.com/magiagifs/amor/Magia%20Gifs1a_arquivos/amormagiagifs105.gif
200 OK 2.6 kB URL HTTP/1.1 users1.nofeehost.com/magiagifs/amor/Magia%20Gifs1a_arquivos/amormagiagifs105.gif
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /magiagifs/amor/Magia%20Gifs1a_arquivos/amormagiagifs105.gif HTTP/1.1
Host: users1.nofeehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 02:34:49 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sun, 27 Nov 2022 01:56:48 GMT
ETag: "6382c3e0-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_ScfxlQeSm+ruooARWvad6AAtTW9YFLk89C9EZ7abyDPT/rRHxo6mHQmTrs3KEVl5jkF7jUneDkXD/eY7AN0G9g
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-Xo7DqTb7nZM/UAyw9l4C8iI/AAAAAAAAajk/x3Lvn1r7HNM/w72-h72-p-k-no-nu/Sem+t%C3%ADtulo.png
200 OK 2.3 kB URL HTTP/1.1 3.bp.blogspot.com/-Xo7DqTb7nZM/UAyw9l4C8iI/AAAAAAAAajk/x3Lvn1r7HNM/w72-h72-p-k-no-nu/Sem+t%C3%ADtulo.png
IP
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 9180dadd6d151e656505b7b39e75d1c8
a1ac96e7ecf2d56caf58775573b272c6ac0fc3a6
b26553743f45a9a23fec037a5e3c351dd717845a620661fed4b5512c0c462ab6
GET /-Xo7DqTb7nZM/UAyw9l4C8iI/AAAAAAAAajk/x3Lvn1r7HNM/w72-h72-p-k-no-nu/Sem+t%C3%ADtulo.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6a39"
Expires: Wed, 07 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Sem t_tulo.png";filename*=UTF-8''Sem%20t%C3%ADtulo.png
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:49 GMT
Server: fife
Content-Length: 2268
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 67e4709c84acec8eddbeb11d56e7d0fd
32a14eeba023499cda0d49fd785ac7626f4a5582
8953090ad9df36f81c3393cc6c67c87b6ad521b8806c7ea004e0b4354b9e1c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
users1.nofeehost.com/magiagifs/amor/Magia%20Gifs1a_arquivos/amormagiagifs82.gif
200 OK 2.6 kB URL HTTP/1.1 users1.nofeehost.com/magiagifs/amor/Magia%20Gifs1a_arquivos/amormagiagifs82.gif
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /magiagifs/amor/Magia%20Gifs1a_arquivos/amormagiagifs82.gif HTTP/1.1
Host: users1.nofeehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 02:34:49 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sun, 27 Nov 2022 01:56:47 GMT
ETag: "6382c3df-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_VQCDB7dYd0mvPsq/9CJ0LSnQOFfK0HAtgXqPLHOlpeLFEZOBmiFW/efaODBdoU32DZsTfYWRww9/TdowCNtzaA
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 917d281ca22c901597795b51fd9df338
be0e026d76f26092edfc1f67ea98ddc4a539439a
5f47f5ac32d4c80f29c4a69a830ec9427dd0055fc57973f01f73ec22503cd30c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/_gdByFNHRoWE/ScanTm4ACVI/AAAAAAAAAbY/QRgnsjlUmdc/S220-s80/2660763_Fdmff.gif
200 OK 3.4 kB URL HTTP/1.1 3.bp.blogspot.com/_gdByFNHRoWE/ScanTm4ACVI/AAAAAAAAAbY/QRgnsjlUmdc/S220-s80/2660763_Fdmff.gif
IP
File type GIF image data, version 89a, 59 x 80\012- data
Hash aa516c307e32eef0b7744d965078bbda
6e463a0003173c77eff920f9f3c2683bbc9b4256
1c7c49c21f1d1f62f951631319e944c0c0ec7d7461ba7fb98b98a45d78c036c5
GET /_gdByFNHRoWE/ScanTm4ACVI/AAAAAAAAAbY/QRgnsjlUmdc/S220-s80/2660763_Fdmff.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v7fec"
Expires: Wed, 07 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="2660763_Fdmff.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:49 GMT
Server: fife
Content-Length: 3406
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ee6bfe50f8e4b9c142f971a55496ac26
8c3fd42aaa7fa3ebdedc4f7b0271b8caae166e64
4582e8e1ada92a279cbc5d82904c7fd27b9d4b95bc06c7a8b3c13168978f0b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mob228.photobucket.com/albums/ee126/sandra1966/v18.gif
200 OK 32 kB URL HTTP/1.1 mob228.photobucket.com/albums/ee126/sandra1966/v18.gif
IP
File type GIF image data, version 89a, 342 x 55\012- data
Hash 758b52318578cb2a879645a12edf84ab
6b729de2f3186830fae765f782fe3247f5ecf6cc
9d01b1a2c3717ae75d82ec5d7d943c194bdcb845ed673dd55854d5aeda7a2b60
GET /albums/ee126/sandra1966/v18.gif HTTP/1.1
Host: mob228.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 31946
Connection: keep-alive
Date: Tue, 06 Dec 2022 02:34:49 GMT
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000, public
Content-Disposition: inline; filename="v18.gif"
Expires: Wed, 06 Dec 2023 02:34:49 GMT
Server: photobucket
X-Amzn-Trace-Id: Root=1-638eaa49-431267397cefdbfa695be9cb
X-Request-Id: _03jgmIRPuVrIY5OG_RPO
Vary: Accept
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: saeOpxK2GM7z5upUL9LWuwelK_nRCVoYS9SJ7KDhxk9xgSoEEh6Vew==
adservice.google.no/adsid/integrator.js?domain=amigadaedu2.blogspot.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=amigadaedu2.blogspot.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=amigadaedu2.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 06 Dec 2022 02:34:49 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 181b661534dc3f6bbe887293452f685b
bf4e024b51870992b7b41ee50e570bebf4705bfb
4d7472e9a604e69e65040a318534883d14275d6ef7e19c6eb42a8a25099d8eeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=amigadaedu2.blogspot.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=amigadaedu2.blogspot.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=amigadaedu2.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 06 Dec 2022 02:34:49 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/_BaCxSD9NFn8/SqfGKv4C80I/AAAAAAAAAXM/2sj8C7qc5nE/s1600/flor.gif
200 OK 157 B URL HTTP/1.1 2.bp.blogspot.com/_BaCxSD9NFn8/SqfGKv4C80I/AAAAAAAAAXM/2sj8C7qc5nE/s1600/flor.gif
IP
File type GIF image data, version 89a, 17 x 12\012- data
Hash 389c4605b7355bf49f19b19da8a93649
4bfa93bf891a00d738b182f1f68ba1fac953358f
4cab8ef288f8a20cd80213dd80c45bffd8484623bdf69411ff29ea581a9f75ae
GET /_BaCxSD9NFn8/SqfGKv4C80I/AAAAAAAAAXM/2sj8C7qc5nE/s1600/flor.gif HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vada"
Expires: Wed, 07 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="flor.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:49 GMT
Server: fife
Content-Length: 157
X-XSS-Protection: 0
2.bp.blogspot.com/-GVBJXEVF3vs/UzAUxj0VDII/AAAAAAAAiGE/BhLIScCdr0M/w72-h72-p-k-no-nu/1.jpg
200 OK 6.3 kB URL HTTP/1.1 2.bp.blogspot.com/-GVBJXEVF3vs/UzAUxj0VDII/AAAAAAAAiGE/BhLIScCdr0M/w72-h72-p-k-no-nu/1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash faa2795f3aef4bac6c2c8695e37dab5f
52963d16baef46effbed1694e3ecbb1849e1bbfb
a2fbba1935beac36c0a0dd9ca73b364408cdbc2eae0b1bc85a01c73a550eabcd
GET /-GVBJXEVF3vs/UzAUxj0VDII/AAAAAAAAiGE/BhLIScCdr0M/w72-h72-p-k-no-nu/1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v8864"
Expires: Wed, 07 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:49 GMT
Server: fife
Content-Length: 6288
X-XSS-Protection: 0
4.bp.blogspot.com/-fUIAJSH5Smk/Vq_2esOlh_I/AAAAAAAAoMk/r2aGm5R0dYE/w72-h72-p-k-no-nu/1.jpg
200 OK 1.0 kB URL HTTP/1.1 4.bp.blogspot.com/-fUIAJSH5Smk/Vq_2esOlh_I/AAAAAAAAoMk/r2aGm5R0dYE/w72-h72-p-k-no-nu/1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 0161c83db41e93adcdb191d06a4edbf1
59c3fde4fb586deedc870a7cabe80822cfc6a034
bc261645c6e7946bcb291dcb3451b7ee08fe931b1569e63b046615421da10040
GET /-fUIAJSH5Smk/Vq_2esOlh_I/AAAAAAAAoMk/r2aGm5R0dYE/w72-h72-p-k-no-nu/1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "va0cb"
Expires: Wed, 07 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:49 GMT
Server: fife
Content-Length: 1033
X-XSS-Protection: 0
1.bp.blogspot.com/_BaCxSD9NFn8/SqfGLZra0MI/AAAAAAAAAXc/SwNHuXCRltY/s1600/fundo-2.gif
200 OK 101 B URL HTTP/1.1 1.bp.blogspot.com/_BaCxSD9NFn8/SqfGLZra0MI/AAAAAAAAAXc/SwNHuXCRltY/s1600/fundo-2.gif
IP
File type GIF image data, version 89a, 20 x 20\012- data
Hash 9c6fd11852e2db190cf079bc731df06d
29b7df76837a839253ccd7f679757b1392a034ec
ac62149362b932aa919ba1d3a99b468b1203a7e72068a44c795dea5284a44e9b
GET /_BaCxSD9NFn8/SqfGLZra0MI/AAAAAAAAAXc/SwNHuXCRltY/s1600/fundo-2.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb06"
Expires: Wed, 07 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="fundo-2.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:49 GMT
Server: fife
Content-Length: 101
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 917d281ca22c901597795b51fd9df338
be0e026d76f26092edfc1f67ea98ddc4a539439a
5f47f5ac32d4c80f29c4a69a830ec9427dd0055fc57973f01f73ec22503cd30c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-Eo9_2FTItgI/TsMCGu6e8oI/AAAAAAAAXtQ/dM5kdgEdAow/w72-h72-p-k-no-nu/7.jpg
200 OK 1.8 kB URL HTTP/1.1 1.bp.blogspot.com/-Eo9_2FTItgI/TsMCGu6e8oI/AAAAAAAAXtQ/dM5kdgEdAow/w72-h72-p-k-no-nu/7.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 972a341e803927dd4b0822413e8217da
6084f4a38dc21332413d585fefb4597588e2ab9c
2f8c5131e10343b10954db09a91f65e855a6c3ee733bf96a95f28d66d857346d
GET /-Eo9_2FTItgI/TsMCGu6e8oI/AAAAAAAAXtQ/dM5kdgEdAow/w72-h72-p-k-no-nu/7.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5ed4"
Expires: Wed, 07 Dec 2022 02:34:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="7.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:49 GMT
Server: fife
Content-Length: 1800
X-XSS-Protection: 0
2.bp.blogspot.com/-H931AxCLFDs/TZpSRN9Fx-I/AAAAAAAATVU/b7c8R-2G8NQ/w72-h72-p-k-no-nu/bingo%2Bdos%2Bsons.jpg
200 OK 2.8 kB URL HTTP/1.1 2.bp.blogspot.com/-H931AxCLFDs/TZpSRN9Fx-I/AAAAAAAATVU/b7c8R-2G8NQ/w72-h72-p-k-no-nu/bingo%2Bdos%2Bsons.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 4edd23a2b065fd5221ca6f2731462b36
b2058578a05ea322aa0fde71cd5e6d9425051f2d
78ee559e1116205bfcea54ec1c94e9bb027ed774b51f218cb79e2d1795805190
GET /-H931AxCLFDs/TZpSRN9Fx-I/AAAAAAAATVU/b7c8R-2G8NQ/w72-h72-p-k-no-nu/bingo%2Bdos%2Bsons.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4d55"
Expires: Wed, 07 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="bingo dos sons.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:50 GMT
Server: fife
Content-Length: 2810
X-XSS-Protection: 0
4.bp.blogspot.com/-e3t2EjIZrcs/TwwiDEzfKrI/AAAAAAAAAQI/zhRH5pHsxcY/w72-h72-p-k-no-nu/estou+de+volta.jpg
200 OK 5.9 kB URL HTTP/1.1 4.bp.blogspot.com/-e3t2EjIZrcs/TwwiDEzfKrI/AAAAAAAAAQI/zhRH5pHsxcY/w72-h72-p-k-no-nu/estou+de+volta.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7be8ffd5208d0307429f9b09a27f3cdc
ba007ad56be8c3cd84190ad2fc93035d7faca435
ab0b2ef595906b1668e0f7b7abfd81ba77b66a1ebdacf72a04ac6a9bd84ca174
GET /-e3t2EjIZrcs/TwwiDEzfKrI/AAAAAAAAAQI/zhRH5pHsxcY/w72-h72-p-k-no-nu/estou+de+volta.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v102"
Expires: Wed, 07 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="estou de volta.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:50 GMT
Server: fife
Content-Length: 5932
X-XSS-Protection: 0
1.bp.blogspot.com/-VXt1ysFCDpU/UzOORW3IQqI/AAAAAAAAiII/kiJJIhoM2EI/s1600/BAIXE+AQUI.jpg
200 OK 25 kB URL HTTP/1.1 1.bp.blogspot.com/-VXt1ysFCDpU/UzOORW3IQqI/AAAAAAAAiII/kiJJIhoM2EI/s1600/BAIXE+AQUI.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 354x221, components 3\012- data
Hash 7523f6cabc14c3ecb641137eb78b52ad
f7652b7a977348a8a015312e18754b942ba055a2
d8fd835748a89680c591bb5ac0f1d468a9c1222e73859f86f781c524e24a3ae9
GET /-VXt1ysFCDpU/UzOORW3IQqI/AAAAAAAAiII/kiJJIhoM2EI/s1600/BAIXE+AQUI.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v8883"
Expires: Wed, 07 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="BAIXE AQUI.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:50 GMT
Server: fife
Content-Length: 24941
X-XSS-Protection: 0
4.bp.blogspot.com/--EqIyuRUx8I/Tq3uuDwxI3I/AAAAAAAAXVw/Q9IgjnT9Z3g/w72-h72-p-k-no-nu/01_1.jpg
200 OK 5.4 kB URL HTTP/1.1 4.bp.blogspot.com/--EqIyuRUx8I/Tq3uuDwxI3I/AAAAAAAAXVw/Q9IgjnT9Z3g/w72-h72-p-k-no-nu/01_1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7f786b66523d6ebb8c0bf8a83fa65e8b
29adabb15cf8ff7e6eb6b1be10eb15601da8405a
53d9f1a8fde432e36b2ea213b1a7fe4abfc57e7e82d6ae83f849d1991bcf87f3
GET /--EqIyuRUx8I/Tq3uuDwxI3I/AAAAAAAAXVw/Q9IgjnT9Z3g/w72-h72-p-k-no-nu/01_1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5d5c"
Expires: Wed, 07 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="01_1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:50 GMT
Server: fife
Content-Length: 5432
X-XSS-Protection: 0
2.bp.blogspot.com/-VXt1ysFCDpU/UzOORW3IQqI/AAAAAAAAiIM/qq9kaeKNmEc/s1600/BAIXE+AQUI.jpg
200 OK 25 kB URL HTTP/1.1 2.bp.blogspot.com/-VXt1ysFCDpU/UzOORW3IQqI/AAAAAAAAiIM/qq9kaeKNmEc/s1600/BAIXE+AQUI.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 354x221, components 3\012- data
Hash 7523f6cabc14c3ecb641137eb78b52ad
f7652b7a977348a8a015312e18754b942ba055a2
d8fd835748a89680c591bb5ac0f1d468a9c1222e73859f86f781c524e24a3ae9
GET /-VXt1ysFCDpU/UzOORW3IQqI/AAAAAAAAiIM/qq9kaeKNmEc/s1600/BAIXE+AQUI.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v8883"
Expires: Wed, 07 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="BAIXE AQUI.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:50 GMT
Server: fife
Content-Length: 24941
X-XSS-Protection: 0
amigadaedu2.blogspot.com/feeds/comments/default?alt=json-in-script&callback=numberOfComments
200 OK 6.9 kB URL HTTP/1.1 amigadaedu2.blogspot.com/feeds/comments/default?alt=json-in-script&callback=numberOfComments
IP
File type Unicode text, UTF-8 text, with very long lines (45243)
Hash cab7d3d97e5896d93e3f801264df5363
87ae2b507f94ce83cded250ed3b80424c9017b32
3a93bfd3db6cc7c698bfc516da500903772405294c85b7aa54b722bfd4d242ba
GET /feeds/comments/default?alt=json-in-script&callback=numberOfComments HTTP/1.1
Host: amigadaedu2.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/2012/01/coletanea-de-musicas-para-criancas.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Server: Blogger Render Server 1.0
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Encoding: gzip
Content-Length: 6895
X-Frame-Options: SAMEORIGIN
Date: Tue, 06 Dec 2022 02:34:50 GMT
Expires: Thu, 01 Dec 2022 23:39:46 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Thu, 24 Nov 2022 10:49:45 GMT
ETag: W/"fde9282bfe9ba01655fe7e9e8b42e82a62e7398bcbc9e94a0d447d452ed34728"
Content-Type: text/javascript; charset=UTF-8
Age: 0
2.bp.blogspot.com/_BaCxSD9NFn8/SqfF8HPwRBI/AAAAAAAAAW0/pVSC6YXl-mM/s1600/barra-header.gif
200 OK 611 B URL HTTP/1.1 2.bp.blogspot.com/_BaCxSD9NFn8/SqfF8HPwRBI/AAAAAAAAAW0/pVSC6YXl-mM/s1600/barra-header.gif
IP
File type GIF image data, version 89a, 80 x 65\012- data
Hash fcbad821a65e0744efd2b8a6eb04750d
8820c8eacf4ad15223305c156f087f01f4d9974a
57ba91ebe32116d4ef69416ed38ccfccdd5e62f202d22cbc7615dee56b419521
GET /_BaCxSD9NFn8/SqfF8HPwRBI/AAAAAAAAAW0/pVSC6YXl-mM/s1600/barra-header.gif HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vac0"
Expires: Wed, 07 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="barra-header.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:50 GMT
Server: fife
Content-Length: 611
X-XSS-Protection: 0
amigadaedu2.blogspot.com/feeds/posts/default?alt=json-in-script&callback=showpostcount
200 OK 18 kB URL HTTP/1.1 amigadaedu2.blogspot.com/feeds/posts/default?alt=json-in-script&callback=showpostcount
IP
File type Unicode text, UTF-8 text, with very long lines (65141)
Hash 049684c3c6e6ca77c6795f6a6d8d058f
92365624bc011bd2dce835ede836fa4f50c4bf51
03fc8255ca0ac290c597aaf55d5021780051a9d1709630f307130c7b1e6b696f
GET /feeds/posts/default?alt=json-in-script&callback=showpostcount HTTP/1.1
Host: amigadaedu2.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/2012/01/coletanea-de-musicas-para-criancas.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Server: Blogger Render Server 1.0
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Encoding: gzip
Content-Length: 17616
X-Frame-Options: SAMEORIGIN
Date: Tue, 06 Dec 2022 02:34:50 GMT
Expires: Thu, 01 Dec 2022 23:39:46 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Thu, 24 Nov 2022 10:49:45 GMT
ETag: W/"35dd47e8a732f5f25b74a538da46ef1bfa2f738446e126ebcdf4bc1602a5bff7"
Content-Type: text/javascript; charset=UTF-8
Age: 0
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8559278253540015&output=html&h=600&slotname=7644963763&adk=1563830296&adf=1154258134&pi=t.ma~as.7644963763&w=160&lmt=1669286985&url=http%3A%2F%2Famigadaedu2.blogspot.com%2F2012%2F01%2Fcoletanea-de-musicas-para-criancas.html&host=pub-1556223355139109&h_ch=00000%2B00154%2B00074%2B00299&wgl=1&dt=1670294086670&bpp=44&bdt=225&idt=203&shv=r20221129&mjsv=m202211290101&ptt=5&saldr=sa&abxe=1&correlator=8470835533766&frm=20&pv=2&ga_vid=625059337.1670294087&ga_sid=1670294087&ga_hid=1472884342&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=201&ady=441&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C42531706%2C44778780%2C31071077&oid=2&pvsid=205953179687204&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=DLzM8wIFKW&p=http%3A//amigadaedu2.blogspot.com&dtd=453
200 OK 9.5 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8559278253540015&output=html&h=600&slotname=7644963763&adk=1563830296&adf=1154258134&pi=t.ma~as.7644963763&w=160&lmt=1669286985&url=http%3A%2F%2Famigadaedu2.blogspot.com%2F2012%2F01%2Fcoletanea-de-musicas-para-criancas.html&host=pub-1556223355139109&h_ch=00000%2B00154%2B00074%2B00299&wgl=1&dt=1670294086670&bpp=44&bdt=225&idt=203&shv=r20221129&mjsv=m202211290101&ptt=5&saldr=sa&abxe=1&correlator=8470835533766&frm=20&pv=2&ga_vid=625059337.1670294087&ga_sid=1670294087&ga_hid=1472884342&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=201&ady=441&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C42531706%2C44778780%2C31071077&oid=2&pvsid=205953179687204&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=DLzM8wIFKW&p=http%3A//amigadaedu2.blogspot.com&dtd=453
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21544), with no line terminators
Hash c13143dbfe9e507fe2fbfd151b6e03fc
1dc0dd4f4d40c20b317186bfe00232a895e12203
134a119436999e54d5c3afc2639b26fb603ce4cf94506e8ef4da662bb8c27c73
GET /pagead/ads?client=ca-pub-8559278253540015&output=html&h=600&slotname=7644963763&adk=1563830296&adf=1154258134&pi=t.ma~as.7644963763&w=160&lmt=1669286985&url=http%3A%2F%2Famigadaedu2.blogspot.com%2F2012%2F01%2Fcoletanea-de-musicas-para-criancas.html&host=pub-1556223355139109&h_ch=00000%2B00154%2B00074%2B00299&wgl=1&dt=1670294086670&bpp=44&bdt=225&idt=203&shv=r20221129&mjsv=m202211290101&ptt=5&saldr=sa&abxe=1&correlator=8470835533766&frm=20&pv=2&ga_vid=625059337.1670294087&ga_sid=1670294087&ga_hid=1472884342&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=201&ady=441&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C42531706%2C44778780%2C31071077&oid=2&pvsid=205953179687204&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=DLzM8wIFKW&p=http%3A//amigadaedu2.blogspot.com&dtd=453 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Tue, 06 Dec 2022 02:34:50 GMT
server: cafe
content-length: 9519
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 06-Dec-2022 02:49:49 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 06 Dec 2022 02:34:50 GMT
cache-control: private
X-Firefox-Spdy: h2
4.bp.blogspot.com/_BaCxSD9NFn8/SqfGU28LT1I/AAAAAAAAAXk/OCn-SB20GeU/s1600/fundo-3.gif
200 OK 171 B URL HTTP/1.1 4.bp.blogspot.com/_BaCxSD9NFn8/SqfGU28LT1I/AAAAAAAAAXk/OCn-SB20GeU/s1600/fundo-3.gif
IP
File type GIF image data, version 89a, 24 x 24\012- data
Hash 7452aeb90ebacf803b4ff660a2677e4a
9316ffe2a2133dc637b4eb3243156b5b5487f9d5
3c4ddc4d58cdf4a2f694ca5c986f120afecaaa889258c187c73f007cd5bd24f7
GET /_BaCxSD9NFn8/SqfGU28LT1I/AAAAAAAAAXk/OCn-SB20GeU/s1600/fundo-3.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb36"
Expires: Wed, 07 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="fundo-3.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:50 GMT
Server: fife
Content-Length: 171
X-XSS-Protection: 0
www.blogger.com/dyn-css/authorization.css?targetBlogID=8057990394224048710&zx=ebe3db3a-209c-4de1-82b7-46bab2a00f72
200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=8057990394224048710&zx=ebe3db3a-209c-4de1-82b7-46bab2a00f72
IP
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=8057990394224048710&zx=ebe3db3a-209c-4de1-82b7-46bab2a00f72 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 06 Dec 2022 02:34:50 GMT
last-modified: Tue, 06 Dec 2022 02:34:50 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
acessoriosparablogs.com.br/scripts/postagem.js
200 OK 59 B URL HTTP/1.1 acessoriosparablogs.com.br/scripts/postagem.js
IP
Hash 839736f5d5855469a58b6fc556cd250c
137297c4dab78e4c5c4a15d11737be0c1fcb9f61
d0524453b0a6fa6e5f2d2065e3584f4f30c49baf393944cba71992f022c3f4b5
GET /scripts/postagem.js HTTP/1.1
Host: acessoriosparablogs.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Set-Cookie: sv=1; Domain=acessoriosparablogs.com.br; Expires=Wed, 06 Dec 2023 02:34:50 GMT; Max-Age=300
Date: Tue, 06 Dec 2022 02:34:50 GMT
Content-Length: 59
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5809
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Tue, 06 Dec 2022 02:34:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5809
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Tue, 06 Dec 2022 02:34:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5809
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Tue, 06 Dec 2022 02:34:50 GMT
Connection: keep-alive
3.bp.blogspot.com/_BaCxSD9NFn8/SqfGLHpB-mI/AAAAAAAAAXU/j82MsSlFlYs/s1600/fundo-1.gif
200 OK 166 B URL HTTP/1.1 3.bp.blogspot.com/_BaCxSD9NFn8/SqfGLHpB-mI/AAAAAAAAAXU/j82MsSlFlYs/s1600/fundo-1.gif
IP
File type GIF image data, version 89a, 44 x 44\012- data
Hash 32ba45bcaa06a14986039171735b25c9
fdb126c77f74855c97219774dca0697e18f7f455
9534786c818034e12e931595258ed3133dfaae6027a998cb120bd7e38452b4ac
GET /_BaCxSD9NFn8/SqfGLHpB-mI/AAAAAAAAAXU/j82MsSlFlYs/s1600/fundo-1.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vaa1"
Expires: Wed, 07 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="fundo-1.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 02:34:50 GMT
Server: fife
Content-Length: 166
X-XSS-Protection: 0
googleads.g.doubleclick.net/pagead/adview?ai=CzbQESaqOY-iGPIna6wTco4K4Asme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODU1OTI3ODI1MzU0MDAxNcgBCakC2KsZBD6XsT6oAwGqBIYCT9Dey7z9JOO6oAUigeTy9mSsVtHRXor2d1I18eoTB1BI7kd_4Pjltbrbvbl5B2UXew-HiK11vT2fVxJcSK0-YRHy6F_3QEsNOsM368OT2uH3wEO5vo127CBPqBrHZpFNqI-b6CQKi8ua-3U-Rfd21NKw-FHrtdUN01ZC7mgXKfpiRdC7nOiMadOu08ydhlXphO3yu0tUaZ8ng22ki8xjWgekZzX6onZIh_OCTDUiqfSxl8IT4xQSqgjG8Wy8-YB9pW0Bj0VCofc2MAgyrpXrc566_tCB3EKSLbSeUhA4BtuSvPnTKTTzvHw4eLTZ9kVMCVm-KhshhHlDTPg6m5N0vUvP65hNroAGsf7Apfjn1pJroAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQIAKAfoLAggBgAwB0BUBgBcBshcaChgSFHB1Yi04NTU5Mjc4MjUzNTQwMDE1GAA&sigh=VBtIF67BZE0&uach_m=[UACH]&cid=CAQSGwDq26N9SAoSNovCZfYOqXbPqmehNfapwTsPMhgBIBM
200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/adview?ai=CzbQESaqOY-iGPIna6wTco4K4Asme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODU1OTI3ODI1MzU0MDAxNcgBCakC2KsZBD6XsT6oAwGqBIYCT9Dey7z9JOO6oAUigeTy9mSsVtHRXor2d1I18eoTB1BI7kd_4Pjltbrbvbl5B2UXew-HiK11vT2fVxJcSK0-YRHy6F_3QEsNOsM368OT2uH3wEO5vo127CBPqBrHZpFNqI-b6CQKi8ua-3U-Rfd21NKw-FHrtdUN01ZC7mgXKfpiRdC7nOiMadOu08ydhlXphO3yu0tUaZ8ng22ki8xjWgekZzX6onZIh_OCTDUiqfSxl8IT4xQSqgjG8Wy8-YB9pW0Bj0VCofc2MAgyrpXrc566_tCB3EKSLbSeUhA4BtuSvPnTKTTzvHw4eLTZ9kVMCVm-KhshhHlDTPg6m5N0vUvP65hNroAGsf7Apfjn1pJroAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQIAKAfoLAggBgAwB0BUBgBcBshcaChgSFHB1Yi04NTU5Mjc4MjUzNTQwMDE1GAA&sigh=VBtIF67BZE0&uach_m=[UACH]&cid=CAQSGwDq26N9SAoSNovCZfYOqXbPqmehNfapwTsPMhgBIBM
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/adview?ai=CzbQESaqOY-iGPIna6wTco4K4Asme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODU1OTI3ODI1MzU0MDAxNcgBCakC2KsZBD6XsT6oAwGqBIYCT9Dey7z9JOO6oAUigeTy9mSsVtHRXor2d1I18eoTB1BI7kd_4Pjltbrbvbl5B2UXew-HiK11vT2fVxJcSK0-YRHy6F_3QEsNOsM368OT2uH3wEO5vo127CBPqBrHZpFNqI-b6CQKi8ua-3U-Rfd21NKw-FHrtdUN01ZC7mgXKfpiRdC7nOiMadOu08ydhlXphO3yu0tUaZ8ng22ki8xjWgekZzX6onZIh_OCTDUiqfSxl8IT4xQSqgjG8Wy8-YB9pW0Bj0VCofc2MAgyrpXrc566_tCB3EKSLbSeUhA4BtuSvPnTKTTzvHw4eLTZ9kVMCVm-KhshhHlDTPg6m5N0vUvP65hNroAGsf7Apfjn1pJroAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQIAKAfoLAggBgAwB0BUBgBcBshcaChgSFHB1Yi04NTU5Mjc4MjUzNTQwMDE1GAA&sigh=VBtIF67BZE0&uach_m=[UACH]&cid=CAQSGwDq26N9SAoSNovCZfYOqXbPqmehNfapwTsPMhgBIBM HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8559278253540015&output=html&h=600&slotname=7644963763&adk=1563830296&adf=1154258134&pi=t.ma~as.7644963763&w=160&lmt=1669286985&url=http%3A%2F%2Famigadaedu2.blogspot.com%2F2012%2F01%2Fcoletanea-de-musicas-para-criancas.html&host=pub-1556223355139109&h_ch=00000%2B00154%2B00074%2B00299&wgl=1&dt=1670294086670&bpp=44&bdt=225&idt=203&shv=r20221129&mjsv=m202211290101&ptt=5&saldr=sa&abxe=1&correlator=8470835533766&frm=20&pv=2&ga_vid=625059337.1670294087&ga_sid=1670294087&ga_hid=1472884342&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=201&ady=441&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C42531706%2C44778780%2C31071077&oid=2&pvsid=205953179687204&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=DLzM8wIFKW&p=http%3A//amigadaedu2.blogspot.com&dtd=453
Cookie: test_cookie=CheckForPermission
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'none'; object-src 'none'
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 02:34:50 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: IDE=AHWqTUkduXP-aUIkthImOgNSD341ZpF5l9b_BbwpfAcHUKpuu7FsWVw0FwUVrqFTgAk; expires=Thu, 05-Dec-2024 02:34:50 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
test_cookie=; expires=Fri, 01-Aug-2008 22:45:55 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 06 Dec 2022 02:34:50 GMT
cache-control: private
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5809
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Tue, 06 Dec 2022 02:34:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:09:28 GMT
age: 15922
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8055d0db573ab34924db3b60ed788bb2
a4aae05e7a929fc7f652f56748d2a2da9c44ac45
f6a9555f112882d4ac284c6dc26ae0f02f6ccf8ee312615e01ebec8242bade1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 3d4d7dd0-2be0-46c1-a9c0-aa3cce2e8c81
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvUHhJIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c8-63a6960043564aa762caaabe;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cE8n21yLSOS1FFSW_80l4MKNtJ9uJj7SXJS1Xza-lTYruvI2Wvkwlw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:11 GMT
age: 17199
etag: "a4aae05e7a929fc7f652f56748d2a2da9c44ac45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TKSlCefkyQ7VDufJJOh1D7zhioft93jfOsoXxTD4ncAK5ktxlPvIoA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:52:07 GMT
age: 16963
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EQorA5VTb0s2BEIWBkdkhDho-bLdLVvu8LnAIQsQqsIjgBLneYqCzg==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:22 GMT
age: 17188
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5e953213b7b13b8ee202406147fac52
67a09d8cd23ed444667b225f7fbf4bb17b9f42dd
cf6b2502f0a992148f9401c16a329cae5a6c21fb81f03131f3e69c58bc608110
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15732
x-amzn-requestid: 7467ddb0-b9f9-47e9-ac31-c7599fe45698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVIIESBIAMFU6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e689a-79e3f8b66e1cf72f3283ac5b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3seQ7H4qrlKKpuIWUobiey92ZMkB4jWqd5v6T6379g0V0y6XdVFvWQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:09:28 GMT
age: 15922
etag: "67a09d8cd23ed444667b225f7fbf4bb17b9f42dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49c08cd33e41826af9dd4a8a912e0ddf
bde85bd98858e4b13484a9cc3263b4db7fb5d348
43471e7b4da8e4e58b842d05cb073ef150ff119eaa6890c86162f03a140459cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5273
x-amzn-requestid: 5ab71aaf-6757-46dc-86fc-0a866958d22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSz2EqfIAMFqng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e5-15ae9d330e005f547161b4df;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YFtwPRjtJcX51t_xVdpS2-J222bVL8KEildkseLJ_pVbCFkljZ-Q0A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:49 GMT
age: 17221
etag: "bde85bd98858e4b13484a9cc3263b4db7fb5d348"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ww82.acessoriosparablogs.com.br/
200 OK 1.1 kB URL HTTP/1.1 ww82.acessoriosparablogs.com.br/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1544), with no line terminators
Hash 542656117b05939ab8269b4e688303c1
66eab6d2ed1ff63af1c845c02409dc53106314fc
1a4b24a9ff3acc71159a0c5d1f72750d0a4856259b11024c59e3c1a74292cb27
GET / HTTP/1.1
Host: ww82.acessoriosparablogs.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 02:34:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882; expires=Tue, 06-Dec-2022 02:49:50 GMT; Max-Age=900; path=/; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_tCbnsqLY/UVypx5WofFWvpm/IkPY5Kmo9sDbuyjepSwgL/3KP64Tid63G+TZt4X/adQAn1cufOItJ1i3VDbMWA==
Accept-CH: sec-ch-prefers-color-scheme
Critical-CH: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww82.acessoriosparablogs.com.br/js/parking.2.100.2.js
200 OK 22 kB URL HTTP/1.1 ww82.acessoriosparablogs.com.br/js/parking.2.100.2.js
IP
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 239c79e8ead12ade233b4b98f3a1d68d
ebb33fbc73ffa07c517270874bef61576c7aecf6
148cf1738ec4c4800fa6e1fa02ea75d6cc76c5d0096b11dc1af4b47ffbcf2d0b
GET /js/parking.2.100.2.js HTTP/1.1
Host: ww82.acessoriosparablogs.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww82.acessoriosparablogs.com.br/
Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 02:34:50 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 14 Nov 2022 17:45:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww82.acessoriosparablogs.com.br/_fd
200 OK 489 B URL HTTP/1.1 ww82.acessoriosparablogs.com.br/_fd
IP
File type ASCII text, with very long lines (693), with no line terminators
Hash a72eb8a8d09f786fea7a098c53ef2eef
18cdbf2365171e820ecc6f1db6e3438f8449f785
8a066f613181be7cee1e559b8abbfa3d9588199d6989ff87fbc94b18be8bd9c3
Analyzer Verdict Alert fortinet Malware
POST /_fd HTTP/1.1
Host: ww82.acessoriosparablogs.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww82.acessoriosparablogs.com.br/
Content-Type: application/json
Origin: http://ww82.acessoriosparablogs.com.br
Connection: keep-alive
Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882
Content-Length: 0
HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 06 Dec 2022 02:34:50 GMT
X-Version: 2.100.2
Set-Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882; expires=Tue, 06-Dec-2022 02:49:50 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
ww82.acessoriosparablogs.com.br/px.gif?ch=1&rn=9.28406383530271
200 OK 42 B URL HTTP/1.1 ww82.acessoriosparablogs.com.br/px.gif?ch=1&rn=9.28406383530271
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=1&rn=9.28406383530271 HTTP/1.1
Host: ww82.acessoriosparablogs.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww82.acessoriosparablogs.com.br/
Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 02:34:50 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ww82.acessoriosparablogs.com.br/px.gif?ch=2&rn=9.28406383530271
200 OK 42 B URL HTTP/1.1 ww82.acessoriosparablogs.com.br/px.gif?ch=2&rn=9.28406383530271
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /px.gif?ch=2&rn=9.28406383530271 HTTP/1.1
Host: ww82.acessoriosparablogs.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww82.acessoriosparablogs.com.br/
Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 02:34:50 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2e388f1ab4ec88104f57cf23944ee684
39178c45ed645709cc388d5790b1b58a3272a62f
e33b88f6f77d90b65a8fed943a45623e51f1efbdae401a1652f24be68408dba0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:34:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ww82.acessoriosparablogs.com.br/favicon.ico
200 OK 0 B URL HTTP/1.1 ww82.acessoriosparablogs.com.br/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ww82.acessoriosparablogs.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww82.acessoriosparablogs.com.br/
Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 02:34:50 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Wed, 15 Sep 2021 19:38:30 GMT
Connection: keep-alive
ETag: "61424bb6-0"
x-backend-server: ip-10-201-16-225.ec2.internal
Accept-Ranges: bytes
ww82.acessoriosparablogs.com.br/_zc
200 OK 168 B URL HTTP/1.1 ww82.acessoriosparablogs.com.br/_zc
IP
File type ASCII text, with no line terminators
Hash 65863df4e252e85268db6eaee5e91d2d
0c33fbf944dedb8ba894155880c4c8dfb8991020
b25a7c5336202090e31142ae67b97c91538ef2822f375b75c0e134dc05cfde3f
Analyzer Verdict Alert fortinet Malware
POST /_zc HTTP/1.1
Host: ww82.acessoriosparablogs.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww82.acessoriosparablogs.com.br/
Content-Type: application/json
Origin: http://ww82.acessoriosparablogs.com.br
Content-Length: 2257
Connection: keep-alive
Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882
HTTP/1.1 200 OK
Server: openresty
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 06 Dec 2022 02:34:51 GMT
X-Version: 2.100.2
Set-Cookie: parking_session=2e959b42-3bec-c13b-fc19-2759566a0882; expires=Tue, 06-Dec-2022 02:49:51 GMT; Max-Age=900; path=/; httponly
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
iyfbodn.com/?dn=acessoriosparablogs.com.br&pid=9POT3387I&pbsubid=2e959b42-3bec-c13b-fc19-2759566a0882&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dacessoriosparablogs.com.br%26skipskenzo%3Dtrue
200 OK 7.2 kB URL HTTP/1.1 iyfbodn.com/?dn=acessoriosparablogs.com.br&pid=9POT3387I&pbsubid=2e959b42-3bec-c13b-fc19-2759566a0882&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dacessoriosparablogs.com.br%26skipskenzo%3Dtrue
IP
ASN #40034 CONFLUENCE-NETWORK-INC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2408), with CRLF, LF line terminators
Hash 21c22395c806ca122bc4baa89825eec3
2a4b081e44c3bd0b1eda66cd50278503d15577b0
0ee58d19d7268b4a247377fa0c9418a921ea3e1794e23d2cbd164ba7130b9729
GET /?dn=acessoriosparablogs.com.br&pid=9POT3387I&pbsubid=2e959b42-3bec-c13b-fc19-2759566a0882&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dacessoriosparablogs.com.br%26skipskenzo%3Dtrue HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww82.acessoriosparablogs.com.br/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 02:34:51 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_V9vPcosLkvaunf9KtqtDBYynCkx0NT7XfY7bIBMmBk4+ds9LkxtLgMbP3JVz5s0jxXcN47yslH0A7GbX5fn1Ow==
Keep-Alive: timeout=5, max=128
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
iyfbodn.com/px.js?ch=1
200 OK 346 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=1 HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://iyfbodn.com/?dn=acessoriosparablogs.com.br&pid=9POT3387I&pbsubid=2e959b42-3bec-c13b-fc19-2759566a0882&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dacessoriosparablogs.com.br%26skipskenzo%3Dtrue
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 02:34:52 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=124
Connection: Keep-Alive
Content-Type: application/javascript
iyfbodn.com/px.js?ch=2
200 OK 346 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=2 HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://iyfbodn.com/?dn=acessoriosparablogs.com.br&pid=9POT3387I&pbsubid=2e959b42-3bec-c13b-fc19-2759566a0882&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dacessoriosparablogs.com.br%26skipskenzo%3Dtrue
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 02:34:52 GMT
Server: Apache
Referrer-Policy: no-referrer-when-downgrade
Accept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-platform-version=("https://dts.gnpge.com"), ch-ua-model=("https://dts.gnpge.com")
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=127
Connection: Keep-Alive
Content-Type: application/javascript
i1.cdn-image.com/__media__/js/min.js?v2.3
200 OK 3.1 kB URL HTTP/1.1 i1.cdn-image.com/__media__/js/min.js?v2.3
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (8349), with CRLF line terminators
Hash 683b827c961eb1a55ae52a5c42524a13
a1c0b96af389b99124cb42f1730d2dcb0f3dc3f4
58e12a35c892e412e904c69e12d13915c07afb320633925f41a493ebfc2ee053
GET /__media__/js/min.js?v2.3 HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://iyfbodn.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Wed, 22 Sep 2021 05:15:58 GMT
ETag: "614abc0e-20f3"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=71798
Expires: Tue, 06 Dec 2022 22:31:31 GMT
Date: Tue, 06 Dec 2022 02:34:53 GMT
Content-Length: 3050
Connection: keep-alive
www.google.com/adsense/domains/caf.js
200 OK 72 kB URL HTTP/2 www.google.com/adsense/domains/caf.js
IP
Hash a3a33a2b27f33248eb4e907aca09ad6b
0292252667a51621a19d1e3fe52bd4d5e72e75ec
ed06a0b518caef0457593bc1b9fcce29f6c3923ad1f1c83afb7d568eceb5d9d8
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ww82.acessoriosparablogs.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 06 Dec 2022 02:34:50 GMT
expires: Tue, 06 Dec 2022 02:34:50 GMT
cache-control: private, max-age=3600
etag: "3609449013642164181"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i1.cdn-image.com/__media__/pics/28905/arrrow.png
200 OK 283 B URL HTTP/1.1 i1.cdn-image.com/__media__/pics/28905/arrrow.png
IP
ASN #20940 Akamai International B.V.
File type PNG image data, 17 x 27, 8-bit colormap, non-interlaced\012- data
Hash 80d42c82a6c37da90210fd60a2f36128
554ba7c84d2a27ecf3b1f29d03e62101936b54d8
a1626e2d9160a0890a0a8d6e3af9e7095d68a24f9fb5ac8a166000c9a2581e10
GET /__media__/pics/28905/arrrow.png HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://iyfbodn.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 283
Last-Modified: Tue, 04 Jan 2022 14:44:27 GMT
ETag: "61d45d4b-11b"
Accept-Ranges: bytes
Cache-Control: public, max-age=9790
Expires: Tue, 06 Dec 2022 05:18:03 GMT
Date: Tue, 06 Dec 2022 02:34:53 GMT
Connection: keep-alive
i1.cdn-image.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
200 OK 17 kB URL HTTP/1.1 i1.cdn-image.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format, TrueType, length 17264, version 2.1\012- data
Hash a43b107861b42ce1335e41e43d4e4d00
99bdb1cec4a68ebe29249c46fefefb6880d009e5
a6542dc92d71eb412bac89d8fb06c70f15be74a64b1b4ef1633288b78f4f2ff2
GET /__media__/fonts/montserrat-regular/montserrat-regular.woff HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://iyfbodn.com
Connection: keep-alive
Referer: http://iyfbodn.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/font-woff
Content-Length: 17264
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
ETag: "600809b7-4370"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Tue, 06 Dec 2022 02:34:53 GMT
Connection: keep-alive
i1.cdn-image.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
200 OK 17 kB URL HTTP/1.1 i1.cdn-image.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format, TrueType, length 17312, version 2.1\012- data
Hash bebe201d813feaad85a3e66607d0da3a
28b049502afa8e9db5340c1a92400591b39870e8
58bb75322beb862803b0d156e1a1d01fb1e7fde82ee93c929b08bf5aea9fc55b
GET /__media__/fonts/montserrat-bold/montserrat-bold.woff HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://iyfbodn.com
Connection: keep-alive
Referer: http://iyfbodn.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/font-woff
Content-Length: 17312
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
ETag: "600809b7-43a0"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Tue, 06 Dec 2022 02:34:53 GMT
Connection: keep-alive
iyfbodn.com/favicon.ico
404 Not Found 30 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
File type ASCII text, with no line terminators
Hash c4609c83d6054d974c265b208bdc2a21
7e963e7185900347babd1f2797312c0ca21fa4ae
6cd85e3008758f2e06eeff9efdf9b4ad2981f6654f87918d155b0aced68d959a
GET /favicon.ico HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://iyfbodn.com/?dn=acessoriosparablogs.com.br&pid=9POT3387I&pbsubid=2e959b42-3bec-c13b-fc19-2759566a0882&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dacessoriosparablogs.com.br%26skipskenzo%3Dtrue
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 02:34:53 GMT
Server: Apache
Referrer-Policy: no-referrer-when-downgrade
Accept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-platform-version=("https://dts.gnpge.com"), ch-ua-model=("https://dts.gnpge.com")
ntCoent-Length: 10
Keep-Alive: timeout=5, max=128
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
Cache-Control: private
Content-Encoding: gzip
Content-Length: 30
www.truquesedicas.com/imagens/galeria/gifs_animados/notas_008.gif
404 Not Found 0 B URL HTTP/1.0 www.truquesedicas.com/imagens/galeria/gifs_animados/notas_008.gif
IP
GET /imagens/galeria/gifs_animados/notas_008.gif HTTP/1.1
Host: www.truquesedicas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amigadaedu2.blogspot.com/
HTTP/1.0 404 Not Found
cache-control: no-cache
content-type: text/html
x-reason: MediaRequest
172.217.21.161
95.101.11.113
46.105.201.240
208.91.196.46
93.184.220.29
46.8.8.100