rmvb-mediafire.blogspot.com.br/search/label/Lan%C3%A7amentos
142.250.74.161302 Moved Temporarily 204 B URL HTTP/1.1 rmvb-mediafire.blogspot.com.br/search/label/Lan%C3%A7amentos
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 5dbe08f26f5c650a48ccd7f48dfd4608
5444e6916a9637eac144c9772daa823025fcd560
aadac5cbf72e845bd5abcd0d87cc1a82e1f07e4e7cd7c3f477a6da3009113998
GET /search/label/Lan%C3%A7amentos HTTP/1.1
Host: rmvb-mediafire.blogspot.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://rmvb-mediafire.blogspot.com/search/label/Lan%C3%A7amentos
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 09 Dec 2022 23:59:26 GMT
Expires: Fri, 09 Dec 2022 23:59:26 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 204
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5842
Expires: Sat, 10 Dec 2022 01:36:48 GMT
Date: Fri, 09 Dec 2022 23:59:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7059
Expires: Sat, 10 Dec 2022 01:57:05 GMT
Date: Fri, 09 Dec 2022 23:59:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 23:08:21 GMT
content-type: application/json
age: 3065
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10288
Expires: Sat, 10 Dec 2022 02:50:54 GMT
Date: Fri, 09 Dec 2022 23:59:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YIJ/WfsIV2QjQfSm6WFHKrJe5QXgGPhFgMOY8CM829JXRV+4YpWMaX4reUigFV3wBx7Tu5/FNik=
x-amz-request-id: YWY9M5MFP2C3PXBT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 23:48:34 GMT
age: 652
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 23:59:26 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lobster
142.250.74.74200 OK 475 B URL HTTP/1.1 fonts.googleapis.com/css?family=Lobster
IP 142.250.74.74:0
Hash 11b42bb2b41a38de996516693aae0a82
43f4ef56713050f19588ec2f21e9548ad458ab54
523314ef4bde5c970a60ca92fabea3f0b038e5f3efbec6e0e536d99ea101ae0f
GET /css?family=Lobster HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Dec 2022 23:59:27 GMT
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Shadows+Into+Light
142.250.74.74200 OK 293 B URL HTTP/1.1 fonts.googleapis.com/css?family=Shadows+Into+Light
IP 142.250.74.74:0
Hash c0a373af9d19a4513a84e932ae335bbc
d9b073f8896d6dbd42e7c63a990ee3ec4d3bd1a5
1e9e766c84d5eacfdccc15d52ab367c2c1b143d16dee041c5715c15e25ea912b
GET /css?family=Shadows+Into+Light HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Dec 2022 23:59:27 GMT
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Raleway:100
142.250.74.74200 OK 493 B URL HTTP/1.1 fonts.googleapis.com/css?family=Raleway:100
IP 142.250.74.74:0
Hash 66cd89b3a816026bec97d432135c9707
58f140e40bce93063decc23c7d67d24ff55a75c7
bcf76f390e80767af8ff2f3bb046cefa3eb087d359c8ea65005ffa2656e56765
GET /css?family=Raleway:100 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Dec 2022 23:59:27 GMT
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Play
142.250.74.74200 OK 491 B URL HTTP/1.1 fonts.googleapis.com/css?family=Play
IP 142.250.74.74:0
Hash 3c43f0e35ba0dd7c285c9a944c6806b8
ca3623e20c4f87d417d33cccd7205690667a53b1
816126c63accc6307e641c06e3f24ba4a0df257324bc6e56ac565a88f9e717d7
GET /css?family=Play HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Dec 2022 23:59:27 GMT
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Droid+Serif:bold
142.250.74.74200 OK 279 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Serif:bold
IP 142.250.74.74:0
Hash 043942583e9f4b9c059124714a741b43
0caae8318397cfd07dce018498f0a52923094dfa
d8f0bd3ef278b2282a8f7f3bd5138eb6a201e3f0b7b3138ab9797edcab7e1883
GET /css?family=Droid+Serif:bold HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Dec 2022 23:59:27 GMT
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Droid+Sans:bold
142.250.74.74200 OK 278 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Sans:bold
IP 142.250.74.74:0
Hash 5d566a8e9e9aba2a075c6eb8caafc3e7
87b7cab3979cc2710132458e96f038c14c7aef2b
68940e03b372fea71a28540959d3daf418d98bbcebf342ac51b789d7abf5a7e6
GET /css?family=Droid+Sans:bold HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Dec 2022 23:59:27 GMT
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
widgets.amung.us/tab.js
104.22.75.171200 OK 19 kB IP 104.22.75.171:0
File type ASCII text, with very long lines (29322), with no line terminators
Hash c9ed731944024702b435ba1cc59ef389
80ed46e16bd892d709d35f5ba8dfef01e4d6e320
34b786e8399cc681809345c8e92d95927bc67234f4e592adc1ef2a5d8e4ed449
GET /tab.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 23:59:27 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 01 Dec 2022 21:21:07 GMT
etag: W/"63891ac3-728a"
expires: Sat, 10 Dec 2022 23:35:05 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 1462
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7771b1d20ad51699-ARN
rmvb-mediafire.blogspot.com/search/label/Lan%C3%A7amentos
142.250.74.161200 OK 33 kB URL HTTP/1.1 rmvb-mediafire.blogspot.com/search/label/Lan%C3%A7amentos
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1252)
Hash db39105ed8eed2814a9a11869afe0968
56c058610a12fc0693d31aaec4bbfbb83d0f0ad3
a652b48a1c4bb12a4afac89df7e05ebb03c1b13f3b7ac826a0cecffa8f489332
GET /search/label/Lan%C3%A7amentos HTTP/1.1
Host: rmvb-mediafire.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 09 Dec 2022 23:59:26 GMT
Date: Fri, 09 Dec 2022 23:59:26 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 08 Nov 2022 06:12:08 GMT
ETag: W/"f52866366678a52c7ba590dde34a0a7b2e0d51b34f2b7a592c43c8a93883a6e8"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 32637
Server: GSE
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 6c076be28fb3f21069b94f764b8098e1
0fd150ec27b65389ec1c482bdc2f52be1e24829a
858b98ebc77a7ce3083a3c31b2256383bf80e6344d0d3001950e0262eacfca6d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 480618e4b5701f6e3fcefae4bf344df5
63a9226f1d2af6a8b41771586e4aa18bd864241e
94bcc09084c2414fbd78f331bf0b4fbc10c2764057a153cdad8bbe9f9c3911b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:01:43 GMT
expires: Wed, 06 Dec 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 19:52:21 GMT
content-type: text/css
age: 295064
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rmvb-mediafire.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 rmvb-mediafire.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: rmvb-mediafire.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/search/label/Lan%C3%A7amentos
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Fri, 09 Dec 2022 23:59:27 GMT
Expires: Fri, 16 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 09 Dec 2022 19:52:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
apis.google.com/js/platform.js
216.58.207.238200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 09 Dec 2022 23:59:27 GMT
expires: Fri, 09 Dec 2022 23:59:27 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/img/blank.gif
216.58.207.233200 OK 43 B URL HTTP/1.1 www.blogger.com/img/blank.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 17:05:42 GMT
Expires: Tue, 13 Dec 2022 17:05:42 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 05 Dec 2022 19:52:21 GMT
Content-Type: image/gif
Age: 284025
img2.blogblog.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/1.1 img2.blogblog.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: img2.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 13:33:38 GMT
Expires: Fri, 16 Dec 2022 13:33:38 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 08 Dec 2022 21:55:30 GMT
Content-Type: image/gif
Age: 37549
www.blogger.com/static/v1/widgets/2092647672-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2092647672-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 689971018982703ab88ce528368b9190
be9697d57e5c19d36c52aacd8b04a6a159a2f3bd
cf8b513cfd596cffc3a7e456eccc198b8e409f5aaf624d5dbeecdd748dce0cef
GET /static/v1/widgets/2092647672-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56341
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 02:10:45 GMT
expires: Fri, 08 Dec 2023 02:10:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Dec 2022 00:55:10 GMT
content-type: text/javascript
age: 164922
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-X-U5feTHMlo/Tf8oTQnxOxI/AAAAAAAAAJM/kiDCki4Noak/s1600/facebook.png
216.58.207.225200 OK 1.2 kB URL HTTP/1.1 4.bp.blogspot.com/-X-U5feTHMlo/Tf8oTQnxOxI/AAAAAAAAAJM/kiDCki4Noak/s1600/facebook.png
IP 216.58.207.225:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash df6f71bbde40ec7ba578ffe6b2700b3a
f1784c3cf61dff868bfe28b5b9b6c94b0ce74a20
f061b00e6cb2661c79bdebb1cf33b8c4c063a32d3ecd358bc6e19c36502760ab
GET /-X-U5feTHMlo/Tf8oTQnxOxI/AAAAAAAAAJM/kiDCki4Noak/s1600/facebook.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="facebook.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1153
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 23:34:47 GMT
Expires: Sun, 04 Dec 2022 04:27:06 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 1480
ETag: "v93"
Content-Type: image/png
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/data-post.js
date: Fri, 09 Dec 2022 23:59:26 GMT
server: envoy
x-dropbox-request-id: d08f2c29caa44592bf180e72478c1ab0
content-length: 0
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/blogger.js
date: Fri, 09 Dec 2022 23:59:26 GMT
server: envoy
x-dropbox-request-id: 00c84a38f130471fba0f89f3b54e19d5
content-length: 0
3.bp.blogspot.com/-e0dYZJREPlI/Tf8oThdvBqI/AAAAAAAAAJU/18v1ilCQ-IY/s1600/twitter.png
216.58.207.225200 OK 1.2 kB URL HTTP/1.1 3.bp.blogspot.com/-e0dYZJREPlI/Tf8oThdvBqI/AAAAAAAAAJU/18v1ilCQ-IY/s1600/twitter.png
IP 216.58.207.225:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash bb2e1028db52ab3ea27d6b208e553966
bab86921a09a80fbd256d0ac81b913c1f5e00088
89a5a44ecf6d76334bc04d7d19c4acff382d2d094a97d84eca0fd2c6bec23d9d
GET /-e0dYZJREPlI/Tf8oThdvBqI/AAAAAAAAAJU/18v1ilCQ-IY/s1600/twitter.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="twitter.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1183
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 23:59:27 GMT
Expires: Thu, 17 Nov 2022 09:07:32 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v95"
Content-Type: image/png
Age: 0
www.wildaboutmovies.com/images_6/ScaryMovie5.jpg
104.21.89.9403 Forbidden 2.0 kB URL HTTP/1.1 www.wildaboutmovies.com/images_6/ScaryMovie5.jpg
IP 104.21.89.9:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (501)
Hash d2a8f744f89917e03f0296e5b9768368
329db448ddb159ff944721b958ea05f6fe1a898f
c7ae431ca12306ecbdac0ac8ab4666de7d767289de64ede36087e237891befb2
GET /images_6/ScaryMovie5.jpg HTTP/1.1
Host: www.wildaboutmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 403 Forbidden
Date: Fri, 09 Dec 2022 23:59:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Referer, Accept-Encoding
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9Gf42Du1YVL1ZiFtOXRPt4aqI0B0a02yJspjLXdUkN6v9%2BpZn71IUt3iUS9na3Ijif7tWdEyMvDZIfHetgZIF5Fb3NOzI8XFEkK39zSoDB3VX9jVfwEEmEwWLQEcQEDYmFHa9ZFquTekew%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7771b1d2cec0b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
img1.blogblog.com/img/icon18_email.gif
216.58.207.233200 OK 164 B URL HTTP/1.1 img1.blogblog.com/img/icon18_email.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: img1.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 164
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 14:02:02 GMT
Expires: Tue, 13 Dec 2022 14:02:02 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 06 Dec 2022 07:54:23 GMT
Content-Type: image/gif
Age: 295045
t3.gstatic.com/images?q=tbn:ANd9GcSbpBv6IAbCicTM5Pct51wTHG43vHXIu-eE4cDmS9j9nuO68duS
142.250.74.164200 OK 16 kB URL HTTP/1.1 t3.gstatic.com/images?q=tbn:ANd9GcSbpBv6IAbCicTM5Pct51wTHG43vHXIu-eE4cDmS9j9nuO68duS
IP 142.250.74.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 187x270, components 3\012- data
Hash 2f3acda6dbed958ec3a7ea0304b96cab
4d6c2f3b36414cf50584b06054206776459ae066
8933bd41fd6fd243d843afa64bec7cc4c6a5123b4377c6f6cc184f66f9a3c95e
GET /images?q=tbn:ANd9GcSbpBv6IAbCicTM5Pct51wTHG43vHXIu-eE4cDmS9j9nuO68duS HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="images-tbn"
Report-To: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
Content-Length: 15733
Date: Fri, 09 Dec 2022 23:59:27 GMT
Expires: Sat, 09 Dec 2023 23:59:27 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Fri, 30 Sep 2016 01:38:58 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
4.bp.blogspot.com/-HyZwXAxH-zA/TxrWzpadp9I/AAAAAAAAG6k/te0gW0V6wls/s1600/Underworld%2B4%2BAwakening%2B%25282012%2529%2Bscreen.jpg
216.58.207.225404 Not Found 832 B URL HTTP/1.1 4.bp.blogspot.com/-HyZwXAxH-zA/TxrWzpadp9I/AAAAAAAAG6k/te0gW0V6wls/s1600/Underworld%2B4%2BAwakening%2B%25282012%2529%2Bscreen.jpg
IP 216.58.207.225:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-HyZwXAxH-zA/TxrWzpadp9I/AAAAAAAAG6k/te0gW0V6wls/s1600/Underworld%2B4%2BAwakening%2B%25282012%2529%2Bscreen.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
www.blogger.com/dyn-css/authorization.css?targetBlogID=5425748553160896353&zx=4f2761aa-bff8-4952-a9b9-c4a3037918f4
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=5425748553160896353&zx=4f2761aa-bff8-4952-a9b9-c4a3037918f4
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=5425748553160896353&zx=4f2761aa-bff8-4952-a9b9-c4a3037918f4 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 23:59:27 GMT
last-modified: Fri, 09 Dec 2022 23:59:27 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-xEzMKrKogn8/TvX4MY180AI/AAAAAAAAA-4/SxETatDTV8s/s1600/body.jpg
216.58.207.225200 OK 16 kB URL HTTP/1.1 1.bp.blogspot.com/-xEzMKrKogn8/TvX4MY180AI/AAAAAAAAA-4/SxETatDTV8s/s1600/body.jpg
IP 216.58.207.225:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 220x137, components 3\012- data
Hash c9a2d3e0d3ea56eb0a21ffb9ab34dedf
b40d033e433f1b2b7b9d057e8591044a50703bad
64315617dc46942c755dc9279c226bf220ac136c811a6b207084fa140d7fecee
GET /-xEzMKrKogn8/TvX4MY180AI/AAAAAAAAA-4/SxETatDTV8s/s1600/body.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3ee"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="body.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 16172
X-XSS-Protection: 0
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
216.58.207.238200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 216.58.207.238:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:14 GMT
expires: Sat, 09 Dec 2023 13:33:14 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 37573
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 23:07:55 GMT
age: 3092
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b658d05e796c732572cbbb288f9dbd7a
66c489a55cdfda30f31c88dd4fbedf1ee138229f
f34d9a993edb309ed27889ac25679317ac691d7ca129aaf0732033013478df0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i1124.photobucket.com/albums/l562/client54/Thang2/sample_s-5.jpg
143.204.55.54301 Moved Permanently 167 B URL HTTP/1.1 i1124.photobucket.com/albums/l562/client54/Thang2/sample_s-5.jpg
IP 143.204.55.54:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/l562/client54/Thang2/sample_s-5.jpg HTTP/1.1
Host: i1124.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 09 Dec 2022 23:59:27 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1124.photobucket.com/albums/l562/client54/Thang2/sample_s-5.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RcywSVTey1eqqphvj2kHXP83x3Tlg514vECuOQXT5I0-XGyMR28n5Q==
Vary: Origin
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cbd77d487bc573b67e146d7a7feefe99
cfc244f286b702733a450058bd6a837f26118982
c182074820a04ea9a0dd0cf43f43f6099f067eafbe88be56845a9d36d9551a2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6346
Cache-Control: max-age=171661
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Etag: "6393aea2-1d7"
Expires: Sun, 11 Dec 2022 23:40:28 GMT
Last-Modified: Fri, 09 Dec 2022 21:54:42 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
3.bp.blogspot.com/-tXYrSbohvnk/TvX6XKK75WI/AAAAAAAAA_Q/ef_FBlC_uBM/s1600/WRAPPER.jpg
216.58.207.225200 OK 63 kB URL HTTP/1.1 3.bp.blogspot.com/-tXYrSbohvnk/TvX6XKK75WI/AAAAAAAAA_Q/ef_FBlC_uBM/s1600/WRAPPER.jpg
IP 216.58.207.225:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1400x211, components 3\012- data
Hash 025cf55f0b3abae1f8de8419d4062632
afc67b5e54da10943de1fd8565b72db944bf964f
df4613bd9dd226acf96b325d52e8357b57d7eae6f53bf4d4b0e5ab340ca2b8fb
GET /-tXYrSbohvnk/TvX6XKK75WI/AAAAAAAAA_Q/ef_FBlC_uBM/s1600/WRAPPER.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3f4"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="WRAPPER.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 63168
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 6c076be28fb3f21069b94f764b8098e1
0fd150ec27b65389ec1c482bdc2f52be1e24829a
858b98ebc77a7ce3083a3c31b2256383bf80e6344d0d3001950e0262eacfca6d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cbd77d487bc573b67e146d7a7feefe99
cfc244f286b702733a450058bd6a837f26118982
c182074820a04ea9a0dd0cf43f43f6099f067eafbe88be56845a9d36d9551a2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6346
Cache-Control: max-age=171661
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Etag: "6393aea2-1d7"
Expires: Sun, 11 Dec 2022 23:40:28 GMT
Last-Modified: Fri, 09 Dec 2022 21:54:42 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
2.bp.blogspot.com/-bc5XqZfTEqo/ThyjPB6DPsI/AAAAAAAAAbY/RO60uxY98Gg/s1600/searc.png
216.58.207.225200 OK 906 B URL HTTP/1.1 2.bp.blogspot.com/-bc5XqZfTEqo/ThyjPB6DPsI/AAAAAAAAAbY/RO60uxY98Gg/s1600/searc.png
IP 216.58.207.225:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9981f9d77138cb3a11a864a15ea437ca
e461ce2cd7917b6bcb8f27c00e25a2232b05d07c
d35060a90a72497e2b6518fc42c47290e2aa3f2e2bfa07898f8da9b941ef1a2e
GET /-bc5XqZfTEqo/ThyjPB6DPsI/AAAAAAAAAbY/RO60uxY98Gg/s1600/searc.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="searc.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 906
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 23:18:30 GMT
Expires: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 2457
ETag: "v1b6"
Content-Type: image/png
2.bp.blogspot.com/-Okdcnz41yHs/TvX0zTohdcI/AAAAAAAAA98/02DL3eBOrJs/s1600/MENU.jpg
216.58.207.225200 OK 12 kB URL HTTP/1.1 2.bp.blogspot.com/-Okdcnz41yHs/TvX0zTohdcI/AAAAAAAAA98/02DL3eBOrJs/s1600/MENU.jpg
IP 216.58.207.225:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 985x52, components 3\012- data
Hash 14a873bda8f61785f997e9390629e1da
ef26c019ba413cd6bdeab7b10bf839e3e1091f66
0e124ca3864bea3c83f8691321dbf71f1558919d228c5ce08c53d63a811cbdd6
GET /-Okdcnz41yHs/TvX0zTohdcI/AAAAAAAAA98/02DL3eBOrJs/s1600/MENU.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3df"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="MENU.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 11920
X-XSS-Protection: 0
4.bp.blogspot.com/-A--jqJgyZwY/T0UUcV_rCEI/AAAAAAAAD2w/10WDOJfr9bI/s400/precccc.CAPATELONA.jpg
216.58.207.225200 OK 28 kB URL HTTP/1.1 4.bp.blogspot.com/-A--jqJgyZwY/T0UUcV_rCEI/AAAAAAAAD2w/10WDOJfr9bI/s400/precccc.CAPATELONA.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 243x321, components 3\012- data
Hash e9b356e5a6e8a457933760b18fa84b8d
ea00c1bc75ea88ea281af6aba2fc26cccb4a3da6
79ce69ec6776eb00a54c1fb0e882500d61ae424cb8bd05b1821b8c62c90181fc
GET /-A--jqJgyZwY/T0UUcV_rCEI/AAAAAAAAD2w/10WDOJfr9bI/s400/precccc.CAPATELONA.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vf6c"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="precccc.CAPATELONA.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 27780
X-XSS-Protection: 0
3.bp.blogspot.com/-3OjzluwfSB8/TvX04FFPkJI/AAAAAAAAA-I/IrXs2ZlKxzc/s1600/CONTENT.jpg
216.58.207.225200 OK 524 B URL HTTP/1.1 3.bp.blogspot.com/-3OjzluwfSB8/TvX04FFPkJI/AAAAAAAAA-I/IrXs2ZlKxzc/s1600/CONTENT.jpg
IP 216.58.207.225:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 985x5, components 3\012- data
Hash f2cd7706d0c6ed65be6049d41b1c15a3
20cae595df132eea987f754c78304176711848ab
76eeec1930725fce635cd0a648259db7d0d5df0feca7161f413f2a8f0bbe8a78
GET /-3OjzluwfSB8/TvX04FFPkJI/AAAAAAAAA-I/IrXs2ZlKxzc/s1600/CONTENT.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3e2"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="CONTENT.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 524
X-XSS-Protection: 0
2.bp.blogspot.com/-n4tkQsplpkc/TvX1AL2exKI/AAAAAAAAA-g/-rg-6QPC_fo/s1600/h2l.png
216.58.207.225200 OK 1.4 kB URL HTTP/1.1 2.bp.blogspot.com/-n4tkQsplpkc/TvX1AL2exKI/AAAAAAAAA-g/-rg-6QPC_fo/s1600/h2l.png
IP 216.58.207.225:0
File type PNG image data, 210 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 3760b3f3d04a530809a8cf701405acef
e4cda9ddf6910fb913807299330d30ad15069f76
edb7fe2789ad8c1c6ce548729fa3c5d0fd5efe60bf753db635311ad2db08468c
GET /-n4tkQsplpkc/TvX1AL2exKI/AAAAAAAAA-g/-rg-6QPC_fo/s1600/h2l.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3e8"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="h2l.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 1438
X-XSS-Protection: 0
2.bp.blogspot.com/_8GxSJXcDIwk/TBM41zdJRTI/AAAAAAAABp0/Y-bxfWbuf8s/s1600/1276328132_date.png
216.58.207.225200 OK 866 B URL HTTP/1.1 2.bp.blogspot.com/_8GxSJXcDIwk/TBM41zdJRTI/AAAAAAAABp0/Y-bxfWbuf8s/s1600/1276328132_date.png
IP 216.58.207.225:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b78db23c35039f1e94b815d17ca36e17
6d8e343c7bc7495325fe162489a00ccddf8c9db1
c4f31f3f72f35a2b4cc27c001f3a7543133d4a61047c48e76eeadfd4527d7bc1
GET /_8GxSJXcDIwk/TBM41zdJRTI/AAAAAAAABp0/Y-bxfWbuf8s/s1600/1276328132_date.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1276328132_date.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 866
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 23:18:30 GMT
Expires: Sat, 08 Oct 2022 02:44:38 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 2457
ETag: "v69d"
Content-Type: image/png
2.bp.blogspot.com/-vyxWFf9eVm4/TyM7Jt3pB4I/AAAAAAAABeo/K7uBwCrhv7U/s320/Underworld+4+Awakening+%282012%29.jpg
216.58.207.225200 OK 24 kB URL HTTP/1.1 2.bp.blogspot.com/-vyxWFf9eVm4/TyM7Jt3pB4I/AAAAAAAABeo/K7uBwCrhv7U/s320/Underworld+4+Awakening+%282012%29.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 216x320, components 3\012- data
Hash db550991d81554e651af9ab9061870e9
b75e1f6ee8321af7c262f48adfd3ebfc012b2e64
0abcc2811c19decff40f8b00b0ce0a20bd2f99eb8c35118dc87a34eea00f2530
GET /-vyxWFf9eVm4/TyM7Jt3pB4I/AAAAAAAABeo/K7uBwCrhv7U/s320/Underworld+4+Awakening+%282012%29.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5ea"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Underworld 4 Awakening (2012).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 23645
X-XSS-Protection: 0
3.bp.blogspot.com/_8GxSJXcDIwk/TBNBFo0rK-I/AAAAAAAABq8/VO_ATeuF6sM/s1600/aaa.png
216.58.207.225200 OK 430 B URL HTTP/1.1 3.bp.blogspot.com/_8GxSJXcDIwk/TBNBFo0rK-I/AAAAAAAABq8/VO_ATeuF6sM/s1600/aaa.png
IP 216.58.207.225:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 4a8dff410b988cf74426c0bd7b01f77b
07be357b74a2639421c47297a498b70ec70cd84a
6645b7c567eda3a6979a97e1571c1d3e3830fea89fa1cbf1d0858c514dfc31c2
GET /_8GxSJXcDIwk/TBNBFo0rK-I/AAAAAAAABq8/VO_ATeuF6sM/s1600/aaa.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="aaa.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 430
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 23:29:17 GMT
Expires: Sat, 08 Oct 2022 02:46:59 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 1810
ETag: "v6af"
Content-Type: image/png
fonts.gstatic.com/s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
142.250.74.35200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16296, version 1.0\012- data
Hash ab4a2c11e0a08a8b4fa7846c2adcc173
86304ab63791be3a22e5eb673245bca6351774a2
2498c027559c4ae9a920e18e30031193148983e7ea195416d62c5d0ea2eaa3ac
GET /s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rmvb-mediafire.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16296
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 13:47:04 GMT
Expires: Sat, 09 Dec 2023 13:47:04 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 15:55:58 GMT
Content-Type: font/woff2
Age: 36743
fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2
142.250.74.35200 OK 33 kB URL HTTP/1.1 fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 33436, version 1.0\012- data
Hash b9b4c932ef89c39525bfe1b604cda3a1
767246e4c7df1b6c32f590c16c135808382b1aba
9a932e49823b59769330d1ce8ef9f1b90e5ae8ecd5f2bb388d19bf684cdb7ebd
GET /s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rmvb-mediafire.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 33436
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 21:21:40 GMT
Expires: Wed, 06 Dec 2023 21:21:40 GMT
Cache-Control: public, max-age=31536000
Age: 268667
Last-Modified: Tue, 26 Apr 2022 15:01:13 GMT
Content-Type: font/woff2
3.bp.blogspot.com/-TBMC64LmZV4/TsjIWQ9v_5I/AAAAAAAAAiM/3DhvpRMrWRY/s1600/happy-feet-two-movie-poster.jpg
216.58.207.225200 OK 25 kB URL HTTP/1.1 3.bp.blogspot.com/-TBMC64LmZV4/TsjIWQ9v_5I/AAAAAAAAAiM/3DhvpRMrWRY/s1600/happy-feet-two-movie-poster.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 265x400, components 3\012- data
Hash 9a5177221772ea82aee74db5a05b61f0
dc48e4c55e5e2aec9c77888dd994e870addaf6cf
abda09daddf0271c1df5e01c15b30da064cf4d9acea598ea63fddea03786c2ce
GET /-TBMC64LmZV4/TsjIWQ9v_5I/AAAAAAAAAiM/3DhvpRMrWRY/s1600/happy-feet-two-movie-poster.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v223"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="happy-feet-two-movie-poster.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 24831
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3429
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Last-Modified: Fri, 09 Dec 2022 23:02:18 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
1.bp.blogspot.com/-LARTG_9Ru98/T0ar3OuwmOI/AAAAAAAACIU/4IGujl0LzUw/s320/O+Ritual.jpg
216.58.207.225200 OK 38 kB URL HTTP/1.1 1.bp.blogspot.com/-LARTG_9Ru98/T0ar3OuwmOI/AAAAAAAACIU/4IGujl0LzUw/s320/O+Ritual.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 227x320, components 3\012- data
Hash 304caac28ce3bc3c0cde12305da1a8ae
0f922974fc484038ac96febbf6ecbc3ae678a3ab
39e76f01704dd08cb19bcb080898b88df903813232e4ab4a1bf586e926a8f56d
GET /-LARTG_9Ru98/T0ar3OuwmOI/AAAAAAAACIU/4IGujl0LzUw/s320/O+Ritual.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v885"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="O Ritual.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 38102
X-XSS-Protection: 0
usuarionovo.com/
216.239.32.21301 Moved Permanently 223 B IP 216.239.32.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash d51ed608dd0a8507668bec707634bd5b
0d3464fd0afecbaa2a513a42cdd3ef7cf589c600
8533a52a734acaa7095680fba274af4e25b6fcc8aef0b0e1059eed286670da16
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: usuarionovo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: http://www.usuarionovo.com
Date: Fri, 09 Dec 2022 23:59:27 GMT
Content-Type: text/html; charset=UTF-8
Server: ghs
Content-Length: 223
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i1124.photobucket.com/albums/l562/client54/Thang2/sample_s-5.jpg
143.204.55.54404 Not Found 7.1 kB URL HTTP/2 i1124.photobucket.com/albums/l562/client54/Thang2/sample_s-5.jpg
IP 143.204.55.54:0
File type PNG image data, 160 x 120, 8-bit/color RGB, non-interlaced\012- data
Hash 49e3fff8262f861c9be74931c8c33d34
a25ea738da2c2737c9eec1fdd76c5c21923f021e
f472388ee6d7eb09b86275ac4a198d40acf2b2083b342ad40838d57d01bb9c50
GET /albums/l562/client54/Thang2/sample_s-5.jpg HTTP/1.1
Host: i1124.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: image/png
content-length: 7092
last-modified: Fri, 20 Dec 2019 23:09:15 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Dec 2022 14:37:21 GMT
etag: "49e3fff8262f861c9be74931c8c33d34"
x-cache: Error from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CTHviWVKu1G9Ebh_UpcWfRIfbHEF1wZeYfGd8T53Zr6CMiriu9SgtA==
age: 82782
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
IP 216.58.211.3:0
Hash 766ccf46b9070b84ff5ac299015ba381
1b627cafdf50f0cb07156e3c328e99b32c0f0580
3ddf07bbdc430f2c149b7641356901be14f6e06a7a26f3928d314870ef456d8d
POST /s/gts1p5/JNJj-Xek6-M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-tSlcQJoo-a4/T0IlDb2IaPI/AAAAAAAAB7o/_hD4rSjc3Ck/s320/gb.png
216.58.207.225200 OK 135 kB URL HTTP/1.1 2.bp.blogspot.com/-tSlcQJoo-a4/T0IlDb2IaPI/AAAAAAAAB7o/_hD4rSjc3Ck/s320/gb.png
IP 216.58.207.225:0
File type PNG image data, 218 x 320, 8-bit/color RGB, non-interlaced\012- data
Size 135 kB (134948 bytes)
Hash 2766f7a5068e85e2744ac35a7b320c24
51a59191a683622f4c368c9ffcc365f66af812c0
47dc7f60205985246ee6f24f8edc0467dff98c78a07fc06a2ccb37bc1ef290b4
GET /-tSlcQJoo-a4/T0IlDb2IaPI/AAAAAAAAB7o/_hD4rSjc3Ck/s320/gb.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v7ba"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gb.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 134948
X-XSS-Protection: 0
lh3.googleusercontent.com/-61WnBfzMpYE/TrSdx9pjzbI/AAAAAAAAAsg/w3wEH-brVCA/25.jpg
216.58.207.225200 OK 80 kB URL HTTP/2 lh3.googleusercontent.com/-61WnBfzMpYE/TrSdx9pjzbI/AAAAAAAAAsg/w3wEH-brVCA/25.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 250x350, components 3\012- data
Hash 2ee2c3feb69f1a9bbd82e0bae087542b
ec8f19b61c08af864c32a8105e077a5c207440c8
901f1e0dca2a6627aae7d2b91f301a2b6040e772aebb104d0e2414ddd90fd0c4
GET /-61WnBfzMpYE/TrSdx9pjzbI/AAAAAAAAAsg/w3wEH-brVCA/25.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2c8"
expires: Sat, 10 Dec 2022 23:59:27 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="25.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 23:59:27 GMT
server: fife
content-length: 80312
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b658d05e796c732572cbbb288f9dbd7a
66c489a55cdfda30f31c88dd4fbedf1ee138229f
f34d9a993edb309ed27889ac25679317ac691d7ca129aaf0732033013478df0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.search-blogger.com/
172.217.21.179301 Moved Permanently 178 B IP 172.217.21.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 27181302eba676d4a386d528deb7bc8a
7d2cb61e26ebadcf231d53a8f6051b070509288d
59f63d057541bb65e384d154da24cc0f7db6215cd679c6bef7c69c1a05fcfca7
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.search-blogger.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 09 Dec 2022 23:59:27 GMT
Expires: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 178
Server: GSE
1.bp.blogspot.com/-PCuySPjAoqw/T0URwUbYNxI/AAAAAAAAD2k/FTTLZl0LNGY/s400/HUGGOOOOOOOOYY.CAPATELONA.jpg
216.58.207.225200 OK 36 kB URL HTTP/1.1 1.bp.blogspot.com/-PCuySPjAoqw/T0URwUbYNxI/AAAAAAAAD2k/FTTLZl0LNGY/s400/HUGGOOOOOOOOYY.CAPATELONA.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 240x325, components 3\012- data
Hash 6a3343d54931a5efd0b18d278d5f1216
62dc56c0bc3ba88ec6e2578fb585ecf01072c73c
496654220a462e3d5eddc541f184bb5b75d7a82aa809fc47421074e82c3888a4
GET /-PCuySPjAoqw/T0URwUbYNxI/AAAAAAAAD2k/FTTLZl0LNGY/s400/HUGGOOOOOOOOYY.CAPATELONA.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vf69"
Expires: Sat, 10 Dec 2022 23:59:27 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="HUGGOOOOOOOOYY.CAPATELONA.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 23:59:27 GMT
Server: fife
Content-Length: 36278
X-XSS-Protection: 0
push.services.mozilla.com/
52.13.69.101101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.13.69.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ktwQF+PZItCpzJG0OJZ8KA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l6aFsZyoBxBAH34FyzH3sBocH+Y=
lh3.googleusercontent.com/-LbqwO_XOmkY/T0u_YYuag6I/AAAAAAAABU4/raSriKstm68/s279/d33333ddme.jpg
216.58.207.225200 OK 32 kB URL HTTP/2 lh3.googleusercontent.com/-LbqwO_XOmkY/T0u_YYuag6I/AAAAAAAABU4/raSriKstm68/s279/d33333ddme.jpg
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 197x279, components 3\012- data
Hash ef4aaa88a111ad490f564a67d4dde4aa
bf388927432d316d87d9bf468760ac1344d802c1
bfa54fcb921a6a8c848d7a28daeec0b76a0b8639c4bb7d35f90e22f27e451862
GET /-LbqwO_XOmkY/T0u_YYuag6I/AAAAAAAABU4/raSriKstm68/s279/d33333ddme.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v54e"
expires: Sat, 10 Dec 2022 23:59:27 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="d33333ddme.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 23:59:27 GMT
server: fife
content-length: 31527
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 4.7 kB URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
Hash f4c1103a85656ced41ede6fb8bed98ed
7c19ba60f28bac03600aa4f53231843c5590fb82
38ef08e3e9aa98aff0cbc4408adceb7f4a71126aeda4a40b45791df5780ba92a
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:27 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: c9832db3ef814df487d63dfb3f177197
X-Firefox-Spdy: h2
www.usuarionovo.com/
172.217.21.179200 OK 2.9 kB IP 172.217.21.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (482)
Hash 582958e09009f99cc72caebc68a60ea6
1f862a0e1f6ccc2f631947967d8064ce3f7cd254
67ab312db0f42321c7f4279de64187c7a20f41688291963c009299434bdab4e8
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.usuarionovo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 09 Dec 2022 23:59:27 GMT
Date: Fri, 09 Dec 2022 23:59:27 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 11 Dec 2021 08:59:35 GMT
ETag: W/"8859db95c1d07557fc2ef62c794d66e441d9f17fec19a9fa8a342623ae2572c3"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 2904
Server: GSE
www.google.com/images/errors/logo_sm.gif
142.250.74.132200 OK 2.5 kB URL HTTP/1.1 www.google.com/images/errors/logo_sm.gif
IP 142.250.74.132:0
File type GIF image data, version 89a, 150 x 55\012- data
Hash bba57d2d103b1d0e5154e3c679dd33ff
9dc3b698fd3bea6f89ef4cbec6b2a588f0c774d6
4feb114e1eda3a4854d652c2cd2afeabff0f438ed4822c5a1b968772a5c2cb5b
GET /images/errors/logo_sm.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.usuarionovo.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 2510
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 14:20:54 GMT
Expires: Wed, 06 Dec 2023 14:20:54 GMT
Cache-Control: public, max-age=31536000
Age: 293914
Last-Modified: Tue, 22 Oct 2019 18:30:00 GMT
Content-Type: image/gif
www.usuarionovo.com/js/cookienotice.js
172.217.21.179200 OK 2.0 kB URL HTTP/1.1 www.usuarionovo.com/js/cookienotice.js
IP 172.217.21.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: www.usuarionovo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.usuarionovo.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Fri, 09 Dec 2022 23:59:28 GMT
Expires: Fri, 16 Dec 2022 23:59:28 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 09 Dec 2022 19:52:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.search-blogger.com/
172.217.21.179200 OK 6.4 kB IP 172.217.21.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4098)
Hash 689e68a4130072d0b4a70a081d3a6b2d
1abdea711181f42de658ad63b5ca5e62f4ac75a9
e1cda4efb8aeb6b9ef079b4b662fb6e7b7ac87c7d68632e5ba524c71e3e175a4
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 09 Dec 2022 23:59:27 GMT
date: Fri, 09 Dec 2022 23:59:27 GMT
cache-control: private, max-age=0
last-modified: Wed, 07 Dec 2022 17:40:02 GMT
etag: W/"c54b472acc9559a786de04bb0240b1c0b43910ddabdbb7153d0b1d84d7db16c0"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 6405
server: GSE
X-Firefox-Spdy: h2
4.bp.blogspot.com/_8GxSJXcDIwk/TBNALDZe_0I/AAAAAAAABqk/cS_OBWXZEQs/s1600/1276330011_tags.png
216.58.207.225200 OK 769 B URL HTTP/1.1 4.bp.blogspot.com/_8GxSJXcDIwk/TBNALDZe_0I/AAAAAAAABqk/cS_OBWXZEQs/s1600/1276330011_tags.png
IP 216.58.207.225:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a5daed680d735388ad22035dc2dbd7d
c3b1f1494710e1eefeedd218e9d912e18f5ed78e
e6ced0fa54f257a9b98fa436566e088b35cdbf70916d6a70a9a0b5992aa7b0c4
GET /_8GxSJXcDIwk/TBNALDZe_0I/AAAAAAAABqk/cS_OBWXZEQs/s1600/1276330011_tags.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1276330011_tags.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 769
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 21:19:41 GMT
Expires: Sun, 06 Nov 2022 02:46:06 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9587
ETag: "v6a9"
Content-Type: image/png
2.bp.blogspot.com/_8GxSJXcDIwk/TBM6sX5_MNI/AAAAAAAABp8/2RwKjFNZjcQ/s1600/1276328597_comment.png
216.58.207.225200 OK 426 B URL HTTP/1.1 2.bp.blogspot.com/_8GxSJXcDIwk/TBM6sX5_MNI/AAAAAAAABp8/2RwKjFNZjcQ/s1600/1276328597_comment.png
IP 216.58.207.225:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash cb58c451bdd44930a0224a3d6fe7f364
8d640b651b30a3f274f6924f56bbd6852e47187f
4a294fd287a79ae2ec14e65245e11269d4597b3bb5efc5c56b703672595526fc
GET /_8GxSJXcDIwk/TBM6sX5_MNI/AAAAAAAABp8/2RwKjFNZjcQ/s1600/1276328597_comment.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1276328597_comment.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 426
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 23:59:28 GMT
Expires: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v69f"
Content-Type: image/png
Age: 0
www.search-blogger.com/js/cookienotice.js
172.217.21.179200 OK 2.0 kB URL HTTP/2 www.search-blogger.com/js/cookienotice.js
IP 172.217.21.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.search-blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 09 Dec 2022 23:59:28 GMT
expires: Fri, 16 Dec 2022 23:59:28 GMT
cache-control: public, max-age=604800
last-modified: Fri, 09 Dec 2022 19:52:53 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 4.8 kB URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
Hash 1aabb9a7067c5aec65af722effcc8196
4f1be468a1b296df64fce9650d51cacae57f4bab
a34387cf210301674f9f6b401084c3218eb0a3388b458dc173c276bf5572e01c
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:27 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: ae0b8b5a128d40dba3c7f9535191fa4d
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 4.6 kB URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
Hash d0ae868f402b4cf7fe34a9144d81c493
fbfa44aec0e9025804510f3903ba8e6ed21cd0c7
8d61ef973fe3a669e3fa4a16bc27cb1c5a8f9d07e444442a893632637fee30ac
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:27 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: d3bb72bfe2ff4c7c952857b4db5341bd
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2650
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 23:59:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2650
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 23:59:29 GMT
Connection: keep-alive
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 4.7 kB URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
Hash 7ce758f828856d2695dfb7e7a1744825
f2bfea393ec56cce54c6aa1adc4ebce4a2b7d929
50d46658bfc9df11daf1d5768df29f10459b9134b8b76232400f457297f6c852
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:27 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: c2454ba061b744969aa2c748bd51e724
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2650
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 23:59:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c73a9d6-0f56-4366-b9bd-119b0034c1aa.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c73a9d6-0f56-4366-b9bd-119b0034c1aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 44ee520c9a084ee2a04638b6abbb2b0b
ed170b8b964db1163e02c21fe4e9dbfe58e9d42d
e4f33f6556c414b498f99d6b43c4d94fa15e9b235596647d4a8513c78c21e6eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c73a9d6-0f56-4366-b9bd-119b0034c1aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5302
x-amzn-requestid: ababe39a-ea1a-4a20-9de4-ad71500d9c59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWE-eoAMFZJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-19c2e2c1445527c13b4b66e0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w2vv_xDK6MNt2CX1nqsqt9mRjSOPMxVNrar2XcR44gJPtC0vaK68sg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:48:59 GMT
age: 4230
etag: "ed170b8b964db1163e02c21fe4e9dbfe58e9d42d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdfa83b-145c-4be3-a6b8-f5793f03bb94.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdfa83b-145c-4be3-a6b8-f5793f03bb94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2670e991a43d526b00562ed6451dd0aa
7ba541ab2af223148304d413e8a19d9e55d9ed7a
f703500f0bcef3b64f97fa17d6d6bb510b71d1fe43098964ff028de8155f1291
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdfa83b-145c-4be3-a6b8-f5793f03bb94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7933
x-amzn-requestid: a1238d4e-29a4-433f-89a0-7f5e1c9d380f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eVeHUXoAMF4xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa89-26d996ae7911586c07a35c6d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -naGV8_QoDyJ7fHOE6SZD7cUwZzC5_XMWx6J_KvVy-SExS0LdFWmcw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:53:07 GMT
age: 7582
etag: "7ba541ab2af223148304d413e8a19d9e55d9ed7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3acf5a494a6bb8b26858974ede70a33
4bccc3032f7427d881a49250e576c05dd7d5614f
786db0da1198986aeba9aa420a7c89b5b27a09bc48c3806769342159f116705d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12047
x-amzn-requestid: 87cb3342-c784-4ea1-a96e-d1e581a86bea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czqP1Fd0IAMFdww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63915731-178eb2960448312e146f5bd4;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 03:17:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: BjbkkmxxwK9xut7yloGC9fRwhMLQRtfcU1JWiyqAUfMNk-WPQab1Cg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:03:10 GMT
age: 6979
etag: "4bccc3032f7427d881a49250e576c05dd7d5614f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:15 GMT
age: 60374
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2b4c44cc196e1f4263a895ef54e6650
c5cea524045b3394c1dfe5e5fcac4637416f8587
e31f4b95811c01b2f2f181e11b7a8e1b4c57c3c7fc067c304e8dacc6fb176442
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3963
x-amzn-requestid: f067a6cf-758c-4c35-be64-3970b690ea7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5e7VHdnoAMF0Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393ab7b-485a18b738763b2029f6c653;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:41:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: s34c1vAKHso9NwDfhOn5053VIDeRGdwNscoMDkkfcNx95irwIB9Hrg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:54:23 GMT
age: 7506
etag: "c5cea524045b3394c1dfe5e5fcac4637416f8587"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8a5e9d0cddf26cf3a1478d2942f2478
e8a228a857a414f04108c84670ed7bc74534407c
3a15851f412000f1647057745348bc6f6e2f0cfe481ca7a72f6e94fab8d5e52e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12990
x-amzn-requestid: 2e4f71f3-b81d-4822-a13a-e8367a76aa20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMREp3IAMFRJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-447650995616ab6a09780380;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DVOvH3hkkdKdQNGQSrJ90yGPigdD8UysVImEu_pMe_H69RagreIKsg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:53:07 GMT
age: 7582
etag: "e8a228a857a414f04108c84670ed7bc74534407c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 27 kB URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash 9578b25998e3db2fad514c8e3ecdd3c5
9dfee9d3162c27f519c16121c588287cd3691072
5fa0809a6decbe4232538fbc81351d7400987e14eaa8d42e947c9981ec2ad3b2
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:28 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 253e7ca6509745c583912b8fcd24e18d
X-Firefox-Spdy: h2
3.bp.blogspot.com/-fcuP6Ildtuo/TvX1Czu0dRI/AAAAAAAAA-s/8j5ZsdKkHJw/s1600/h2r.png
216.58.207.225200 OK 1.8 kB URL HTTP/1.1 3.bp.blogspot.com/-fcuP6Ildtuo/TvX1Czu0dRI/AAAAAAAAA-s/8j5ZsdKkHJw/s1600/h2r.png
IP 216.58.207.225:0
File type PNG image data, 210 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash af3f86e095a358552c89293b47bef570
fa84376ee7e6bfa9812415aaadb90f1d98dae9ef
bbc04fad80dd660068e31c71775c73f6b07f61d4d15274d72c7aa5af317c7e96
GET /-fcuP6Ildtuo/TvX1Czu0dRI/AAAAAAAAA-s/8j5ZsdKkHJw/s1600/h2r.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="h2r.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1795
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 23:59:34 GMT
Expires: Fri, 09 Dec 2022 01:59:24 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3eb"
Content-Type: image/png
Age: 0
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 6.6 kB URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23665)
Hash 897127bd47f90fa611534ba86389ad7a
f19ce9a51b082cd82d1d76186ee268f1b0a6cb50
29555be200d7d08c0eb97bf811d7c00f0b6f210f5ca72d7f74e46f282dd882b0
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:33 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 4c03f5f6c571438dbd094888f540ffe8
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 14 kB URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash 5b826a09176d61a6016dd7cc81ae2a6b
0d2f372b20d7f013ec030fd34f557f88cf69b6a6
cb10833bccb2b02d641ba7a22a7cb3ebd530fe40ff818ba6d37c89469926bc7c
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:33 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 3c7777b8687b4bae9c4058830594ba75
X-Firefox-Spdy: h2
3.bp.blogspot.com/-iQymvrp9UZ0/TvX09ArfTcI/AAAAAAAAA-U/h4Dfc7ON0PU/s1600/FOOTER.png
216.58.207.225200 OK 5.2 kB URL HTTP/1.1 3.bp.blogspot.com/-iQymvrp9UZ0/TvX09ArfTcI/AAAAAAAAA-U/h4Dfc7ON0PU/s1600/FOOTER.png
IP 216.58.207.225:0
File type PNG image data, 985 x 169, 8-bit/color RGBA, non-interlaced\012- data
Hash ce145117c96d9d3151dda9101dcf1ae6
1ee7c2959d189be685e396be8549903420325ed6
faeb94cf91a3bbf4b5d8422176948bc1e10799b208a6466eefc6f3210d0486f1
GET /-iQymvrp9UZ0/TvX09ArfTcI/AAAAAAAAA-U/h4Dfc7ON0PU/s1600/FOOTER.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="FOOTER.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5152
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 23:59:34 GMT
Expires: Wed, 30 Nov 2022 22:50:10 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3e5"
Content-Type: image/png
Age: 0
static.cbox.ws/styles/v4s12_2.css?20171204
172.67.128.112200 OK 821 B URL HTTP/1.1 static.cbox.ws/styles/v4s12_2.css?20171204
IP 172.67.128.112:0
File type ASCII text, with CRLF line terminators
Hash 397f662777eee115629ddb45d48b76a0
b4004a2274b6afdb571ac91ac5db940523d3d2a2
c0268b480357ad08e36f933dd0080b98ceb47bec23ae3498eeb01af5a50e5b82
GET /styles/v4s12_2.css?20171204 HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www4.cbox.ws/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 23:59:34 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5a250fb0-93a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 16076100
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IWqlOYKXwax2CyAUiisPdzIIDBopjMNuFuMGhYU7TFiDrsL%2F0RBisnCMWrRkDPHMad4kaDlbFiiq%2BF4fSjn1o33lzxv2L0ATR1lyoyhNgjbed%2FagNKWrz8G9iHcM4CfLRw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7771b1fe3efa0b51-OSL
alt-svc: h2=":443"; ma=60
static.cbox.ws/jsc/jsc_1593163307.js
172.67.128.112200 OK 17 kB URL HTTP/1.1 static.cbox.ws/jsc/jsc_1593163307.js
IP 172.67.128.112:0
File type ASCII text, with very long lines (538)
Hash d145f5920028cd6628fd2a489864f740
30754798a738b79a9a39c7f2c1f4f3d366e494b2
f534b4a63d6e14e118b76f38c76615b6f759542f1cc987664141ebf760d7e6fe
GET /jsc/jsc_1593163307.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www4.cbox.ws
Connection: keep-alive
Referer: http://www4.cbox.ws/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 23:59:34 GMT
Content-Type: application/x-javascript
Content-Length: 16559
Connection: keep-alive
Last-Modified: Fri, 26 Jun 2020 09:21:54 GMT
ETag: "5ef5be32-40af"
Content-Encoding: gzip
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
CF-Cache-Status: HIT
Age: 16594249
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qiJeecxeazQwVUIHHBbLoWH9%2FU7TSy5hZYcyULjgoRK2r0xdPDHkZIlx9XL1ZwVyamUpGtnledxYyEXXamn%2F8xQNkpeIuZ8yJOQ%2FcdBDg8aIp2GzuGAryjabxuwYM8B3oQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7771b1fe3e9d0b41-OSL
alt-svc: h2=":443"; ma=60
rmvb-mediafire.blogspot.com/feeds/posts/summary/-/http://rmvb-mediafire.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1
142.250.74.161400 Bad Request 193 B URL HTTP/1.1 rmvb-mediafire.blogspot.com/feeds/posts/summary/-/http://rmvb-mediafire.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 83b482393f028e6de91b032e7fae746b
50bad14cd7b4602d7b9f1ef6d769288588594fc8
031cbc91f964c96aa1975380c3bd66f5fe254439f3281bf0e06bc385c3912aa2
GET /feeds/posts/summary/-/http://rmvb-mediafire.blogspot.com/search/label/?alt=json-in-script&callback=hitungtotaldata&max-results=1 HTTP/1.1
Host: rmvb-mediafire.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/search/label/Lan%C3%A7amentos
HTTP/1.1 400 Bad Request
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
Date: Fri, 09 Dec 2022 23:59:34 GMT
Server: Blogger Render Server 1.0
Content-Length: 193
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f92a2bb000cce48c9e3a15eabdf68598
df678017f0fc38151632727222b2cbf413563692
6472df82d6bea9408d3738f8aa43d368f4914c4b24b7627c4eea82a3d441f862
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D5425748553160896353%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://rmvb-mediafire.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D5425748553160896353%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://rmvb-mediafire.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
142.250.74.109302 Found 471 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D5425748553160896353%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://rmvb-mediafire.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D5425748553160896353%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://rmvb-mediafire.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (506)
Hash 5a7f5670eb8909e54c666b36132eeb30
77f66fa71fb5dac380c571d392c5c90f11f97124
f70f73d1735f9a4cf5e1bfb51021b37713b910e7b22bc45ebee26a89af064e87
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D5425748553160896353%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://rmvb-mediafire.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D5425748553160896353%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://rmvb-mediafire.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 23:59:34 GMT
location: https://www.blogger.com/followers.g?blogID=5425748553160896353&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Frmvb-mediafire.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce--9QHN_Jh0Ar3-vWM74JAPw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 471
server: GSE
set-cookie: __Host-GAPS=1:OIthtvIY8zeSFM_Wl1pO8INOxv5M0g:AOGeXr0den42UYLu;Path=/;Expires=Sun, 08-Dec-2024 23:59:34 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=ma1iuv8bfn3d&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&c=t&x=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&y=&a=-1&d=0&v=27&r=370
104.22.74.171200 OK 51 B URL HTTP/1.1 whos.amung.us/pingjs/?k=ma1iuv8bfn3d&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&c=t&x=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&y=&a=-1&d=0&v=27&r=370
IP 104.22.74.171:0
File type ASCII text, with no line terminators
Hash 71e6da0bae4c19d320b5e3c7c2b2b558
3d1bd36e33ee01d80d2208ba4998d1bafa316aab
f835d409ac66216175b61021b1ebbf290f4f8470b2ef630cdefaec3a5cae55ee
GET /pingjs/?k=ma1iuv8bfn3d&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&c=t&x=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&y=&a=-1&d=0&v=27&r=370 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 23:59:34 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7771b1ff9c7715ec-ARN
whos.amung.us/pingjs/?k=ma1iuv8bfn3d&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&c=t&x=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&y=&a=-1&d=7.918&v=27&r=1031
104.22.74.171200 OK 51 B URL HTTP/1.1 whos.amung.us/pingjs/?k=ma1iuv8bfn3d&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&c=t&x=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&y=&a=-1&d=7.918&v=27&r=1031
IP 104.22.74.171:0
File type ASCII text, with no line terminators
Hash 71e6da0bae4c19d320b5e3c7c2b2b558
3d1bd36e33ee01d80d2208ba4998d1bafa316aab
f835d409ac66216175b61021b1ebbf290f4f8470b2ef630cdefaec3a5cae55ee
GET /pingjs/?k=ma1iuv8bfn3d&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&c=t&x=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&y=&a=-1&d=7.918&v=27&r=1031 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 23:59:34 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7771b1ff9e1609a9-ARN
rmvb-mediafire.blogspot.com/favicon.ico
142.250.74.161200 OK 412 B URL HTTP/1.1 rmvb-mediafire.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: rmvb-mediafire.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/search/label/Lan%C3%A7amentos
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Fri, 09 Dec 2022 23:59:34 GMT
Date: Fri, 09 Dec 2022 23:59:34 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 08 Nov 2022 06:12:08 GMT
ETag: W/"f52866366678a52c7ba590dde34a0a7b2e0d51b34f2b7a592c43c8a93883a6e8"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 041ee7bbd80e836023d3c1109d2979de
0bbaad731238f365695a432792b4c6b6199a830c
fcc16dfe49146995d9828166eb169a90664dedee131e3f01c2576a8160ea908d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 23:59:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 23:33:45 GMT
Expires: Wed, 14 Dec 2022 23:33:44 GMT
Etag: "0bbaad731238f365695a432792b4c6b6199a830c"
Cache-Control: max-age=429849,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7771b2012dc0b4ee-OSL
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 7206f964f7475327e94ad168fdf788f1
6248f2bcb123370b1d45f8445665a6a567d413a3
0ab39c9b0a37d18c7a582b4e39bc3675c7a6da138dde763ad46e51f997636fc7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5490
Cache-Control: max-age=158588
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:34 GMT
Etag: "63937ef0-2d7"
Expires: Sun, 11 Dec 2022 20:02:42 GMT
Last-Modified: Fri, 09 Dec 2022 18:31:12 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 727
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 041ee7bbd80e836023d3c1109d2979de
0bbaad731238f365695a432792b4c6b6199a830c
fcc16dfe49146995d9828166eb169a90664dedee131e3f01c2576a8160ea908d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 23:59:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 23:33:45 GMT
Expires: Wed, 14 Dec 2022 23:33:44 GMT
Etag: "0bbaad731238f365695a432792b4c6b6199a830c"
Cache-Control: max-age=429849,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7771b2012c47b4eb-OSL
cdn.tynt.com/tc.js
172.64.151.83200 OK 49 kB IP 172.64.151.83:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (647)
Hash d3981f5a8566bd129728e6490bc7b6fa
36984380842a7b803818a9782166d44bf7a899b2
49b8f38321f76ad0eafafb7bafe67dd32b29870ff09bb2aab9cd49f389cfe561
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 23:59:34 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:29 GMT
vary: Accept-Encoding
etag: W/"62d96959-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 30801
expires: Mon, 12 Dec 2022 23:59:34 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7771b2029fa40afa-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a5bdd65780397c16e1f11d2144025fed
7631c404b4f9bcb38d95ef6527de5b9ca8104579
bc8cdd03ed2e87ad1405c91f28d8d6a3b88972f75756e531e854165111b07ecd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a5bdd65780397c16e1f11d2144025fed
7631c404b4f9bcb38d95ef6527de5b9ca8104579
bc8cdd03ed2e87ad1405c91f28d8d6a3b88972f75756e531e854165111b07ecd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a5bdd65780397c16e1f11d2144025fed
7631c404b4f9bcb38d95ef6527de5b9ca8104579
bc8cdd03ed2e87ad1405c91f28d8d6a3b88972f75756e531e854165111b07ecd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a5bdd65780397c16e1f11d2144025fed
7631c404b4f9bcb38d95ef6527de5b9ca8104579
bc8cdd03ed2e87ad1405c91f28d8d6a3b88972f75756e531e854165111b07ecd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a5bdd65780397c16e1f11d2144025fed
7631c404b4f9bcb38d95ef6527de5b9ca8104579
bc8cdd03ed2e87ad1405c91f28d8d6a3b88972f75756e531e854165111b07ecd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:59:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p.simg.uol.com.br/out/pagseguro/i/botoes/doacoes/120x53-doar-azul.gif
200.147.4.57200 OK 2.6 kB URL HTTP/2 p.simg.uol.com.br/out/pagseguro/i/botoes/doacoes/120x53-doar-azul.gif
IP 200.147.4.57:0
ASN #7162 Universo Online S.A.
File type GIF image data, version 89a, 120 x 53\012- data
Hash a376f025a8ea2f503dcc1c8f25ceed18
058e07317203aa6cece4e71804999790faf75a96
dd82e7970585c3b9801010025b919a85663b88ff508234a17b1efe84ab900726
GET /out/pagseguro/i/botoes/doacoes/120x53-doar-azul.gif HTTP/1.1
Host: p.simg.uol.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 23:59:34 GMT
content-type: image/gif
content-length: 2602
last-modified: Tue, 06 Aug 2013 23:46:58 GMT
etag: "a2a-4e3500a632080"
cache-control: max-age=86400
expires: Sat, 10 Dec 2022 00:48:41 GMT
x-varnish: 926072486 916903389
age: 83454
x-cache: HIT
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!ma1iuv8bfn3d&lm=0&ts=1670630373792&dn=TC&iso=0&ct=Rmvb%20Mediafire&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&cu=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ma1iuv8bfn3d&lm=0&ts=1670630373792&dn=TC&iso=0&ct=Rmvb%20Mediafire&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&cu=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ma1iuv8bfn3d&lm=0&ts=1670630373792&dn=TC&iso=0&ct=Rmvb%20Mediafire&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&cu=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 09 Dec 2022 23:59:35 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!ma1iuv8bfn3d&lm=0&ts=1670630373792&dn=TC&iso=0&ct=Rmvb%20Mediafire&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&cu=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ma1iuv8bfn3d&lm=0&ts=1670630373792&dn=TC&iso=0&ct=Rmvb%20Mediafire&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&cu=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ma1iuv8bfn3d&lm=0&ts=1670630373792&dn=TC&iso=0&ct=Rmvb%20Mediafire&t=Rmvb%20Mediafire%3A%20Lan%C3%A7amentos&cu=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 09 Dec 2022 23:59:35 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:27 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: bd60645756644cd08eccccd8473a52cb
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:28 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 0bdf62cebc974293be764b2c9053a9ae
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&j=
141.101.120.10200 OK 0 B URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&j=
IP 141.101.120.10:0
GET /i/?l=http%3A%2F%2Frmvb-mediafire.blogspot.com%2Fsearch%2Flabel%2FLan%25C3%25A7amentos&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 23:59:27 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Sat, 10-Dec-2022 01:22:47 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sat, 10-Dec-2022 03:59:27 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1670630367; Domain=dtscout.com; Expires=Sun, 19-Mar-2023 23:59:27 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.433
expires: Fri, 09 Dec 2022 23:59:26 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Rp1Z%2FycgIBtYn14Qcj5RPZRLo%2FRygc3RVeGSKCxyqdt%2FqO%2Fpz4Pm3TVJKkZ3kg9S8BHoYQnvysWRLA%2FROsZ%2BmuckyG6MpV%2F4A1NX9LCHN38h%2FViu98u2zWJGhguCbQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7771b1d5a97e1685-ARN
content-encoding: br
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:27 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: fab80bf118b34c619db1f32c1e3464da
X-Firefox-Spdy: h2
rmvb-mediafire.blogspot.com/search/label/img/blank.gif
142.250.74.161404 Not Found 0 B URL HTTP/1.1 rmvb-mediafire.blogspot.com/search/label/img/blank.gif
IP 142.250.74.161:0
GET /search/label/img/blank.gif HTTP/1.1
Host: rmvb-mediafire.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rmvb-mediafire.blogspot.com/search/label/Lan%C3%A7amentos
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 09 Dec 2022 23:59:27 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 21656
Server: GSE
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:27 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: df557c7e0f204f008a4f438519dc628d
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:29 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 79c7798707c84717847414f932ad0893
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rmvb-mediafire.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 09 Dec 2022 23:59:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 6c96a850761c48a5bfa36870736ab435
X-Firefox-Spdy: h2