showsefestasdefortaleza.blogspot.com.br/2012/11/natiruts-2212-na-biruta.html
142.250.74.161302 Moved Temporarily 215 B URL HTTP/1.1 showsefestasdefortaleza.blogspot.com.br/2012/11/natiruts-2212-na-biruta.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 8c32de67603c9712c987efea810da900
94c850c10f62dca6bf9601fca43c832e52f5d484
d172162da0a03d7983195cc009627273f0e156219eb8510a5e85ba346dcc98dc
GET /2012/11/natiruts-2212-na-biruta.html HTTP/1.1
Host: showsefestasdefortaleza.blogspot.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://showsefestasdefortaleza.blogspot.com/2012/11/natiruts-2212-na-biruta.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 08 Oct 2022 20:13:42 GMT
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 215
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1273d41c84b2b39f78a8033130d00282
556757697b70e019ed502585fcc888e2403f3229
ee3c03cc0a659fbc43d34feaa79a8ad6627b9c525d675956cdb434c1590db89e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE3C03CC0A659FBC43D34FEAA79A8AD6627B9C525D675956CDB434C1590DB89E"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2412
Expires: Sat, 08 Oct 2022 20:53:54 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 08 Oct 2022 19:38:24 GMT
Expires: Sat, 08 Oct 2022 20:23:37 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 52TYFeItrsPsrQSasjMah27tjfHoz9_5uaBU-_PU_z87Atpk6LMDow==
Age: 2118
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7cba6aada5c0a04c1c0644769c09f64e
ed02f174a9b718951911343af8ec181c6d205b1d
ba863e734d5d38ed160758ab0b09d1b0f44fc795dcbcee4199329b011fcd1bd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA863E734D5D38ED160758AB0B09D1B0F44FC795DCBCEE4199329B011FCD1BD1"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2260
Expires: Sat, 08 Oct 2022 20:51:22 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0+goCWafTCgqe29e5XsYJUg0mN76YNnIZXUivro+02rSShL0rZnVtTz0kBOpTKXLFrEQRzgrchk=
x-amz-request-id: JYP211PQFGFMH0MR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 19:31:46 GMT
age: 2516
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:13:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
showsefestasdefortaleza.blogspot.com/2012/11/natiruts-2212-na-biruta.html
142.250.74.161404 Not Found 12 kB URL HTTP/1.1 showsefestasdefortaleza.blogspot.com/2012/11/natiruts-2212-na-biruta.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4355)
Hash 6ce7119a03208b5d35a364ef115397c3
0fe9b5548e4b189f4b62226d7b3bca293b701b7a
d59c8a22e1895537b59264ba84876db54916f2137e418daa48355bf9452b7f45
GET /2012/11/natiruts-2212-na-biruta.html HTTP/1.1
Host: showsefestasdefortaleza.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 12043
Server: GSE
fonts.googleapis.com/css?family=Marck+Script|Pinyon+Script|Kristi|Salsa
142.250.74.10200 OK 579 B URL HTTP/1.1 fonts.googleapis.com/css?family=Marck+Script|Pinyon+Script|Kristi|Salsa
IP 142.250.74.10:0
Hash 2d504ea236513079d642c2d69441056c
20782137eedf1b6d3461d83330c598ded5cf621f
63c1a1a3eceedce01d9b97c230a99631cacdf92a3bf7e08ef089d033ce7c03fe
GET /css?family=Marck+Script|Pinyon+Script|Kristi|Salsa HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Play
142.250.74.10200 OK 491 B URL HTTP/1.1 fonts.googleapis.com/css?family=Play
IP 142.250.74.10:0
Hash 3c43f0e35ba0dd7c285c9a944c6806b8
ca3623e20c4f87d417d33cccd7205690667a53b1
816126c63accc6307e641c06e3f24ba4a0df257324bc6e56ac565a88f9e717d7
GET /css?family=Play HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Marvel
142.250.74.10200 OK 261 B URL HTTP/1.1 fonts.googleapis.com/css?family=Marvel
IP 142.250.74.10:0
Hash 02ae9248e6dd3036c02e80e3473516df
53e74b83177d34d91768ab2c82243d8b3de12280
8cdf4835c9b27146dfbcce57b7da7e3f63f5bcb71f7425b8d83020187a3534f5
GET /css?family=Marvel HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Marck+Script|Pinyon+Script
142.250.74.10200 OK 509 B URL HTTP/1.1 fonts.googleapis.com/css?family=Marck+Script|Pinyon+Script
IP 142.250.74.10:0
Hash e5b1376b827d7bc495546a6f09c2edc8
359902e74029bd2c9d655709f4d41496f403cb3a
2aeee93ec21e147437546548bc10681124dacc8649c735f0fde6a37557690fbf
GET /css?family=Marck+Script|Pinyon+Script HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Lobster
142.250.74.10200 OK 475 B URL HTTP/1.1 fonts.googleapis.com/css?family=Lobster
IP 142.250.74.10:0
Hash 11b42bb2b41a38de996516693aae0a82
43f4ef56713050f19588ec2f21e9548ad458ab54
523314ef4bde5c970a60ca92fabea3f0b038e5f3efbec6e0e536d99ea101ae0f
GET /css?family=Lobster HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Shadows+Into+Light
142.250.74.10200 OK 293 B URL HTTP/1.1 fonts.googleapis.com/css?family=Shadows+Into+Light
IP 142.250.74.10:0
Hash c0a373af9d19a4513a84e932ae335bbc
d9b073f8896d6dbd42e7c63a990ee3ec4d3bd1a5
1e9e766c84d5eacfdccc15d52ab367c2c1b143d16dee041c5715c15e25ea912b
GET /css?family=Shadows+Into+Light HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/data-post.js
date: Sat, 08 Oct 2022 20:13:42 GMT
server: envoy
x-dropbox-request-id: 8592ba2165d64d25bda663de166d56e5
content-length: 0
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/blogger.js
date: Sat, 08 Oct 2022 20:13:42 GMT
server: envoy
x-dropbox-request-id: 5a15b900e0034568809fb79fedf3511a
content-length: 0
dl.dropbox.com/u/53952260/paginas-numeros.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/paginas-numeros.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/53952260/paginas-numeros.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/paginas-numeros.js
date: Sat, 08 Oct 2022 20:13:42 GMT
server: envoy
x-dropbox-request-id: 3065e7148dd64ccebc9068583ed65e65
content-length: 0
fonts.googleapis.com/css?family=Droid+Sans:bold
142.250.74.10200 OK 278 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Sans:bold
IP 142.250.74.10:0
Hash 5d566a8e9e9aba2a075c6eb8caafc3e7
87b7cab3979cc2710132458e96f038c14c7aef2b
68940e03b372fea71a28540959d3daf418d98bbcebf342ac51b789d7abf5a7e6
GET /css?family=Droid+Sans:bold HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Raleway:100
142.250.74.10200 OK 493 B URL HTTP/1.1 fonts.googleapis.com/css?family=Raleway:100
IP 142.250.74.10:0
Hash 66cd89b3a816026bec97d432135c9707
58f140e40bce93063decc23c7d67d24ff55a75c7
bcf76f390e80767af8ff2f3bb046cefa3eb087d359c8ea65005ffa2656e56765
GET /css?family=Raleway:100 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Droid+Serif:bold
142.250.74.10200 OK 279 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Serif:bold
IP 142.250.74.10:0
Hash 043942583e9f4b9c059124714a741b43
0caae8318397cfd07dce018498f0a52923094dfa
d8f0bd3ef278b2282a8f7f3bd5138eb6a201e3f0b7b3138ab9797edcab7e1883
GET /css?family=Droid+Serif:bold HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 20:13:42 GMT
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
showsefestasdefortaleza.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 showsefestasdefortaleza.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: showsefestasdefortaleza.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/2012/11/natiruts-2212-na-biruta.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 08 Oct 2022 20:13:42 GMT
Expires: Sat, 15 Oct 2022 20:13:42 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 08 Oct 2022 17:54:15 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 576dff3f51fb577a974b8574e3343d1d
420b63b52c471c5970a6b593af6ae8b7127e8790
766d959e933ff94300512f473478e363f1c7f98fad962e06c5c58561cc14212f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
142.250.74.74200 OK 27 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (820)
Hash 88ed7d5a26ffff39cbae41fa7b2c615d
5ea49f5aeeb49e8abd640da2f6d657fb57cc5acc
52943bd40a595c39f84e23ddd74755daa4d013b55c709de9b312661e59103ab3
GET /ajax/libs/jquery/1.4.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 27266
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 03:46:47 GMT
expires: Fri, 06 Oct 2023 03:46:47 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 232015
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash db1496a3233f5e2f64e00baa85e8daef
8454c6a6eeef5f3a6c4dfa726e11acb757f00a9f
c0c754d67704651fe9819ebac2a04065c973e51586e5d9a68d8c97eb7d5a6282
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash db1496a3233f5e2f64e00baa85e8daef
8454c6a6eeef5f3a6c4dfa726e11acb757f00a9f
c0c754d67704651fe9819ebac2a04065c973e51586e5d9a68d8c97eb7d5a6282
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Sat, 08 Oct 2022 20:13:42 GMT
expires: Sat, 08 Oct 2022 20:13:42 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 71ebaa827e71d7f914a2383f85b64d11
42e8cfa3eb7b8231a1e94b783d7c980e89fa813c
67e70369ad2df3a0f96fbc15ead06e744673483b366d52520cd41b119e5ce323
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6190
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Last-Modified: Sat, 08 Oct 2022 18:30:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 71ebaa827e71d7f914a2383f85b64d11
42e8cfa3eb7b8231a1e94b783d7c980e89fa813c
67e70369ad2df3a0f96fbc15ead06e744673483b366d52520cd41b119e5ce323
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4429
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Last-Modified: Sat, 08 Oct 2022 18:59:53 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 71ebaa827e71d7f914a2383f85b64d11
42e8cfa3eb7b8231a1e94b783d7c980e89fa813c
67e70369ad2df3a0f96fbc15ead06e744673483b366d52520cd41b119e5ce323
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6190
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Last-Modified: Sat, 08 Oct 2022 18:30:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
s11.histats.com/js9.js
46.105.201.240200 OK 4.5 kB IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11188), with no line terminators
Hash cd1f819b786255cf1b19e7a77728c6ba
cc152f55dc4aa7dadec9aa1f007e162a44ac1d0e
7f678fea6943e587e0cae445b271167e9280a1ed9aab004d1e309b35fd5ffabc
GET /js9.js HTTP/1.1
Host: s11.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
date: Sat, 08 Oct 2022 20:13:11 GMT
etag: "421254336"
last-modified: Thu, 16 Apr 2020 10:44:17 GMT
x-request-id: 214468190
content-type: text/javascript
content-length: 4451
content-encoding: gzip
vary: Accept-Encoding
cache-control: max-age=300
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:1800_2E69C9F0:0050_6341D9F6_1260AC:175BB
x-iplb-instance: 42305
www.blogger.com/static/v1/widgets/829820975-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/829820975-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash b18547f3bc01f36c7dd3a6b6082feeb0
ca60d4a2bcd171bfe918249742cfde4223f0ba00
7666d4f1e68fda03543de42ac22d422822013499d6937cc08ae884bfdef3688b
GET /static/v1/widgets/829820975-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56806
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 02:07:50 GMT
expires: Thu, 05 Oct 2023 02:07:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2022 00:52:39 GMT
content-type: text/javascript
age: 324352
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.201200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.201:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 04:43:17 GMT
expires: Thu, 05 Oct 2023 04:43:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 12:57:07 GMT
content-type: text/css
age: 315025
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 19:29:41 GMT
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 20:23:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AP8MDGidHpQGgMReLf0jhEG-ecdCbgh-a9ZXPfnSkJJTmQP1sJa_SQ==
Age: 2641
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2572d18191197adee9bf6ff2bb37fac1
6f5046cc7bcd9ec40c64a8ecc47744734baaabe4
680cfd86a480836cf6f38fe727412b5d5d13ab89d49ba37f29407c6176783da3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5479444ef227af03029fbb9d154f0107
0563678ec07ab3707b716ca4c638ece4c8ad7de4
4850d49786a140003b90ae108104ffbfe80a6e0d9f584656a09f0fff11dc9d0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6213
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:43 GMT
Last-Modified: Sat, 08 Oct 2022 18:30:10 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
4.bp.blogspot.com/-X-U5feTHMlo/Tf8oTQnxOxI/AAAAAAAAAJM/kiDCki4Noak/s1600/facebook.png
142.250.74.161200 OK 1.2 kB URL HTTP/1.1 4.bp.blogspot.com/-X-U5feTHMlo/Tf8oTQnxOxI/AAAAAAAAAJM/kiDCki4Noak/s1600/facebook.png
IP 142.250.74.161:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash df6f71bbde40ec7ba578ffe6b2700b3a
f1784c3cf61dff868bfe28b5b9b6c94b0ce74a20
f061b00e6cb2661c79bdebb1cf33b8c4c063a32d3ecd358bc6e19c36502760ab
GET /-X-U5feTHMlo/Tf8oTQnxOxI/AAAAAAAAAJM/kiDCki4Noak/s1600/facebook.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="facebook.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1153
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 20:13:43 GMT
Expires: Sun, 09 Oct 2022 13:23:26 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v93"
Content-Type: image/png
Age: 0
3.bp.blogspot.com/-e0dYZJREPlI/Tf8oThdvBqI/AAAAAAAAAJU/18v1ilCQ-IY/s1600/twitter.png
142.250.74.161200 OK 1.2 kB URL HTTP/1.1 3.bp.blogspot.com/-e0dYZJREPlI/Tf8oThdvBqI/AAAAAAAAAJU/18v1ilCQ-IY/s1600/twitter.png
IP 142.250.74.161:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash bb2e1028db52ab3ea27d6b208e553966
bab86921a09a80fbd256d0ac81b913c1f5e00088
89a5a44ecf6d76334bc04d7d19c4acff382d2d094a97d84eca0fd2c6bec23d9d
GET /-e0dYZJREPlI/Tf8oThdvBqI/AAAAAAAAAJU/18v1ilCQ-IY/s1600/twitter.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="twitter.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1183
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 20:13:43 GMT
Expires: Sun, 09 Oct 2022 13:23:26 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v95"
Content-Type: image/png
Age: 0
1.bp.blogspot.com/-1bvpdnN4MI4/Tf8oTEKvPKI/AAAAAAAAAJE/0NAQ-sLkAJQ/s1600/rss.png
142.250.74.161200 OK 1.5 kB URL HTTP/1.1 1.bp.blogspot.com/-1bvpdnN4MI4/Tf8oTEKvPKI/AAAAAAAAAJE/0NAQ-sLkAJQ/s1600/rss.png
IP 142.250.74.161:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash bac29629d2b8bd521428f0f502011f86
469f50c69906d2588554935d0ef8ef3e1700a4e4
93c2effcbf7e12461ffaf5f6083f4c8e7845661b118e6c8dd740f41e14feb0c6
GET /-1bvpdnN4MI4/Tf8oTEKvPKI/AAAAAAAAAJE/0NAQ-sLkAJQ/s1600/rss.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="rss.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1460
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 20:13:43 GMT
Expires: Sat, 08 Oct 2022 05:11:14 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v91"
Content-Type: image/png
Age: 0
3.bp.blogspot.com/-DWj3nJEWqDI/Tzxzh-rFLPI/AAAAAAAAAUY/5oRZ82T3tkY/s1600/SFF.jpg
142.250.74.161200 OK 112 kB URL HTTP/1.1 3.bp.blogspot.com/-DWj3nJEWqDI/Tzxzh-rFLPI/AAAAAAAAAUY/5oRZ82T3tkY/s1600/SFF.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 985x222, components 3\012- data
Size 112 kB (111711 bytes)
Hash f840c1e255df932d6a781cd3b0f7c37d
cd38f9843d132a2cf8be056c933fa2a4a59d7cc8
49c4ce2c4d040ad44669b98b83fcf34725781b292645f035740852931e0f911f
GET /-DWj3nJEWqDI/Tzxzh-rFLPI/AAAAAAAAAUY/5oRZ82T3tkY/s1600/SFF.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v146"
Expires: Sun, 09 Oct 2022 20:13:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SFF.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:13:43 GMT
Server: fife
Content-Length: 111711
X-XSS-Protection: 0
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XkbJBgyU7mtiTKQQ5veJsQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GSKgt5EjDw1Lkx91Q4jxoMHzQVo=
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.211.2200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.211.2:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 07:11:12 GMT
Expires: Sat, 22 Oct 2022 07:11:12 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 46951
2.bp.blogspot.com/-bc5XqZfTEqo/ThyjPB6DPsI/AAAAAAAAAbY/RO60uxY98Gg/s1600/searc.png
142.250.74.161200 OK 906 B URL HTTP/1.1 2.bp.blogspot.com/-bc5XqZfTEqo/ThyjPB6DPsI/AAAAAAAAAbY/RO60uxY98Gg/s1600/searc.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9981f9d77138cb3a11a864a15ea437ca
e461ce2cd7917b6bcb8f27c00e25a2232b05d07c
d35060a90a72497e2b6518fc42c47290e2aa3f2e2bfa07898f8da9b941ef1a2e
GET /-bc5XqZfTEqo/ThyjPB6DPsI/AAAAAAAAAbY/RO60uxY98Gg/s1600/searc.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="searc.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 906
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 19:19:57 GMT
Expires: Sat, 01 Oct 2022 20:04:55 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 3226
ETag: "v1b6"
Content-Type: image/png
3.bp.blogspot.com/-5ulk0p55We8/TtU737kgthI/AAAAAAAAE_I/TzxKypIbvOs/s1600/h2.jpg
142.250.74.161200 OK 4.5 kB URL HTTP/1.1 3.bp.blogspot.com/-5ulk0p55We8/TtU737kgthI/AAAAAAAAE_I/TzxKypIbvOs/s1600/h2.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 339x40, components 3\012- data
Hash d21983e87f889682ba87b0414f0b2a1f
c173efa8ecb40def1054a56790a52c4bd693416c
606673aef4e3b9f11567ef67ba67d02efafd124ae8d5acf3db522a91cf610dee
GET /-5ulk0p55We8/TtU737kgthI/AAAAAAAAE_I/TzxKypIbvOs/s1600/h2.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v13f2"
Expires: Sun, 09 Oct 2022 20:13:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="h2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:13:43 GMT
Server: fife
Content-Length: 4469
X-XSS-Protection: 0
fonts.gstatic.com/s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
216.58.207.195200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16296, version 1.0\012- data
Hash ab4a2c11e0a08a8b4fa7846c2adcc173
86304ab63791be3a22e5eb673245bca6351774a2
2498c027559c4ae9a920e18e30031193148983e7ea195416d62c5d0ea2eaa3ac
GET /s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://showsefestasdefortaleza.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16296
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 06 Oct 2022 13:10:25 GMT
Expires: Fri, 06 Oct 2023 13:10:25 GMT
Cache-Control: public, max-age=31536000
Age: 198198
Last-Modified: Wed, 27 Apr 2022 15:55:58 GMT
Content-Type: font/woff2
1.bp.blogspot.com/-GmPZ_iv-xOg/TtU6QNWNiDI/AAAAAAAAE-8/ZJ0ijkomN2M/s1600/content.jpg
142.250.74.161200 OK 11 kB URL HTTP/1.1 1.bp.blogspot.com/-GmPZ_iv-xOg/TtU6QNWNiDI/AAAAAAAAE-8/ZJ0ijkomN2M/s1600/content.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 969x129, components 3\012- data
Hash 31a9b32e4542f8cb5cbcbb33cab2bdee
45cc9c4a945be3b0ef0bc0af10d493d60dcd5d27
b01001529f39b1f4e66b6f161513839be93283ee82a4ff041f12b9a2c8123782
GET /-GmPZ_iv-xOg/TtU6QNWNiDI/AAAAAAAAE-8/ZJ0ijkomN2M/s1600/content.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v13ef"
Expires: Sun, 09 Oct 2022 20:13:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="content.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:13:43 GMT
Server: fife
Content-Length: 10924
X-XSS-Protection: 0
dl.dropbox.com/u/53952260/paginas-numeros.js
162.125.71.15404 Not Found 4.8 kB URL HTTP/2 dl.dropbox.com/u/53952260/paginas-numeros.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash acfbe9bcd02771ccc3fbe7c9c19465cc
7cbceb84aeea924d3c87ee04bc621c49b35ba399
db649f3b2426dc6b0cd03cfe32558c00f0161d8d7693fb8298bf639994ae7ad7
GET /u/53952260/paginas-numeros.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:42 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 32635760bb6a4650a0dae9d37a7c168c
X-Firefox-Spdy: h2
1.bp.blogspot.com/-wgmQJcf5Wbg/TtUup2NyIqI/AAAAAAAAE90/V8JKgI53ByE/s1600/body.jpg
142.250.74.161200 OK 1.2 kB URL HTTP/1.1 1.bp.blogspot.com/-wgmQJcf5Wbg/TtUup2NyIqI/AAAAAAAAE90/V8JKgI53ByE/s1600/body.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 69x206, components 3\012- data
Hash ac61953ecc5d366aa1a121f66ef65b77
a83957f732d041e9669e9ed6fd5cbbd9ee225973
558bedbd28a76b929c99774a015f11e3656e51559ce92ab3ae569e24ca483bb3
GET /-wgmQJcf5Wbg/TtUup2NyIqI/AAAAAAAAE90/V8JKgI53ByE/s1600/body.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v13dd"
Expires: Sun, 09 Oct 2022 20:13:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="body.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:13:43 GMT
Server: fife
Content-Length: 1153
X-XSS-Protection: 0
usuarionovo.com/
216.239.32.21301 Moved Permanently 223 B IP 216.239.32.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash d51ed608dd0a8507668bec707634bd5b
0d3464fd0afecbaa2a513a42cdd3ef7cf589c600
8533a52a734acaa7095680fba274af4e25b6fcc8aef0b0e1059eed286670da16
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: usuarionovo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: http://www.usuarionovo.com
Date: Sat, 08 Oct 2022 20:13:44 GMT
Content-Type: text/html; charset=UTF-8
Server: ghs
Content-Length: 223
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 4.7 kB URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
Hash e5ce0594ca471840c296694a4982b6e1
ad5d6b789c30649465966c75515f87c0194df1b8
c3fcadae20a0700bb3027954f73165fd5bf5b190fd74c6138d1289b052e0afb0
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:42 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 9f81efee21f9486cb53c795a672e8f30
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D454836335008887580%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://showsefestasdefortaleza.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D454836335008887580%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://showsefestasdefortaleza.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
216.58.207.237302 Found 473 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D454836335008887580%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://showsefestasdefortaleza.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D454836335008887580%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://showsefestasdefortaleza.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (514)
Hash 9863867a9aaf752edc5c19683c8d0cdf
57bba9addcfb47b731f1d9fc67921c448bd5f25c
e21cda12427155eb0898c385382029c3bd28c73774e90254fae2c4d893e9449d
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D454836335008887580%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://showsefestasdefortaleza.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D454836335008887580%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://showsefestasdefortaleza.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://www.blogger.com/followers.g?blogID=454836335008887580&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByM4RjMxMTAqByNGRkZGRkYyByMwMDAwMDA6ByMzMzMzMzNCByM4RjMxMTBKByNmZmZmZmZSByM4RjMxMTBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fshowsefestasdefortaleza.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-ndwu2hn0JWEibzFIEPwOaw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 473
server: GSE
set-cookie: __Host-GAPS=1:f6TBuNmpmovUJm2jgDhmK9iZlatwxw:AanFD0jE6twLpuZI;Path=/;Expires=Mon, 07-Oct-2024 20:13:44 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-ccOGMI4nBBk/TtU8ajMrs7I/AAAAAAAAE_U/Ni9uhnciuwg/s1600/footer.jpg
142.250.74.161200 OK 6.2 kB URL HTTP/1.1 1.bp.blogspot.com/-ccOGMI4nBBk/TtU8ajMrs7I/AAAAAAAAE_U/Ni9uhnciuwg/s1600/footer.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 969x38, components 3\012- data
Hash 118720b7caccbc6376cf8b958612f160
33177e6be41799037f0bd6b49bf69564765b2c7d
59351064124d0233ddbb71c9ce8eebef4a29a56f09c7a0687a372a4c8eca4e4a
GET /-ccOGMI4nBBk/TtU8ajMrs7I/AAAAAAAAE_U/Ni9uhnciuwg/s1600/footer.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v13f5"
Expires: Sun, 09 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="footer.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:13:44 GMT
Server: fife
Content-Length: 6216
X-XSS-Protection: 0
1.bp.blogspot.com/-Y8S5Ayex_98/TtWMihzLjuI/AAAAAAAAE_s/ZjsEuzepwZA/s1600/wrapper.jpg
142.250.74.161200 OK 46 kB URL HTTP/1.1 1.bp.blogspot.com/-Y8S5Ayex_98/TtWMihzLjuI/AAAAAAAAE_s/ZjsEuzepwZA/s1600/wrapper.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1400x287, components 3\012- data
Hash 53b7d49a564e617cac474c44727c67d5
59ac4063374bce0d50e9234121775ffbefd52e08
5cf861cf75e237761ea4db5386677864ef35307eb4181d4ff3ad6c82e7552a4a
GET /-Y8S5Ayex_98/TtWMihzLjuI/AAAAAAAAE_s/ZjsEuzepwZA/s1600/wrapper.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v13fb"
Expires: Sun, 09 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="wrapper.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:13:44 GMT
Server: fife
Content-Length: 46311
X-XSS-Protection: 0
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 8.5 kB URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash 49f2c9be2d0d1aff5b5fd798769bb767
1478670e50823a93051baa87ca9721573b916d57
3de555ff5be07eb145ca1e9ae7065e387b2d669e76595b378a88d89dda7c7f2b
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:43 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 1f868e1c33d04f6da8339cb87e4157ba
X-Firefox-Spdy: h2
www.usuarionovo.com/
142.250.74.179200 OK 2.9 kB IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (482)
Hash 582958e09009f99cc72caebc68a60ea6
1f862a0e1f6ccc2f631947967d8064ce3f7cd254
67ab312db0f42321c7f4279de64187c7a20f41688291963c009299434bdab4e8
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.usuarionovo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 08 Oct 2022 20:13:44 GMT
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 11 Dec 2021 08:59:35 GMT
ETag: W/"8859db95c1d07557fc2ef62c794d66e441d9f17fec19a9fa8a342623ae2572c3"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 2904
Server: GSE
www.google.com/images/errors/logo_sm.gif
142.250.74.164200 OK 2.5 kB URL HTTP/1.1 www.google.com/images/errors/logo_sm.gif
IP 142.250.74.164:0
File type GIF image data, version 89a, 150 x 55\012- data
Hash bba57d2d103b1d0e5154e3c679dd33ff
9dc3b698fd3bea6f89ef4cbec6b2a588f0c774d6
4feb114e1eda3a4854d652c2cd2afeabff0f438ed4822c5a1b968772a5c2cb5b
GET /images/errors/logo_sm.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.usuarionovo.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 2510
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 05 Oct 2022 04:23:31 GMT
Expires: Thu, 05 Oct 2023 04:23:31 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 22 Oct 2019 18:30:00 GMT
Content-Type: image/gif
Age: 316213
www.usuarionovo.com/js/cookienotice.js
142.250.74.179200 OK 2.0 kB URL HTTP/1.1 www.usuarionovo.com/js/cookienotice.js
IP 142.250.74.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: www.usuarionovo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.usuarionovo.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 08 Oct 2022 20:13:44 GMT
Expires: Sat, 15 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 08 Oct 2022 17:54:15 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
showsefestasdefortaleza.blogspot.com/favicon.ico
142.250.74.161200 OK 956 B URL HTTP/1.1 showsefestasdefortaleza.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash e310017da7b23d1718df840ca72c31f7
d5bd0d9a58b21430c72bde099f4374a12a9b8a7a
2e56ea8cea9a12066fa8d4a0a450dbf43b9d83031d094efe8770161511167dde
GET /favicon.ico HTTP/1.1
Host: showsefestasdefortaleza.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/2012/11/natiruts-2212-na-biruta.html
Cookie: HstCfa996515=1665260023811; HstCla996515=1665260023811; HstCmu996515=1665260023811; HstPn996515=1; HstPt996515=1; HstCnv996515=1; HstCns996515=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 08 Oct 2022 20:13:44 GMT
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 13 Dec 2021 17:19:43 GMT
ETag: W/"859559b8800b2a410a22e7566fe74f2f1c1f44975f29adfd591fbe874bd3e99f"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 956
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b077983926dc9d544f1069eb76b4ce2
e1be008a1605ef4c449ae320fb17ce56bd238802
2b86de106d6dbde3cfda7280a50d2db76009e54f91f300a876e0cf69dcf8173c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2B86DE106D6DBDE3CFDA7280A50D2DB76009E54F91F300A876E0CF69DCF8173C"
Last-Modified: Sat, 08 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12986
Expires: Sat, 08 Oct 2022 23:50:10 GMT
Date: Sat, 08 Oct 2022 20:13:44 GMT
Connection: keep-alive
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 8.3 kB URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23665)
Hash 5dd86736af15acfe2508c9ff0965c2c5
c32bfa54c368c7b9cd81c03e63fa735652bb9049
d4981c9bdf36b1aeae54070b9094c4d94dc043e02b0b4e6c8472e61341460f33
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:43 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 699c6137459044c9b7281a2e4fbb80a2
X-Firefox-Spdy: h2
www.usuarionovo.com/
142.250.74.179200 OK 2.9 kB IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (482)
Hash 582958e09009f99cc72caebc68a60ea6
1f862a0e1f6ccc2f631947967d8064ce3f7cd254
67ab312db0f42321c7f4279de64187c7a20f41688291963c009299434bdab4e8
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.usuarionovo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 08 Oct 2022 20:13:44 GMT
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 11 Dec 2021 08:59:35 GMT
ETag: W/"8859db95c1d07557fc2ef62c794d66e441d9f17fec19a9fa8a342623ae2572c3"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 2904
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2462
Expires: Sat, 08 Oct 2022 20:54:46 GMT
Date: Sat, 08 Oct 2022 20:13:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2462
Expires: Sat, 08 Oct 2022 20:54:46 GMT
Date: Sat, 08 Oct 2022 20:13:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2462
Expires: Sat, 08 Oct 2022 20:54:46 GMT
Date: Sat, 08 Oct 2022 20:13:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2462
Expires: Sat, 08 Oct 2022 20:54:46 GMT
Date: Sat, 08 Oct 2022 20:13:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcf23b32642f7a82a0a7d734a631bca
9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7
add9aab4427819610f8d693758a752910cf314346e974b7636a82381ab9daa4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4252
x-amzn-requestid: 8d6a225c-6389-4f20-9b90-494841f47c99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1R4GjCIAMFX-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409c0b-4076dc933185d9fd6b68e802;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:37:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Wb1JAlWtR9sSEi_KuYZivvMivSxZjo92LGpWgFppol5zgapK6eQ-dg==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:37:16 GMT
etag: "9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7"
content-type: image/jpeg
age: 81388
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc28ec4d4-ad94-4fbc-83a3-2675118e5987.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc28ec4d4-ad94-4fbc-83a3-2675118e5987.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e282fb952c8c81b3369d747b9fa837c8
038e45c00f7f0c55c4160b6d3fa25fd129ff9ef8
735fd68ef05cdcae00eaeac826b0fb291daad2b35bbad07a8a67745f1799b211
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc28ec4d4-ad94-4fbc-83a3-2675118e5987.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10137
x-amzn-requestid: 23b13773-c294-497d-971c-9fe56f88d5dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1R4Fm9IAMFbbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409c0b-7fc0b69250f718693a8aeec0;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SCuEpmMUuQr6mI-jF6UIRbaVtMYC47MzeNnQLeB5O5XF2PsPrAmL1Q==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:37:16 GMT
etag: "038e45c00f7f0c55c4160b6d3fa25fd129ff9ef8"
content-type: image/jpeg
age: 81388
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5c4757ceb6dce32d0f9d26d5b3df038
d8209d82f61c7a09e00756e5dd32c99bc61af4a8
6aa007279ba4cdea3f772e0601e4082d40ee947ef8cc1201ce0009fb42ca9885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3c3ff89f-8a8c-44ae-981a-0e9adaf7d959
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dSEs8IAMFqFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-6c97b82d137c2f1951270b82;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6wWlD3C6HI9oxa0VAYA6N5afAcUDTQXdO8X31eZUglfdC6jSQo_gew==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 03:29:14 GMT
age: 60270
etag: "d8209d82f61c7a09e00756e5dd32c99bc61af4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6207431ae268d805fb92237925c8fc0
075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87
bb8966bd5b80f1ba6c974925df0610e0a219759ab92df062e135baae02fa0071
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5440
x-amzn-requestid: c9408e3c-29f6-4a53-b09d-0c3f49e99287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp3AzFQ3oAMF_Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409ed1-1da6e8c500879b080c66fdfe;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:49:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bpAfspjZlm1y-CxYtXbhfwPHzcNxLJGVh_j685Z-TvTV-kdRttBjhg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 22:11:50 GMT
etag: "075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87"
content-type: image/jpeg
age: 79314
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bc50d1380ae8fc980ae1cc38f2371c7
be79aecfd7eefa89c409ed743402a292ff0ce6c0
43e015802ba453d4cd79984b53efa8a529ece62760f6693f9daeb2388179201f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6366
x-amzn-requestid: ddcd915d-2606-4243-969e-19fb02b5b6d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1EJGoSIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb3-1c7bd17a2dcdd25e4da6d346;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Cm4uaStVKEsemoOHrc04J9qNysQJoMB7-R8LEzmlRXt47mpXi2NRPA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:50:12 GMT
age: 80612
etag: "be79aecfd7eefa89c409ed743402a292ff0ce6c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Y_VpleudG3M2sQd7mFGVhPvfULiNQl3YY8xuhiTnTE5VIC64O8vqMA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:44:19 GMT
age: 80965
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89a17c02cdf926b852220408f32d6ad4
c22fb94c77a74cfc00d6b2cc88643afa0563abbe
2a4d9286d35271838cb99d265e2c8dbb851fa80ac2ca293571125188e684a7e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89a17c02cdf926b852220408f32d6ad4
c22fb94c77a74cfc00d6b2cc88643afa0563abbe
2a4d9286d35271838cb99d265e2c8dbb851fa80ac2ca293571125188e684a7e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s4.histats.com/stats/996515.php?996515&@f16&@g1&@h1&@i1&@j1665260023811&@k0&@l1&@mShows%20e%20Festas%20de%20Fortaleza&@n0&@o1000&@q0&@r0&@s431&@ten-US&@u1280&@b1:84815969&@b3:1665260024&@b4:js9.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fshowsefestasdefortaleza.blogspot.com%2F2012%2F11%2Fnatiruts-2212-na-biruta.html&@w
192.99.13.63200 OK 107 B URL HTTP/1.1 s4.histats.com/stats/996515.php?996515&@f16&@g1&@h1&@i1&@j1665260023811&@k0&@l1&@mShows%20e%20Festas%20de%20Fortaleza&@n0&@o1000&@q0&@r0&@s431&@ten-US&@u1280&@b1:84815969&@b3:1665260024&@b4:js9.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fshowsefestasdefortaleza.blogspot.com%2F2012%2F11%2Fnatiruts-2212-na-biruta.html&@w
IP 192.99.13.63:0
File type ASCII text, with no line terminators
Hash cedf8033396039f53e750db6a1f855ad
c42dbcfe4922bb2a275ef4b4b97db5329d196980
d8c742c9580618c345ff9f759b616289343e12f1cd941021e2e0878f233bc60d
GET /stats/996515.php?996515&@f16&@g1&@h1&@i1&@j1665260023811&@k0&@l1&@mShows%20e%20Festas%20de%20Fortaleza&@n0&@o1000&@q0&@r0&@s431&@ten-US&@u1280&@b1:84815969&@b3:1665260024&@b4:js9.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fshowsefestasdefortaleza.blogspot.com%2F2012%2F11%2Fnatiruts-2212-na-biruta.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 20:13:44 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 107
Connection: close
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b523949818a5a16753637f9ad58584b
5d31dd0a86b616b95aa2855ced5ddc1b5d088213
6d4dc5c21d9a3ae5f2d4f259250be56bf1852336fa674f9ab926cdd395c1a107
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/s2/photos/public/AIbEiAIAAABDCMGkq6qQu9yhSCILdmNhcmRfcGhvdG8qKDQ1M2Q3MTg4NjgyYTk3NGNlMmVjZWExMTM3NzI5ZTE0ZjgxNDdiYmIwAftKwZzT5NbwhUuq8VNO-YHSmcqF
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCMGkq6qQu9yhSCILdmNhcmRfcGhvdG8qKDQ1M2Q3MTg4NjgyYTk3NGNlMmVjZWExMTM3NzI5ZTE0ZjgxNDdiYmIwAftKwZzT5NbwhUuq8VNO-YHSmcqF
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCMGkq6qQu9yhSCILdmNhcmRfcGhvdG8qKDQ1M2Q3MTg4NjgyYTk3NGNlMmVjZWExMTM3NzI5ZTE0ZjgxNDdiYmIwAftKwZzT5NbwhUuq8VNO-YHSmcqF HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-h-6fCgp_PNOo1thySFosfkjUz8pWnK1TFNnGpxw=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
content-security-policy: script-src 'nonce-bm3QVO5WpQnsbZNzJK3kSg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=hVmXAwAs_jVH6lpMAYMHAFDNOzYo85WQoMz0WLlZlWLOwgL7lHzUnHWCwJyI0J0HVWyAREmDcj-0UMg4Ze5WlrEjhG3baRGz3A0hJ04s1eFvH2-iLte_OktT8QuzFPtT11n0-kj5SYFwGeSzfyR3B8IthNaZc6tJz3TIObZx3UU; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECJL25puowOjX-gEiC3ZjYXJkX3Bob3RvKigzMmU4ODFiMTQ2ZWMzOWNlNzQyNmU3OTk5OWVjOGQ0OTM3ZWUwM2NkMAEWIw0F0L73HfNfRSlz55nXQq4Qhg
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECJL25puowOjX-gEiC3ZjYXJkX3Bob3RvKigzMmU4ODFiMTQ2ZWMzOWNlNzQyNmU3OTk5OWVjOGQ0OTM3ZWUwM2NkMAEWIw0F0L73HfNfRSlz55nXQq4Qhg
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECJL25puowOjX-gEiC3ZjYXJkX3Bob3RvKigzMmU4ODFiMTQ2ZWMzOWNlNzQyNmU3OTk5OWVjOGQ0OTM3ZWUwM2NkMAEWIw0F0L73HfNfRSlz55nXQq4Qhg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu9pjm_vRpCFJnAkPnev8uOo5W81qmtcCI0quFvw6Q=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
content-security-policy: script-src 'nonce-IS8XQLDirp8ZwdwDyo7cEA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=QLGrozOAcNfS2UmtTE3Al7SIlit5qd0cWKltZuP_kQtnqqlekExrd8fw9lVuV3tPGEfMukdWV-O1QN1t-cJSSz-9mBeLj_iIPhDEypdLjBuYkePAQ3WJJqitddBvcdeFONo2QdeKpsA4CWgQygVbbgClW6ymiP5M-JWI_0byDN4; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCJeU386gnIPbESILdmNhcmRfcGhvdG8qKDI3NGIyMjM3YmVhYTVkZWM1NzZiNjQ5ODBmNjczMDFlMmNlNGE0ZjYwASRuYfSjTk_ECUX_bIbnB4t_JWeg
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCJeU386gnIPbESILdmNhcmRfcGhvdG8qKDI3NGIyMjM3YmVhYTVkZWM1NzZiNjQ5ODBmNjczMDFlMmNlNGE0ZjYwASRuYfSjTk_ECUX_bIbnB4t_JWeg
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCJeU386gnIPbESILdmNhcmRfcGhvdG8qKDI3NGIyMjM3YmVhYTVkZWM1NzZiNjQ5ODBmNjczMDFlMmNlNGE0ZjYwASRuYfSjTk_ECUX_bIbnB4t_JWeg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-ZCs3-jHg5_9j_xR6Z1NAL4y43HlGzX-7BehQxl74=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-I8_PlelAhR5RvgzIi4-_zg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=Ep2OU2PcaT4pPvlr-geqSuqnuGhnUBCjERE0SzbotCmrMqvDHVdZzFuymcEpDNDBBiFmhZKvmFASo3YT7gby-nc2w7ZEoPiSRkc3ZVGwTGm80hqV3Ow-OMk5mFGoir4BNXNsmP1NzWUN_gZhLWPamrbIpqr3QOMGyHw56ECiKr4; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCMa3jsmpzNWyDyILdmNhcmRfcGhvdG8qKGEzNjY3ZjEwMjhmMWYyMWQ4YmRhYTE1ODljZGFhNjZmNjNkMDU2ZWIwARVupFh5aWkftw-560mlKAf8qacg
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCMa3jsmpzNWyDyILdmNhcmRfcGhvdG8qKGEzNjY3ZjEwMjhmMWYyMWQ4YmRhYTE1ODljZGFhNjZmNjNkMDU2ZWIwARVupFh5aWkftw-560mlKAf8qacg
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCMa3jsmpzNWyDyILdmNhcmRfcGhvdG8qKGEzNjY3ZjEwMjhmMWYyMWQ4YmRhYTE1ODljZGFhNjZmNjNkMDU2ZWIwARVupFh5aWkftw-560mlKAf8qacg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8F5Pvx1_y521ke7njm_fID-dseSiU1YJ0vCGK0uno=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-5RosILcjVJRocLmKavUS7A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=dJNs-s_QYCMxCF9kLZUYrzrvwVH6Yom9Y9Oe0mexofNjVDiRX3OYcageTAGdam2vi5sWTx4qg7iX2GYe4AOAPNMQTV3c8_hdVlC1R6piTiPLnJYZAV4XrVpCE-J8ftU9oOyuNZQppqJKrC41W9tpNQfIYa1VznjeGWolE5OiKuU; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECK3A3OKn2La9kgEiC3ZjYXJkX3Bob3RvKig4ZGZmZWI2MzQxOGQ1M2Y3NmQ1MDJjYjg3Y2M3YzdjZGQ2ZGE5MDVlMAHdFLUG6sJwdWU0gv3Fe0FtI9INag
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECK3A3OKn2La9kgEiC3ZjYXJkX3Bob3RvKig4ZGZmZWI2MzQxOGQ1M2Y3NmQ1MDJjYjg3Y2M3YzdjZGQ2ZGE5MDVlMAHdFLUG6sJwdWU0gv3Fe0FtI9INag
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECK3A3OKn2La9kgEiC3ZjYXJkX3Bob3RvKig4ZGZmZWI2MzQxOGQ1M2Y3NmQ1MDJjYjg3Y2M3YzdjZGQ2ZGE5MDVlMAHdFLUG6sJwdWU0gv3Fe0FtI9INag HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-32vWTciTfDqxS0uY9MtDp9ed47dDGF5ooETc0=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-dVIKSEeTLZhBEcQ5hnQfsQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=n5ePEWtz8b2Awq1_lxOY_wQvj0BdxK9v7yd7gFIC0Y_d1LEMo3Ukw7B4aDWv7MLs1pkjAhZ04D4j_zMD1dlYySs8BV-C6vyh7fa44RLY8H6TV7iyLvnEKmCz-xRtdGKGyjglA2rruwJ2PIHwaGUFs4s5evf8u5lmhP_BrZC8ea4; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECMXDqKntqIruhgEiC3ZjYXJkX3Bob3RvKigwNmQ0YTY2OWUxNDFlZjllYWFjMTQwYWViNGE3MDFjYjk0NmIxMzRiMAH7AVtEEzaVOKXA15CNMY3yL4OAqQ
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECMXDqKntqIruhgEiC3ZjYXJkX3Bob3RvKigwNmQ0YTY2OWUxNDFlZjllYWFjMTQwYWViNGE3MDFjYjk0NmIxMzRiMAH7AVtEEzaVOKXA15CNMY3yL4OAqQ
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECMXDqKntqIruhgEiC3ZjYXJkX3Bob3RvKigwNmQ0YTY2OWUxNDFlZjllYWFjMTQwYWViNGE3MDFjYjk0NmIxMzRiMAH7AVtEEzaVOKXA15CNMY3yL4OAqQ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu90wZSkOpjox2BG4Vr2rM0goApzXcX9daAJ9fPh=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-SYfmR2n1n3ZiWsbNyFGpsg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=LlTdKOZp1VKQQF98rHrw6ZjnJesY6xklFDmw2v6VkIrc8MtbO8c13jnX915ilw4GyAr1Oxx2gAWmjfBTC6BH5X5LHbvwnpPDx9kJNcWxZPrzzuk1WZVTXnWCBieiRKVYNabYejbWOpjtTnvIn1b_Nj15Z68PXzMUTDswEcjk7zQ; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECIqGxpajwMLvtQEiC3ZjYXJkX3Bob3RvKig4NjdkNTFjODE0NjNkNmQ3MDEyNTAxMzkxY2I4MmRlZDczMjNiZWI4MAHHjyMOz8xkTNUAibasXpE9XR6JGQ
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECIqGxpajwMLvtQEiC3ZjYXJkX3Bob3RvKig4NjdkNTFjODE0NjNkNmQ3MDEyNTAxMzkxY2I4MmRlZDczMjNiZWI4MAHHjyMOz8xkTNUAibasXpE9XR6JGQ
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECIqGxpajwMLvtQEiC3ZjYXJkX3Bob3RvKig4NjdkNTFjODE0NjNkNmQ3MDEyNTAxMzkxY2I4MmRlZDczMjNiZWI4MAHHjyMOz8xkTNUAibasXpE9XR6JGQ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8wkSyeyR8turFcfTS3qNkvoqPBklhm6G6PbDXt=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-osFSLUfz1eUTaOWY27ICZw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=aqqPsr2GcwZm224zMFN4Tww1mc2j7keee2xIV0_Le2IvAG_v3Spj4egKWdGcwcJXL4V-UsXSnK2qN9T4Q72-LIrdeoL-LokwE1ctq3or0vzdSYc6Zo0nmjvmsediXDi8iAjm6Hk6l7-rXMbKPdMH5qbJ66h9s-KwAz92q5arxFM; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECOvg2Oan4N6MwAEiC3ZjYXJkX3Bob3RvKig4MjUyMDZkMjUwYzE2MGViZWRjZGYyMzVjOWQyZjZmYzFhZDQ2NzcwMAHtJTu62Nx423pSVZwpDfpjJs2mRg
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECOvg2Oan4N6MwAEiC3ZjYXJkX3Bob3RvKig4MjUyMDZkMjUwYzE2MGViZWRjZGYyMzVjOWQyZjZmYzFhZDQ2NzcwMAHtJTu62Nx423pSVZwpDfpjJs2mRg
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECOvg2Oan4N6MwAEiC3ZjYXJkX3Bob3RvKig4MjUyMDZkMjUwYzE2MGViZWRjZGYyMzVjOWQyZjZmYzFhZDQ2NzcwMAHtJTu62Nx423pSVZwpDfpjJs2mRg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_mhXa0EXd_Deb_q6V6SOcrGExHLQ9QGxmZkl4Kflo=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-ZstCSt1PA_29p0CBX36nbA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=Sy46dhAVUfR7D7eDC8767PkYC6mgVGnBJUO3t9xs64XGiTx93oD66zu-guZVcqkPUSjBLDKJms_EckpJKdudjCsusmNHlaguWQFPih9iZnOWWtOOAdbFkOe17LuJ0HPjI0RymKSsL5hzsw8zyB6EFceIDJ_PEDWbefjvTFVD2yc; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCJuT2IWkkt3KKCILdmNhcmRfcGhvdG8qKGIxMzJmNGEyZTU0Yjk2YjQ3MjliOTVhOWRiMTBmMzA1ZWYzMWM1OTEwAbWef7kJWYYxMkGmjSWJNa_xQ0EC
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCJuT2IWkkt3KKCILdmNhcmRfcGhvdG8qKGIxMzJmNGEyZTU0Yjk2YjQ3MjliOTVhOWRiMTBmMzA1ZWYzMWM1OTEwAbWef7kJWYYxMkGmjSWJNa_xQ0EC
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCJuT2IWkkt3KKCILdmNhcmRfcGhvdG8qKGIxMzJmNGEyZTU0Yjk2YjQ3MjliOTVhOWRiMTBmMzA1ZWYzMWM1OTEwAbWef7kJWYYxMkGmjSWJNa_xQ0EC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-6SYQ2KmhDdqRpq1fYfgkfdQ8vo3uQWmPpU9zGN-k=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
content-security-policy: script-src 'nonce-ZObL0q6HiGcVd86Yb64lvA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=J-qz34aH4NphP9BlctrnErWm1TMDWT5chBsdENVLKrmupGk3i9wqstzcfDZEUvff6gC4KmQVPviCEMY3BRlP_uIsRaDBS9GnZiZwcke_HCzOpet9EGf9pEzbYkDdApzOGTtQQXoWw_kQEj1A_s-tlqSGh8TdkP4_BdzLZhFwMF4; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89a17c02cdf926b852220408f32d6ad4
c22fb94c77a74cfc00d6b2cc88643afa0563abbe
2a4d9286d35271838cb99d265e2c8dbb851fa80ac2ca293571125188e684a7e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 579e733097a7260db68f6ab5fc4ab3c9
bcee618650f7eb1595974812db6995d7ee0e9764
c025aa32afae5edb4c793bcc3076c86ae945438c7d2e96f7847054aeb1ed690b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 579e733097a7260db68f6ab5fc4ab3c9
bcee618650f7eb1595974812db6995d7ee0e9764
c025aa32afae5edb4c793bcc3076c86ae945438c7d2e96f7847054aeb1ed690b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 64361a0d33a30cc87ffca1b03174b2a1
9682f404b3984d4febc6b86735104e2aa316dbb0
d719b59896c3a588cf56d93558f45ed49539e4b7cbc7a770597f77430c793587
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3c653b7d4151c89bf97b26a6bf854af2
cbcefae0da43945c106c7ab708bb851348b35481
d273d605cfa789a4350cf4e9d56016820eb8b7999e71c1ef9ecbeb3da62b82b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/s2/photos/public/AIbEiAIAAABDCMqX6InUkO_EUiILdmNhcmRfcGhvdG8qKDhjYmE4MDBhZDA0ZmM2YzQ1Y2MwMTAzZmEzMGQ0NzRmNWRhYjBmNWYwAUnZ5GH9p7aHd9nMir41Ts9yhFxG
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCMqX6InUkO_EUiILdmNhcmRfcGhvdG8qKDhjYmE4MDBhZDA0ZmM2YzQ1Y2MwMTAzZmEzMGQ0NzRmNWRhYjBmNWYwAUnZ5GH9p7aHd9nMir41Ts9yhFxG
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCMqX6InUkO_EUiILdmNhcmRfcGhvdG8qKDhjYmE4MDBhZDA0ZmM2YzQ1Y2MwMTAzZmEzMGQ0NzRmNWRhYjBmNWYwAUnZ5GH9p7aHd9nMir41Ts9yhFxG HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:13:44 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_TbpIs7udjqPZ6NAXvSELpeKqpwpD0-XHN-xza=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-C2jX2_dr1UUkwUaEtft3rg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=o89n0LHbDTWj-WaT7KUZBPiHCrESg-ZgEvqOOMJLY6FtIgL6h8etkaXQW84hTk1wP1inBiZqNWVXMY-qWSyc-c0ReqBo-TElE7ZpBIENkSbeUKLe4FZzKNtzksvILhBsYjr4gIC67xwjrptBkkJCsxHBUd9NDvqrLGEtd-DLJpQ; expires=Sun, 09-Apr-2023 20:13:44 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s10.histats.com/counters/cc_431.js
46.105.201.240200 OK 7.1 kB URL HTTP/2 s10.histats.com/counters/cc_431.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (18264), with no line terminators
Hash de8762ad3c827fda087e95de52d3a435
a25974131e4df85672a66160d7f0694eccfa005f
db52565808b3dbc8ad9c1ffda1c76b0b0c9d413ac1f808483fe3aeb1145d2d91
GET /counters/cc_431.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 19:59:06 GMT
etag: "-655800570"
last-modified: Thu, 16 Apr 2020 10:45:32 GMT
x-request-id: 664209008
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-grace: full
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 7093
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu-P8GwupSI-gAc68yvsr1JFmnXgK8rQAc4ToBSQQQ=s45-c
142.250.74.33200 OK 658 B URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu-P8GwupSI-gAc68yvsr1JFmnXgK8rQAc4ToBSQQQ=s45-c
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 3ac8a6bd39414ad433ce42e7c4a4067c
bf4876d89aeefea8f99c10041893db09852b25a6
8c4bfa4f78cb0f2ec1b681b3ef6a50887a3d318861d0b8045d109e089c55d16c
GET /a-/ACNPEu-P8GwupSI-gAc68yvsr1JFmnXgK8rQAc4ToBSQQQ=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sun, 09 Oct 2022 20:13:44 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:44 GMT
server: fife
content-length: 658
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b523949818a5a16753637f9ad58584b
5d31dd0a86b616b95aa2855ced5ddc1b5d088213
6d4dc5c21d9a3ae5f2d4f259250be56bf1852336fa674f9ab926cdd395c1a107
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-uG3Wouhz3I4/TnuuUScozmI/AAAAAAAAAD8/pTump0MkViQ/s45-c/Foto0643.jpg
142.250.74.161404 Not Found 904 B URL HTTP/2 3.bp.blogspot.com/-uG3Wouhz3I4/TnuuUScozmI/AAAAAAAAAD8/pTump0MkViQ/s45-c/Foto0643.jpg
IP 142.250.74.161:0
File type PNG image data, 45 x 45, 8-bit colormap, non-interlaced\012- data
Hash 288ba721beee9352ca47b2a130423c86
5dd28e65cfc52620335ca1a10be532ed9e44ff14
6ee738d016e2e0d81bb5da04d1c97a4b33d9ec9f3bfc3cee450b33d1dd997cc4
GET /-uG3Wouhz3I4/TnuuUScozmI/AAAAAAAAAD8/pTump0MkViQ/s45-c/Foto0643.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 904
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 64361a0d33a30cc87ffca1b03174b2a1
9682f404b3984d4febc6b86735104e2aa316dbb0
d719b59896c3a588cf56d93558f45ed49539e4b7cbc7a770597f77430c793587
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:13:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a-/ACNPEu_mhXa0EXd_Deb_q6V6SOcrGExHLQ9QGxmZkl4Kflo=s96-p
142.250.74.33200 OK 3.7 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu_mhXa0EXd_Deb_q6V6SOcrGExHLQ9QGxmZkl4Kflo=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash 4974a3787e3a78ed6dda2efa6b1d9954
c61d3577215465dba3558b81637cf46b720f1816
977649a89856f96dea592db3fb5691f0e8f547a2c081a719d43fd69cda81e7a9
GET /a-/ACNPEu_mhXa0EXd_Deb_q6V6SOcrGExHLQ9QGxmZkl4Kflo=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vb515"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 3747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu8F5Pvx1_y521ke7njm_fID-dseSiU1YJ0vCGK0uno=s96-p
142.250.74.33200 OK 21 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu8F5Pvx1_y521ke7njm_fID-dseSiU1YJ0vCGK0uno=s96-p
IP 142.250.74.33:0
File type PNG image data, 96 x 96, 8-bit/color RGB, non-interlaced\012- data
Hash 311521415e277a66d8f52a7b9594a9a1
bcff616a683d20c77e6066c4ac50091307892f30
3c62703d2be4f103cb22aa70549cc8e2ba1db39191aae0b68f7154842404bce4
GET /a-/ACNPEu8F5Pvx1_y521ke7njm_fID-dseSiU1YJ0vCGK0uno=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v21623"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 20561
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu8wkSyeyR8turFcfTS3qNkvoqPBklhm6G6PbDXt=s96-p
142.250.74.33200 OK 5.7 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu8wkSyeyR8turFcfTS3qNkvoqPBklhm6G6PbDXt=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash 246de44addbe27081da4e27eff7d0b52
2fef2773276828759877ddf843965c8fe5eb36fe
4d8f8357c158f49d8d9f323e250eb3bcdc5181e9ec0303b08243486fcec30d25
GET /a-/ACNPEu8wkSyeyR8turFcfTS3qNkvoqPBklhm6G6PbDXt=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v34"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 5691
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu9pjm_vRpCFJnAkPnev8uOo5W81qmtcCI0quFvw6Q=s96-p
142.250.74.33200 OK 4.9 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu9pjm_vRpCFJnAkPnev8uOo5W81qmtcCI0quFvw6Q=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash ab9406c5328e2575df177b92e4c87294
da49f30add6ebfebf3630d5e0b315d2d45686a46
94947c11235339a59b1d676b02f05bec15059d635ba6051b863c467c65b09e0b
GET /a-/ACNPEu9pjm_vRpCFJnAkPnev8uOo5W81qmtcCI0quFvw6Q=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v535"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4935
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu_TbpIs7udjqPZ6NAXvSELpeKqpwpD0-XHN-xza=s96-p
142.250.74.33200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu_TbpIs7udjqPZ6NAXvSELpeKqpwpD0-XHN-xza=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash 668b9dbfd7df28f0c7c1db972eae8f86
b21d370ec92de1cef666b02c43622515589bcedf
482a93b1e7ce56da7e22915b56c9cbbd21c495806186fc1d09292ffc271e6b9a
GET /a-/ACNPEu_TbpIs7udjqPZ6NAXvSELpeKqpwpD0-XHN-xza=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v26"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 3798
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu-6SYQ2KmhDdqRpq1fYfgkfdQ8vo3uQWmPpU9zGN-k=s96-p
142.250.74.33200 OK 4.5 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu-6SYQ2KmhDdqRpq1fYfgkfdQ8vo3uQWmPpU9zGN-k=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash 15816310efd8bc6e22ea743c3c9efe01
40ac30639c05c0715b8419b9638b989f0abfbb1e
1ee15bb339c957da4a79b9c2cd4dbc6f06915181c492cd00aed643b0d6c4a28c
GET /a-/ACNPEu-6SYQ2KmhDdqRpq1fYfgkfdQ8vo3uQWmPpU9zGN-k=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va8a7"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4541
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipMc5lXsAAkmPTPjdMseQ7elnuYNOtkm0laOulWl=s45-c?key=CMT98szdoOrTEA
142.250.74.33200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipMc5lXsAAkmPTPjdMseQ7elnuYNOtkm0laOulWl=s45-c?key=CMT98szdoOrTEA
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 5b5c4354adf51c1d3de9f5f5828a7975
287c9a88d2c4cda2de966bd61194f10f4a9952d0
56626c5e6e678c9e6fb109fd51d0334f81979d9ba8808e8446e041b0ba3838fc
GET /p/AF1QipMc5lXsAAkmPTPjdMseQ7elnuYNOtkm0laOulWl=s45-c?key=CMT98szdoOrTEA HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v21fc"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4326
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipM1Pytvy7zw58G63MxX6XbvcvK53UXQGOuDL1Yy=s45-c?key=CPWgz6TtlL6QeA
142.250.74.33200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipM1Pytvy7zw58G63MxX6XbvcvK53UXQGOuDL1Yy=s45-c?key=CPWgz6TtlL6QeA
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 3706045a0619bd9cb1fadea3e820993c
37ef07b863728cb8f5a128b679ceb1e8eb90ccd6
1627eb9209f13bf2fdd972ff6a4aa4c1f58817fa3d3373afee5ada2cfa4758fc
GET /p/AF1QipM1Pytvy7zw58G63MxX6XbvcvK53UXQGOuDL1Yy=s45-c?key=CPWgz6TtlL6QeA HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vf19"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4297
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu90wZSkOpjox2BG4Vr2rM0goApzXcX9daAJ9fPh=s96-p
142.250.74.33200 OK 4.2 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu90wZSkOpjox2BG4Vr2rM0goApzXcX9daAJ9fPh=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash e8f0f9a4475ec651c1cf9880c8ce0e56
65fbad13dde0976ab821058d4414bc495ffd60c6
ed155446eaaf9d96198ef8d1f5dd0253a196588c2fadf4d062c570e871997d0b
GET /a-/ACNPEu90wZSkOpjox2BG4Vr2rM0goApzXcX9daAJ9fPh=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vc9"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4238
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNMzFI62WHG3oz4YYlO-BLWxvQr36O3vtRjb7t8=s45-c?key=CKul9qWU5tyMRw
142.250.74.33200 OK 4.8 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNMzFI62WHG3oz4YYlO-BLWxvQr36O3vtRjb7t8=s45-c?key=CKul9qWU5tyMRw
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 4e837701abc0a1c4a80538c6177d83fa
86b3c2f2cb3ba51f015f985a747b9b3f00b79be1
cb31dcb05d6fadea51110ef54c0e2300b542945145948fffe20f390089cc154a
GET /p/AF1QipNMzFI62WHG3oz4YYlO-BLWxvQr36O3vtRjb7t8=s45-c?key=CKul9qWU5tyMRw HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vb0"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4834
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu-h-6fCgp_PNOo1thySFosfkjUz8pWnK1TFNnGpxw=s96-p
142.250.74.33200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu-h-6fCgp_PNOo1thySFosfkjUz8pWnK1TFNnGpxw=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash fc7690f971c79e3fa0e2f5a8d886d194
e8e6c7bd310888ceb6abbafe433958ff785cf05f
d6ba807ffe64e79aafcfb736ece47f3f319a3f58519ba6962a41e499fb3f049f
GET /a-/ACNPEu-h-6fCgp_PNOo1thySFosfkjUz8pWnK1TFNnGpxw=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v3f77"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4275
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu-ZCs3-jHg5_9j_xR6Z1NAL4y43HlGzX-7BehQxl74=s96-p
142.250.74.33200 OK 5.7 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu-ZCs3-jHg5_9j_xR6Z1NAL4y43HlGzX-7BehQxl74=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash a413306e68293227fee2f1b5e632508a
8f39005528ff15555144ba21ebb6e91371b507a9
0c426df0d31fd583d004882a3028de5323fe3c6ec35174b67c8ebcd23c9945de
GET /a-/ACNPEu-ZCs3-jHg5_9j_xR6Z1NAL4y43HlGzX-7BehQxl74=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6f83"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 5736
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu_1wnSeLWs_A9pPqGtwTy2LQ0q7l3KZKal-2roSrA=s96-p
142.250.74.33200 OK 5.5 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu_1wnSeLWs_A9pPqGtwTy2LQ0q7l3KZKal-2roSrA=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash c4ddea347089f440f91270fe51797e04
12463a44f8b0db12faf1db7e984de6078dafad95
f49fd6291aa64ca6273e0daf88f246e072df6f54b2ba882ce26345d967f07887
GET /a-/ACNPEu_1wnSeLWs_A9pPqGtwTy2LQ0q7l3KZKal-2roSrA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11e"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 5546
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu-32vWTciTfDqxS0uY9MtDp9ed47dDGF5ooETc0=s96-p
142.250.74.33200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu-32vWTciTfDqxS0uY9MtDp9ed47dDGF5ooETc0=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash 58a7eecaf048c67fc88f1896ce57a3d8
84798b4b3aa85cc1aa9b275f8fb09e2be2e80d4e
920b3e81474986792ce5b7f83f7d75db4fb61801abeca733df59acc3586ad3b4
GET /a-/ACNPEu-32vWTciTfDqxS0uY9MtDp9ed47dDGF5ooETc0=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v22"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4287
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipPcGB0_IusuRGsGLLCGAjiO-rv4kMURmrI0Y2JO=s45-c?key=CK7vs6uv0vz1Rg
142.250.74.33200 OK 4.6 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipPcGB0_IusuRGsGLLCGAjiO-rv4kMURmrI0Y2JO=s45-c?key=CK7vs6uv0vz1Rg
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 4a9911ecd52bcfa2bdf25cd1deb2dd4c
4106f515a06ae803544e29993b986aa8c3c88aae
817e4c31563a21cd377003ff5a4ba695ab0e567e60519bca3de17f730c2662f5
GET /p/AF1QipPcGB0_IusuRGsGLLCGAjiO-rv4kMURmrI0Y2JO=s45-c?key=CK7vs6uv0vz1Rg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v29"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4618
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipM6OHPKBTMMxNDhJXGZ0l7ZfIr12d5yXI0Yxwhi=s45-c?key=CKDE2-KxouKHFQ
142.250.74.33200 OK 4.9 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipM6OHPKBTMMxNDhJXGZ0l7ZfIr12d5yXI0Yxwhi=s45-c?key=CKDE2-KxouKHFQ
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash c4e8eec593bc4207d3b23841f62fcef7
5f82af53834e4a8b0658bdde6fd4e4207590162b
6de28cc75363bf991b9b829c2eeb481f6a234dd6b8d600d1f170a655a7899767
GET /p/AF1QipM6OHPKBTMMxNDhJXGZ0l7ZfIr12d5yXI0Yxwhi=s45-c?key=CKDE2-KxouKHFQ HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v628a"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4861
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipOKKK8CkfOgcJ05Vi61uG4Qx-yGmV5Ukq10l-Na=s45-c?key=COn5vJLjlJ-1Qg
142.250.74.33200 OK 4.8 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOKKK8CkfOgcJ05Vi61uG4Qx-yGmV5Ukq10l-Na=s45-c?key=COn5vJLjlJ-1Qg
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash b3a0d2cdb3f53e8119dc521b47e3d37e
d42f50ac78bc0d98698026453b6b59bc84ee556b
fa8815776b860d9b9022582e3295681694e5958b3475213a2c86055fed04827f
GET /p/AF1QipOKKK8CkfOgcJ05Vi61uG4Qx-yGmV5Ukq10l-Na=s45-c?key=COn5vJLjlJ-1Qg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v37e"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4769
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipMG5n-JmhOwc6zw7P5JH3bnPsLMgrRi7lEPJWp5=s45-c?key=CLqBvIThw9WPsgE
142.250.74.33200 OK 4.8 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipMG5n-JmhOwc6zw7P5JH3bnPsLMgrRi7lEPJWp5=s45-c?key=CLqBvIThw9WPsgE
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash b00a872127fb488abfafd419e1bf99d9
07399791bb31380b61e2701e3939061c7fdb27f5
8285b0a4beeddd6430ebf1a02f837c4ab68e9917fccb9a9855013fe70277e0fb
GET /p/AF1QipMG5n-JmhOwc6zw7P5JH3bnPsLMgrRi7lEPJWp5=s45-c?key=CLqBvIThw9WPsgE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1b7"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4773
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu8TFEcuBdEY2aK8Pqdf-TiL1OEiUJhdd28M8o0OQw=s96-p
142.250.74.33200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu8TFEcuBdEY2aK8Pqdf-TiL1OEiUJhdd28M8o0OQw=s96-p
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash d779f1c753ff10eb017658c754e3f9e5
69cf725af4e0596c58bbf1f62208bfd29b20d9ba
f691b4769a6a55373800a3d76dc5fe85efa6b7da18d0da862b771c9569947937
GET /a-/ACNPEu8TFEcuBdEY2aK8Pqdf-TiL1OEiUJhdd28M8o0OQw=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vf69"
expires: Sun, 09 Oct 2022 20:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:13:45 GMT
server: fife
content-length: 4315
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:43 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 2164fe353fa24b86a405b01c293023e3
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:43 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: baedb1c004174c2eb60298bd407e4421
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/paginas-numeros.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/paginas-numeros.js
IP 162.125.71.15:0
GET /u/53952260/paginas-numeros.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:43 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 933eeea9dc0444d696ac7904733e64de
X-Firefox-Spdy: h2
1.bp.blogspot.com/-4APItKjqngY/TtWMtgiXA3I/AAAAAAAAE_4/vuw-fdGFIrU/s1600/wrapper-bg.jpg
142.250.74.161200 OK 0 B URL HTTP/1.1 1.bp.blogspot.com/-4APItKjqngY/TtWMtgiXA3I/AAAAAAAAE_4/vuw-fdGFIrU/s1600/wrapper-bg.jpg
IP 142.250.74.161:0
GET /-4APItKjqngY/TtWMtgiXA3I/AAAAAAAAE_4/vuw-fdGFIrU/s1600/wrapper-bg.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://showsefestasdefortaleza.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v13fe"
Expires: Sun, 09 Oct 2022 20:13:44 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="wrapper-bg.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:13:44 GMT
Server: fife
Content-Length: 104692
X-XSS-Protection: 0
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:42 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 744ff4dcd819410aa88bfd083cf86d7a
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://showsefestasdefortaleza.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Sat, 08 Oct 2022 20:13:42 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: a34ffbf3ed65483f90b8d19ce6071a87
X-Firefox-Spdy: h2