Overview

URL netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html
IP142.250.74.161
ASNGOOGLE
Location United States
Report completed2022-11-24 21:24:22 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (35)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS lh4.ggpht.com (3) 11959 2012-05-30 06:58:35 UTC 2020-03-14 19:32:16 UTC 142.250.74.161
mnemonic passive DNS 4.bp.blogspot.com (3) 11215 2013-05-06 20:18:52 UTC 2020-05-06 03:21:52 UTC 142.250.74.161
mnemonic passive DNS www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-24 08:35:27 UTC 142.250.74.168
mnemonic passive DNS cdn.tynt.com (1) 7260 2012-06-26 16:52:03 UTC 2020-04-02 22:41:03 UTC 104.18.36.173
mnemonic passive DNS de.tynt.com (1) 1252 2013-08-06 01:33:59 UTC 2022-11-24 10:56:37 UTC 67.202.105.33
mnemonic passive DNS t.dtscout.com (2) 11951 2017-01-30 04:52:42 UTC 2022-11-24 07:31:22 UTC 172.64.163.7
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
mnemonic passive DNS ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-11-24 10:54:12 UTC 142.250.74.138
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-09-09 00:40:21 UTC 2022-11-24 11:09:52 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.blogger.com (3) 8975 2012-05-22 07:35:03 UTC 2020-05-05 09:48:25 UTC 142.250.74.105
mnemonic passive DNS whos.amung.us (1) 12687 2017-01-30 05:21:57 UTC 2022-11-24 08:38:16 UTC 172.67.8.141
mnemonic passive DNS apis.google.com (2) 105 2013-05-30 23:17:44 UTC 2020-05-14 13:59:47 UTC 142.250.74.174
mnemonic passive DNS secureimage.securedataimages.com (53) 51831 2012-09-30 15:27:12 UTC 2020-03-16 23:10:53 UTC 192.229.233.220
mnemonic passive DNS www.facebook.com (2) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 157.240.200.35
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
mnemonic passive DNS blogergadgets.googlecode.com (3) 0 2013-05-10 01:39:27 UTC 2020-05-06 23:26:42 UTC 64.233.164.82 Unknown ranking
mnemonic passive DNS banners.adultfriendfinder.com (5) 122250 2015-12-22 03:41:32 UTC 2022-11-23 23:21:39 UTC 69.165.107.14
mnemonic passive DNS widgets.amung.us (1) 12623 2012-05-21 19:25:54 UTC 2022-11-24 06:31:33 UTC 104.22.75.171
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-11-24 11:10:32 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS netinhascombr.blogspot.com (16) 0 No data No data 142.250.74.161 Unknown ranking
mnemonic passive DNS lh5.ggpht.com (3) 10355 2012-05-30 06:58:35 UTC 2020-05-01 19:11:58 UTC 142.250.74.161
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-24 11:11:51 UTC 142.250.74.10
mnemonic passive DNS r3.o.lencr.org (7) 344 No data No data 23.36.77.32
mnemonic passive DNS play.google.com (2) 34 2018-05-12 00:28:37 UTC 2022-11-24 07:13:40 UTC 142.250.74.110
mnemonic passive DNS ic.tynt.com (7) 4300 2013-08-06 01:33:59 UTC 2022-11-24 08:07:10 UTC 67.202.105.32
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
mnemonic passive DNS www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-24 08:13:00 UTC 142.250.74.164
mnemonic passive DNS push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.24.78.9
mnemonic passive DNS ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 104.18.32.68
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
mnemonic passive DNS lh3.ggpht.com (2) 7184 2013-05-30 23:55:14 UTC 2020-04-23 19:58:55 UTC 142.250.74.161
mnemonic passive DNS pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-11-24 10:56:58 UTC 142.250.74.162
mnemonic passive DNS resources.blogblog.com (1) 13274 2018-07-01 19:33:30 UTC 2020-04-09 16:15:03 UTC 142.250.74.105
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
mnemonic passive DNS ocsp.pki.goog (15) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161

Date UQ / IDS / BL URL IP
2022-12-09 09:50:36 +0000
0 - 0 - 6 hassannewswhitaker.blogspot.com/2022/04/filte (...) 142.250.74.161
2022-12-09 09:45:03 +0000
0 - 0 - 74 bestsellerus16.blogspot.com/light-rose-gift 142.250.74.161
2022-12-09 09:45:02 +0000
0 - 0 - 2 bestsellerus16.blogspot.com/unsubscribe 142.250.74.161
2022-12-09 09:44:50 +0000
0 - 0 - 2 nqqmwusuccldcsphbeog8242947034.blogspot.com/u (...) 142.250.74.161
2022-12-09 09:04:53 +0000
0 - 0 - 4 elitecatarinensemods.blogspot.com.br/p/contat (...) 142.250.74.161

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-12-09 09:50:36 +0000
0 - 0 - 6 hassannewswhitaker.blogspot.com/2022/04/filte (...) 142.250.74.161
2022-12-09 09:45:03 +0000
0 - 0 - 74 bestsellerus16.blogspot.com/light-rose-gift 142.250.74.161
2022-12-09 09:45:02 +0000
0 - 0 - 2 bestsellerus16.blogspot.com/unsubscribe 142.250.74.161
2022-12-09 09:44:50 +0000
0 - 0 - 2 nqqmwusuccldcsphbeog8242947034.blogspot.com/u (...) 142.250.74.161
2022-12-09 09:33:11 +0000
0 - 0 - 3 janoortiz.blogspot.com/2008/06/planta-de-elec (...) 142.250.74.33

Last 2 reports on domain: netinhascombr.blogspot.com

Date UQ / IDS / BL URL IP
2022-11-28 13:48:40 +0000
0 - 0 - 1 netinhascombr.blogspot.com/search/label/Sexo% (...) 142.250.74.161
2022-11-24 21:24:22 +0000
0 - 0 - 1 netinhascombr.blogspot.com/2012/10/loira-peit (...) 142.250.74.161

No other reports with similar screenshot



JavaScript

Executed Scripts (105)


Executed Evals (7)

#1 JavaScript::Eval (size: 15564, repeated: 1) - SHA256: ede2890a3896a3c67d956ca9ec4b4fdb9bfc15cad88e637242767266d2630d6a

                                        (function() {
    var z = this || self,
        bo = function(b, I, K, O) {
            (K = P((O = P(b), b)), x)(K, b, v(I, Z(O, b)))
        },
        R8 = function(b, I, K) {
            if ("object" == (I = typeof b, I))
                if (b) {
                    if (b instanceof Array) return "array";
                    if (b instanceof Object) return I;
                    if ("[object Window]" == (K = Object.prototype.toString.call(b), K)) return "object";
                    if ("[object Array]" == K || "number" == typeof b.length && "undefined" != typeof b.splice && "undefined" != typeof b.propertyIsEnumerable && !b.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == K || "undefined" != typeof b.call && "undefined" != typeof b.propertyIsEnumerable && !b.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == I && "undefined" == typeof b.call) return "object";
            return I
        },
        Z = function(b, I) {
            if (void 0 === (I = I.K[b], I)) throw [D, 30, b];
            if (I.value) return I.create();
            return I.create(1 * b * b + -48 * b + -64), I.prototype
        },
        f = function(b, I) {
            I.s = ((I.s ? I.s + "~" : "E:") + b.message + ":" + b.stack).slice(0, 2048)
        },
        I8 = function(b, I) {
            (I.push(b[0] << 24 | b[1] << 16 | b[2] << 8 | b[3]), I.push(b[4] << 24 | b[5] << 16 | b[6] << 8 | b[7]), I).push(b[8] << 24 | b[9] << 16 | b[10] << 8 | b[11])
        },
        O1 = function(b, I, K, O) {
            function y() {}
            return {
                invoke: (O = K2(b, (K = void 0, function(R) {
                    y && (I && J(I), K = R, y(), y = void 0)
                }), !!I)[0], function(R, w, q, N) {
                    function u() {
                        K(function(M) {
                            J(function() {
                                R(M)
                            })
                        }, q)
                    }
                    if (!w) return w = O(q), R && R(w), w;
                    K ? u() : (N = y, y = function() {
                        (N(), J)(u)
                    })
                })
            }
        },
        yj = function(b, I, K, O) {
            return Z(356, (k(319, (wl(b, (O = Z(319, b), b.H && O < b.j ? (k(319, b, b.j), qO(b, K)) : k(319, b, K), I)), b), O), b))
        },
        A = function(b, I, K, O, y, R, w, q, N) {
            if (O.L += ((w = (y = (N = (R = (q = (K || O.i++, 0 < O.P && O.I) && O.KI && 1 >= O.v && !O.C && !O.g && (!K || 1 < O.Z - b) && 0 == document.hidden, 4 == O.i)) || q ? O.D() : O.F, N - O.F), y >> 14), O.V) && (O.V ^= w * (y << 2)), O.A = w || O.A, w), R || q) O.F = N, O.i = 0;
            if (!q || N - O.X < O.P - (I ? 255 : K ? 5 : 2)) return false;
            return (k((I = Z((O.Z = b, K ? 351 : 319), O), 319), O, O.j), O.R).push([zJ, I, K ? b + 1 : b]), O.g = J, true
        },
        io = function(b, I) {
            return I[b] << 24 | I[(b | 0) + 1] << 16 | I[(b | 0) + 2] << 8 | I[(b | 0) + 3]
        },
        qO = function(b, I) {
            k(319, ((b.rt.push(b.K.slice()), b).K[319] = void 0, b), I)
        },
        V = function(b, I, K) {
            I[k(K, b, I), uo] = 2796
        },
        JW = function(b, I, K, O, y) {
            for ((b.pI = MO(b.h, ((b.kG = (b.fI = b[E], o8), b).Q2 = PW, {get: function() {
                        return this.concat()
                    }
                })), b).ju = p[b.h](b.pI, {
                    value: {
                        value: {}
                    }
                }), y = [], O = 0; 128 > O; O++) y[O] = String.fromCharCode(O);
            C(true, true, (l(((l([(V(b, (V(b, function(R, w) {
                (w = Z(P(R), R), qO)(R.A, w)
            }, (V(b, function(R, w, q, N) {
                k((w = g((N = P(R), R)), q = P(R), q), R, Z(N, R) >>> w)
            }, (k(97, (V((V(b, (k(230, b, (V(b, (b.uf = (k((k(162, b, (V(b, function(R, w, q, N) {
                (N = Z((w = (q = (w = P(R), N = P(R), P(R)), Z)(w, R), N), R), k)(q, R, +(w == N))
            }, (V(b, (V((V(b, (V(b, (V(b, (V(b, function(R) {
                bo(R, 1)
            }, (k(17, ((V(b, (b.HZ = (V(b, function(R, w) {
                R = (w = P(R), Z(w, R.A)), R[0].removeEventListener(R[1], R[2], c)
            }, (k(507, b, (V(b, function(R, w, q, N, u, M, H) {
                for (u = (q = Z(92, (w = (H = mj((N = P(R), R)), ""), R)), q.length), M = 0; H--;) M = ((M | 0) + (mj(R) | 0)) % u, w += y[q[M]];
                k(N, R, w)
            }, ((V(b, ((V((k((k(366, (k(356, b, (V(b, (V(b, (V(b, (V((k(182, (k(305, (k((b.Su = (V(b, (V(b, function(R, w, q) {
                A(w, false, true, R) || (w = P(R), q = P(R), k(q, R, function(N) {
                    return eval(N)
                }(xP(Z(w, R.A)))))
            }, (V(b, function(R) {
                HW(R, 4)
            }, (k((b.s = (b.DP = (b.L = 1, b.G = void 0, b.rt = [], b.KI = false, (b.W = void 0, b.Y = 0, b.X = (b.o = (b.A = b, []), b.l = (b.v = 0, O = (b.g = null, b.j = 0, (b.S = (b.N = false, void 0), b.wt = 0, window).performance) || {}, (b.P = 0, b).I = !(b.Z = 8001, 1), b.H = [], []), (b.i = void 0, b.U = 25, b.C = void 0, b.R = [], (b.V = void 0, b).RQ = function(R) {
                this.A = R
            }, b).K = [], 0), (b.F = 0, O).timeOrigin || (O.timing || {}).navigationStart) || 0), void 0), 319), b, 0), k(351, b, 0), 475)), 168)), function(R, w, q) {
                0 != (q = Z((w = P(R), q = P(R), q), R), Z(w, R)) && k(319, R, q)
            }), 342), 0), 253), b, []), b), b), b), 0), b), function(R) {
                bo(R, 4)
            }, 267), function(R, w, q, N, u) {
                (q = (u = Z((w = Z((u = P((q = (N = (w = P(R), P)(R), P)(R), R)), w), R.A), u), R), N = Z(N, R), Z)(q, R), 0) !== w && (q = vW(1, R, u, q, w, N), w.addEventListener(N, q, c), k(182, R, [w, N, q]))
            }), 261), function(R, w, q, N, u) {
                (w = (q = P((N = (u = P(R), P)(R), R)), P(R)), q = Z(q, R), w = Z(w, R), N = Z(N, R), k)(u, R, vW(w, R, q, N))
            }), 222), function(R, w, q, N) {
                (w = P((N = (q = P(R), P)(R), R)), k)(w, R, Z(q, R) || Z(N, R))
            }), 381), {})), b), 0), 270), b, z), b), function(R) {
                Zb(R, 3)
            }, 395), V)(b, function(R, w, q) {
                k((q = Z((w = P((q = P(R), R)), q), R), q = R8(q), w), R, q)
            }, 405), function(R, w, q, N) {
                !A(w, false, true, R) && (w = rl(R), q = w.J, N = w.AN, R.A == R || q == R.RQ && N == R) && (k(w.aQ, R, q.apply(N, w.O)), R.F = R.D())
            }), 234), V)(b, function(R) {
                Zb(R, 4)
            }, 203), 335)), [160, 0, 0])), 206)), 0), function() {}), 503), V)(b, function(R, w, q, N, u, M, H, r, m, L, X, G) {
                function Q(n, h) {
                    for (; q < n;) G |= g(R) << q, q += 8;
                    return h = G & (1 << n) - 1, q -= n, G >>= n, h
                }
                for (X = (L = (q = G = (M = P(R), 0), (Q(3) | 0) + 1), u = Q(5), N = 0), m = []; N < u; N++) H = Q(1), m.push(H), X += H ? 0 : 1;
                for (X = (w = (N = ((X | 0) - 1).toString(2).length, []), 0); X < u; X++) m[X] || (w[X] = Q(N));
                for (N = 0; N < u; N++) m[N] && (w[N] = P(R));
                for (r = []; L--;) r.push(Z(P(R), R));
                V(R, function(n, h, Y, NO, t) {
                    for (h = (NO = [], 0), Y = []; h < u; h++) {
                        if (t = w[h], !m[h]) {
                            for (; t >= Y.length;) Y.push(P(n));
                            t = Y[t]
                        }
                        NO.push(t)
                    }
                    n.S = Db(n, (n.C = Db(n, r.slice()), NO))
                }, M)
            }, 94), b), []), 367)), function(R, w, q, N) {
                (N = Z((q = Z((w = (q = P(R), P)(R), q), R), w), R), k)(w, R, N + q)
            }), 58), function(R, w, q, N, u, M) {
                if (!A(w, true, true, R)) {
                    if ("object" == R8((R = Z((M = (w = (M = (q = (w = (N = P(R), P)(R), P(R)), P(R)), Z)(w, R), Z)(M, R), q = Z(q, R), N), R), R))) {
                        for (u in N = [], R) N.push(u);
                        R = N
                    }
                    for (N = (u = (q = 0 < q ? q : 1, 0), R).length; u < N; u += q) w(R.slice(u, (u | 0) + (q | 0)), M)
                }
            }), 341), function(R, w, q, N) {
                if (w = R.rt.pop()) {
                    for (q = g(R); 0 < q; q--) N = P(R), w[N] = R.K[N];
                    R.K = (w[253] = R.K[253], w[97] = R.K[97], w)
                } else k(319, R, R.j)
            }), 327), b), function(R, w, q) {
                w = P(R), q = P(R), k(q, R, "" + Z(w, R))
            }, 455), function(R, w, q, N, u) {
                for (q = (u = P(R), w = mj(R), N = [], 0); q < w; q++) N.push(g(R));
                k(u, R, N)
            }), 34), 117)), T)(4)), 205), b, 524), 0), function(R, w, q, N) {
                N = (w = P((q = (N = P(R), P(R)), R)), Z(N, R)), q = Z(q, R), k(w, R, N in q | 0)
            }), 79), [0, 0, 0])), function(R, w, q, N, u) {
                (q = (u = (N = P(R), P(R)), P)(R), R).A == R && (q = Z(q, R), w = Z(N, R), u = Z(u, R), w[u] = q, 377 == N && (R.G = void 0, 2 == u && (R.V = B(32, R, false), R.G = void 0)))
            }), 474), b), function(R, w, q, N, u, M) {
                A(w, false, true, R) || (N = rl(R.A), w = N.AN, M = N.O, q = N.J, u = M.length, N = N.aQ, w = 0 == u ? new w[q] : 1 == u ? new w[q](M[0]) : 2 == u ? new w[q](M[0], M[1]) : 3 == u ? new w[q](M[0], M[1], M[2]) : 4 == u ? new w[q](M[0], M[1], M[2], M[3]) : 2(), k(N, R, w))
            }, 317), b), 2048), 89)), 473)), function(R, w, q, N) {
                k((N = (q = Z((w = P((N = (q = P(R), P(R)), R)), q), R), Z(N, R)), w), R, q[N])
            }), 380), uo)], b), l)([S, I], b), [f2, K]), b), b))
        },
        l = function(b, I) {
            I.R.splice(0, 0, b)
        },
        XO = function(b, I, K, O) {
            try {
                O = b[((I | 0) + 2) % 3], b[I] = (b[I] | 0) - (b[((I | 0) + 1) % 3] | 0) - (O | 0) ^ (1 == I ? O << K : O >>> K)
            } catch (y) {
                throw y;
            }
        },
        n2 = function(b, I, K) {
            if (3 == b.length) {
                for (K = 0; 3 > K; K++) I[K] += b[K];
                for (b = [13, 8, 13, 12, 16, 5, 3, 10, 15], K = 0; 9 > K; K++) I[3](I, K % 3, b[K])
            }
        },
        GJ = function(b, I, K, O, y) {
            for (y = (K = K[3] | (O = K[2] | 0, 0), 0); 14 > y; y++) I = I >>> 8 | I << 24, I += b | 0, K = K >>> 8 | K << 24, b = b << 3 | b >>> 29, I ^= O + 2298, K += O | 0, K ^= y + 2298, b ^= I, O = O << 3 | O >>> 29, O ^= K;
            return [b >>> 24 & 255, b >>> 16 & 255, b >>> 8 & 255, b >>> 0 & 255, I >>> 24 & 255, I >>> 16 & 255, I >>> 8 & 255, I >>> 0 & 255]
        },
        v = function(b, I, K, O) {
            for (K = (b | 0) - 1, O = []; 0 <= K; K--) O[(b | 0) - 1 - (K | 0)] = I >> 8 * K & 255;
            return O
        },
        wl = function(b, I, K, O, y, R) {
            if (!b.s) {
                b.v++;
                try {
                    for (R = (y = (K = b.j, void 0), 0); --I;) try {
                        if ((O = void 0, b).C) y = hW(b, b.C);
                        else {
                            if (R = Z(319, b), R >= K) break;
                            O = P((k(351, b, R), b)), y = Z(O, b)
                        }
                        A((y && y[$P] & 2048 ? y(b, I) : e([D, 21, O], b, 0), I), false, false, b)
                    } catch (w) {
                        Z(205, b) ? e(w, b, 22) : k(205, b, w)
                    }
                    if (!I) {
                        if (b.CI) {
                            b.v--, wl(b, 216630971487);
                            return
                        }
                        e([D, 33], b, 0)
                    }
                } catch (w) {
                    try {
                        e(w, b, 22)
                    } catch (q) {
                        f(q, b)
                    }
                }
                b.v--
            }
        },
        rl = function(b, I, K, O, y, R) {
            for (R = (K = ((O = (I = b[kP] || {}, P(b)), I.aQ = P(b), I).O = [], b.A == b ? (g(b) | 0) - 1 : 1), P(b)), y = 0; y < K; y++) I.O.push(P(b));
            for (; K--;) I.O[K] = Z(I.O[K], b);
            return (I.J = Z(O, b), I).AN = Z(R, b), I
        },
        vW = function(b, I, K, O, y, R) {
            function w() {
                if (I.A == I) {
                    if (I.K) {
                        var q = [F, O, K, void 0, y, R, arguments];
                        if (2 == b) var N = C(false, false, (l(q, I), I));
                        else if (1 == b) {
                            var u = !I.R.length;
                            (l(q, I), u) && C(false, false, I)
                        } else N = AW(I, q);
                        return N
                    }
                    y && R && y.removeEventListener(R, w, c)
                }
            }
            return w
        },
        E1 = function(b, I, K, O, y, R, w, q) {
            return O = [-9, -48, 48, 29, -71, -79, O, -95, 27, 81], R = Vj, q = b & 7, y = p[K.h](K.pI), y[K.h] = function(N) {
                q += (w = N, 6 + 7 * b), q &= 7
            }, y.concat = function(N) {
                return (w = (N = (N = -46 * I * I * w - -2208 * I * w + (N = I % 16 + 1, 1 * I * I * N) + q + 46 * w * w + O[q + 27 & 7] * I * N - -2944 * w + (R() | 0) * N - N * w, O)[N], void 0), O[(q + 21 & 7) + (b & 2)] = N, O)[q + (b & 2)] = -48, N
            }, y
        },
        C = function(b, I, K, O, y, R) {
            if (K.R.length) {
                K.I = (K.KI = (K.I && 0(), b), true);
                try {
                    y = K.D(), K.F = y, K.X = y, K.i = 0, O = p2(b, K), R = K.D() - K.X, K.Y += R, R < (I ? 0 : 10) || 0 >= K.U-- || (R = Math.floor(R), K.o.push(254 >= R ? R : 254))
                } finally {
                    K.I = false
                }
                return O
            }
        },
        J = z.requestIdleCallback ? function(b) {
            requestIdleCallback(function() {
                b()
            }, {
                timeout: 4
            })
        } : z.setImmediate ? function(b) {
            setImmediate(b)
        } : function(b) {
            setTimeout(b, 0)
        },
        e = function(b, I, K, O, y, R) {
            if (!I.N) {
                if ((b = (K = (0 == (R = Z(253, ((O = void 0, b) && b[0] === D && (O = b[2], K = b[1], b = void 0), I)), R).length && (y = Z(351, I) >> 3, R.push(K, y >> 8 & 255, y & 255), void 0 != O && R.push(O & 255)), ""), b && (b.message && (K += b.message), b.stack && (K += ":" + b.stack)), Z)(97, I), 3) < b) {
                    I.A = (K = (b -= (K = K.slice(0, (b | 0) - 3), (K.length | 0) + 3), Qj)(K), O = I.A, I);
                    try {
                        x(162, I, v(2, K.length).concat(K), 9)
                    } finally {
                        I.A = O
                    }
                }
                k(97, I, b)
            }
        },
        HW = function(b, I, K, O) {
            for (K = (O = P(b), 0); 0 < I; I--) K = K << 8 | g(b);
            k(O, b, K)
        },
        FO = function(b, I) {
            return I(function(K) {
                K(b)
            }), [function() {
                return b
            }]
        },
        cW = function(b, I, K) {
            return I.B(function(O) {
                K = O
            }, false, b), K
        },
        x = function(b, I, K, O, y, R) {
            if (I.A == I)
                for (R = Z(b, I), 162 == b ? (b = function(w, q, N, u) {
                        if ((u = (q = R.length, (q | 0) - 4 >> 3), R.hN) != u) {
                            u = (u << (N = [0, 0, y[R.hN = u, 1], y[2]], 3)) - 4;
                            try {
                                R.bf = GJ(io(u, R), io((u | 0) + 4, R), N)
                            } catch (M) {
                                throw M;
                            }
                        }
                        R.push(R.bf[q & 7] ^ w)
                    }, y = Z(230, I)) : b = function(w) {
                        R.push(w)
                    }, O && b(O & 255), I = K.length, O = 0; O < I; O++) b(K[O])
        },
        TJ = function(b, I) {
            if ((I = (b = null, z).trustedTypes, !I) || !I.createPolicy) return b;
            try {
                b = I.createPolicy("bg", {
                    createHTML: gl,
                    createScript: gl,
                    createScriptURL: gl
                })
            } catch (K) {
                z.console && z.console.error(K.message)
            }
            return b
        },
        p2 = function(b, I, K, O) {
            for (; I.R.length;) {
                K = (I.g = null, I).R.pop();
                try {
                    O = AW(I, K)
                } catch (y) {
                    f(y, I)
                }
                if (b && I.g) {
                    b = I.g, b(function() {
                        C(true, true, I)
                    });
                    break
                }
            }
            return O
        },
        AW = function(b, I, K, O, y) {
            if (O = I[0], O == W) b.U = 25, b.u(I);
            else if (O == E) {
                K = I[1];
                try {
                    y = b.s || b.u(I)
                } catch (R) {
                    f(R, b), y = b.s
                }
                K(y)
            } else if (O == zJ) b.u(I);
            else if (O == S) b.u(I);
            else if (O == f2) {
                try {
                    for (y = 0; y < b.l.length; y++) try {
                        K = b.l[y], K[0][K[1]](K[2])
                    } catch (R) {}
                } catch (R) {}(0, I[b.l = [], 1])(function(R, w) {
                    b.B(R, true, w)
                }, function(R) {
                    l([$P], (R = !b.R.length, b)), R && C(true, false, b)
                })
            } else {
                if (O == F) return y = I[2], k(332, b, I[6]), k(356, b, y), b.u(I);
                O == $P ? (b.H = [], b.K = null, b.o = []) : O == uo && "loading" === z.document.readyState && (b.g = function(R, w) {
                    function q() {
                        w || (w = true, R())
                    }
                    z.document.addEventListener("DOMContentLoaded", q, (w = false, c)), z.addEventListener("load", q, c)
                })
            }
        },
        MO = function(b, I) {
            return p[b](p.prototype, {
                pop: I,
                call: I,
                splice: I,
                document: I,
                replace: I,
                prototype: I,
                length: I,
                propertyIsEnumerable: I,
                floor: I,
                console: I,
                parent: I,
                stack: I
            })
        },
        Db = function(b, I, K) {
            return K = p[b.h](b.ju), K[b.h] = function() {
                return I
            }, K.concat = function(O) {
                I = O
            }, K
        },
        a, Zb = function(b, I, K, O, y) {
            (((y = (K = P((I &= (O = I & 3, 4), y = P(b), b)), Z)(y, b), I) && (y = Qj("" + y)), O) && x(K, b, v(2, y.length)), x)(K, b, y)
        },
        B = function(b, I, K, O, y, R, w, q, N, u, M, H, r, m) {
            if ((r = Z(319, I), r) >= I.j) throw [D, 31];
            for (w = r, u = (H = I.fI.length, b), q = 0; 0 < u;) M = w % 8, R = 8 - (M | 0), N = w >> 3, R = R < u ? R : u, O = I.H[N], K && (y = I, y.G != w >> 6 && (y.G = w >> 6, m = Z(377, y), y.W = GJ(y.V, y.G, [0, 0, m[1], m[2]])), O ^= I.W[N & H]), q |= (O >> 8 - (M | 0) - (R | 0) & (1 << R) - 1) << (u | 0) - (R | 0), w += R, u -= R;
            return k(319, I, (K = q, (r | 0) + (b | 0))), K
        },
        P = function(b, I) {
            if (b.C) return hW(b, b.S);
            return (I = B(8, b, true), I) & 128 && (I ^= 128, b = B(2, b, true), I = (I << 2) + (b | 0)), I
        },
        d, k = function(b, I, K) {
            if (319 == b || 351 == b) I.K[b] ? I.K[b].concat(K) : I.K[b] = Db(I, K);
            else {
                if (I.N && 377 != b) return;
                507 == b || 162 == b || 17 == b || 253 == b || 230 == b ? I.K[b] || (I.K[b] = E1(54, b, I, K)) : I.K[b] = E1(137, b, I, K)
            }
            377 == b && (I.V = B(32, I, false), I.G = void 0)
        },
        Qj = function(b, I, K, O, y) {
            for (y = (I = K = (b = b.replace(/\r\n/g, "\n"), 0), []); I < b.length; I++) O = b.charCodeAt(I), 128 > O ? y[K++] = O : (2048 > O ? y[K++] = O >> 6 | 192 : (55296 == (O & 64512) && I + 1 < b.length && 56320 == (b.charCodeAt(I + 1) & 64512) ? (O = 65536 + ((O & 1023) << 10) + (b.charCodeAt(++I) & 1023), y[K++] = O >> 18 | 240, y[K++] = O >> 12 & 63 | 128) : y[K++] = O >> 12 | 224, y[K++] = O >> 6 & 63 | 128), y[K++] = O & 63 | 128);
            return y
        },
        g = function(b) {
            return b.C ? hW(b, b.S) : B(8, b, true)
        },
        T = function(b, I) {
            for (I = []; b--;) I.push(255 * Math.random() | 0);
            return I
        },
        mj = function(b, I) {
            return (I = g(b), I) & 128 && (I = I & 127 | g(b) << 7), I
        },
        K2 = function(b, I, K, O) {
            return (O = d[b.substring(0, 3) + "_"]) ? O(b.substring(3), I, K) : FO(b, I)
        },
        c = {
            passive: true,
            capture: true
        },
        gl = function(b) {
            return b
        },
        U = function(b, I, K) {
            K = this;
            try {
                JW(this, b, I)
            } catch (O) {
                f(O, this), I(function(y) {
                    y(K.s)
                })
            }
        },
        hW = function(b, I) {
            return (I = I.create().shift(), b.C.create().length || b.S.create().length) || (b.C = void 0, b.S = void 0), I
        },
        kP = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        zJ = [],
        f2 = [],
        $P = ((U.prototype.FY = void 0, U).prototype.T = "toString", U.prototype.CI = false, []),
        W = (U.prototype.eu = void 0, []),
        E = [],
        S = [],
        uo = [],
        D = {},
        F = [],
        p = (((I8, T, XO, function() {})(n2), U.prototype).h = "create", D.constructor),
        Vj = ((a = U.prototype, a.nI = function(b, I, K, O, y, R) {
            for (R = [], K = O = 0; K < b.length; K++)
                for (O += I, y = y << I | b[K]; 7 < O;) O -= 8, R.push(y >> O & 255);
            return R
        }, a).GP = function(b, I, K) {
            return b ^ ((I = (I ^= I << 13, I ^= I >> 17, (I ^ I << 5) & K)) || (I = 1), I)
        }, void 0),
        PW = (((a.D = (a.B = (a.Mm = function() {
            return Math.floor(this.Y + (this.D() - this.X))
        }, a.dt = function() {
            return Math.floor(this.D())
        }, a.Oj = function(b, I, K, O, y) {
            for (y = O = 0; y < b.length; y++) O += b.charCodeAt(y), O += O << 10, O ^= O >> 6;
            return O = (b = (O += O << 3, O ^= O >> 11, O) + (O << 15) >>> 0, new Number(b & (1 << I) - 1)), O[0] = (b >>> I) % K, O
        }, function(b, I, K, O, y) {
            if (K = "array" === R8(K) ? K : [K], this.s) b(this.s);
            else try {
                y = [], O = !this.R.length, l([W, y, K], this), l([E, b, y], this), I && !O || C(I, true, this)
            } catch (R) {
                f(R, this), b(this.s)
            }
        }), (window.performance || {}).now ? function() {
            return this.DP + window.performance.now()
        } : function() {
            return +new Date
        }), U.prototype.u = function(b, I) {
            return Vj = (I = (b = {}, {}), function() {
                    return I == b ? -64 : -17
                }),
                function(K, O, y, R, w, q, N, u, M, H, r, m, L, X, G) {
                    I = (u = I, b);
                    try {
                        if (y = K[0], y == S) {
                            L = K[1];
                            try {
                                for (M = H = (R = (q = atob(L), []), 0); H < q.length; H++) O = q.charCodeAt(H), 255 < O && (R[M++] = O & 255, O >>= 8), R[M++] = O;
                                this.H = R, this.j = this.H.length << 3, k(377, this, [0, 0, 0])
                            } catch (Q) {
                                e(Q, this, 17);
                                return
                            }
                            wl(this, 8001)
                        } else if (y == W) K[1].push(Z(97, this), Z(162, this).length, Z(17, this).length, Z(507, this).length), k(356, this, K[2]), this.K[376] && yj(this, 8001, Z(376, this));
                        else {
                            if (y == E) {
                                (X = (G = v(2, ((H = K[2], Z(507, this)).length | 0) + 2), this).A, this).A = this;
                                try {
                                    w = Z(253, this), 0 < w.length && x(507, this, v(2, w.length).concat(w), 10), x(507, this, v(1, this.L), 109), x(507, this, v(1, this[E].length)), q = 0, N = Z(162, this), q += Z(366, this) & 2047, q -= (Z(507, this).length | 0) + 5, 4 < N.length && (q -= (N.length | 0) + 3), 0 < q && x(507, this, v(2, q).concat(T(q)), 15), 4 < N.length && x(507, this, v(2, N.length).concat(N), 156)
                                } finally {
                                    this.A = X
                                }
                                if (r = ((M = T(2).concat(Z(507, this)), M)[1] = M[0] ^ 6, M[3] = M[1] ^ G[0], M[4] = M[1] ^ G[1], this).sj(M)) r = "!" + r;
                                else
                                    for (q = 0, r = ""; q < M.length; q++) m = M[q][this.T](16), 1 == m.length && (m = "0" + m), r += m;
                                return Z(507, (Z(((k(97, (R = r, this), H.shift()), Z)(162, this).length = H.shift(), 17), this).length = H.shift(), this)).length = H.shift(), R
                            }
                            if (y == zJ) yj(this, K[2], K[1]);
                            else if (y == F) return yj(this, 8001, K[1])
                        }
                    } finally {
                        I = u
                    }
                }
        }(), U.prototype).V2 = 0, U.prototype).sj = function(b, I, K, O) {
            if (I = window.btoa) {
                for (O = (K = 0, ""); K < b.length; K += 8192) O += String.fromCharCode.apply(null, b.slice(K, K + 8192));
                b = I(O).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else b = void 0;
            return b
        }, U.prototype.XY = 0, /./),
        o8, BW = S.pop.bind((U.prototype[f2] = [0, 0, 1, 1, 0, 1, 1], U.prototype[W])),
        xP = (o8 = MO(U.prototype.h, (PW[U.prototype.T] = BW, {get: BW
        })), U.prototype.gt = void 0, function(b, I) {
            return (I = TJ()) && 1 === b.eval(I.createScript("1")) ? function(K) {
                return I.createScript(K)
            } : function(K) {
                return "" + K
            }
        }(z));
    (40 < (d = z.botguard || (z.botguard = {}), d.m) || (d.m = 41, d.bg = O1, d.a = K2), d).LDL_ = function(b, I, K) {
        return [(K = new U(b, I), function(O) {
            return cW(O, K)
        })]
    };
}).call(this);
                                    

#2 JavaScript::Eval (size: 22, repeated: 1) - SHA256: c4e7ca158015332be1df536c970a209b44cb4744fae720ed1caaefdc87f37f93

                                        0,
function(R) {
    HW(R, 1)
}
                                    

#3 JavaScript::Eval (size: 22, repeated: 1) - SHA256: d8fc182869d21957579c2a09eae263e41ab53e4c30c4ffa96d93584a64eb6f77

                                        0,
function(R) {
    HW(R, 2)
}
                                    

#4 JavaScript::Eval (size: 226, repeated: 1) - SHA256: bb037a2c6d9cf7fa65d8570beb76b1a31c360826ed6edb8612a584aa1918d62d

                                        ({
    '0': [0, -15, 5, 8],
    '1': [-5, -15, 3, 8],
    '2': [-8, -15, 5, 8],
    '3': [-13, -15, 5, 8],
    '4': [-18, -15, 5, 8],
    '5': [-23, -15, 5, 8],
    '6': [-28, -15, 5, 8],
    '7': [-33, -15, 5, 8],
    '8': [-38, -15, 5, 8],
    '9': [-43, -15, 5, 8],
    ',': [-48, -15, 2, 8],
    'o': [-50, -15, 24, 8]
})
                                    

#5 JavaScript::Eval (size: 64, repeated: 1) - SHA256: 14ed98b8b82987bce49c9e6a0f9b620434ec92ad83e9815037257823fe34071e

                                        0,
function(R, w, q) {
    k((q = (w = (q = P(R), P(R)), R).K[q] && Z(q, R), w), R, q)
}
                                    

#6 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 17f5bfdbae6b35ae8bc3b27c069526d694021fe1e37a8027678e770fbb05e061

                                        /*@cc_on!@*/
false
                                    

#7 JavaScript::Eval (size: 15568, repeated: 1) - SHA256: ac67106da7775f013b7cb9730c8cde5cfa186d74c2bff74fe27579bb046366be

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var q = function(b, R) {
            if ((R = (b = K.trustedTypes, null), !b) || !b.createPolicy) return R;
            try {
                R = b.createPolicy("bg", {
                    createHTML: O,
                    createScript: O,
                    createScriptURL: O
                })
            } catch (I) {
                K.console && K.console.error(I.message)
            }
            return R
        },
        K = this || self,
        O = function(b) {
            return b
        };
    (0, eval)(function(b, R) {
        return (R = q()) && 1 === b.eval(R.createScript("1")) ? function(I) {
            return R.createScript(I)
        } : function(I) {
            return "" + I
        }
    }(K)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var z=this||self,bo=function(b,I,K,O){(K=P((O=P(b),b)),x)(K,b,v(I,Z(O,b)))},R8=function(b,I,K){if("object"==(I=typeof b,I))if(b){if(b instanceof Array)return"array";if(b instanceof Object)return I;if("[object Window]"==(K=Object.prototype.toString.call(b),K))return"object";if("[object Array]"==K||"number"==typeof b.length&&"undefined"!=typeof b.splice&&"undefined"!=typeof b.propertyIsEnumerable&&!b.propertyIsEnumerable("splice"))return"array";if("[object Function]"==K||"undefined"!=typeof b.call&&"undefined"!=typeof b.propertyIsEnumerable&&!b.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==I&&"undefined"==typeof b.call)return"object";return I},Z=function(b,I){if(void 0===(I=I.K[b],I))throw[D,30,b];if(I.value)return I.create();return I.create(1*b*b+-48*b+-64),I.prototype},f=function(b,I){I.s=((I.s?I.s+"~":"E:")+b.message+":"+b.stack).slice(0,2048)},I8=function(b,I){(I.push(b[0]<<24|b[1]<<16|b[2]<<8|b[3]),I.push(b[4]<<24|b[5]<<16|b[6]<<8|b[7]),I).push(b[8]<<24|b[9]<<16|b[10]<<8|b[11])},O1=function(b,I,K,O){function y(){}return{invoke:(O=K2(b,(K=void 0,function(R){y&&(I&&J(I),K=R,y(),y=void 0)}),!!I)[0],function(R,w,q,N){function u(){K(function(M){J(function(){R(M)})},q)}if(!w)return w=O(q),R&&R(w),w;K?u():(N=y,y=function(){(N(),J)(u)})})}},yj=function(b,I,K,O){return Z(356,(k(319,(wl(b,(O=Z(319,b),b.H&&O<b.j?(k(319,b,b.j),qO(b,K)):k(319,b,K),I)),b),O),b))},A=function(b,I,K,O,y,R,w,q,N){if(O.L+=((w=(y=(N=(R=(q=(K||O.i++,0<O.P&&O.I)&&O.KI&&1>=O.v&&!O.C&&!O.g&&(!K||1<O.Z-b)&&0==document.hidden,4==O.i))||q?O.D():O.F,N-O.F),y>>14),O.V)&&(O.V^=w*(y<<2)),O.A=w||O.A,w),R||q)O.F=N,O.i=0;if(!q||N-O.X<O.P-(I?255:K?5:2))return false;return(k((I=Z((O.Z=b,K?351:319),O),319),O,O.j),O.R).push([zJ,I,K?b+1:b]),O.g=J,true},io=function(b,I){return I[b]<<24|I[(b|0)+1]<<16|I[(b|0)+2]<<8|I[(b|0)+3]},qO=function(b,I){k(319,((b.rt.push(b.K.slice()),b).K[319]=void 0,b),I)},V=function(b,I,K){I[k(K,b,I),uo]=2796},JW=function(b,I,K,O,y){for((b.pI=MO(b.h,((b.kG=(b.fI=b[E],o8),b).Q2=PW,{get:function(){return this.concat()}})),b).ju=p[b.h](b.pI,{value:{value:{}}}),y=[],O=0;128>O;O++)y[O]=String.fromCharCode(O);C(true,true,(l(((l([(V(b,(V(b,function(R,w){(w=Z(P(R),R),qO)(R.A,w)},(V(b,function(R,w,q,N){k((w=g((N=P(R),R)),q=P(R),q),R,Z(N,R)>>>w)},(k(97,(V((V(b,(k(230,b,(V(b,(b.uf=(k((k(162,b,(V(b,function(R,w,q,N){(N=Z((w=(q=(w=P(R),N=P(R),P(R)),Z)(w,R),N),R),k)(q,R,+(w==N))},(V(b,(V((V(b,(V(b,(V(b,(V(b,function(R){bo(R,1)},(k(17,((V(b,(b.HZ=(V(b,function(R,w){R=(w=P(R),Z(w,R.A)),R[0].removeEventListener(R[1],R[2],c)},(k(507,b,(V(b,function(R,w,q,N,u,M,H){for(u=(q=Z(92,(w=(H=mj((N=P(R),R)),""),R)),q.length),M=0;H--;)M=((M|0)+(mj(R)|0))%u,w+=y[q[M]];k(N,R,w)},((V(b,((V((k((k(366,(k(356,b,(V(b,(V(b,(V(b,(V((k(182,(k(305,(k((b.Su=(V(b,(V(b,function(R,w,q){A(w,false,true,R)||(w=P(R),q=P(R),k(q,R,function(N){return eval(N)}(xP(Z(w,R.A)))))},(V(b,function(R){HW(R,4)},(k((b.s=(b.DP=(b.L=1,b.G=void 0,b.rt=[],b.KI=false,(b.W=void 0,b.Y=0,b.X=(b.o=(b.A=b,[]),b.l=(b.v=0,O=(b.g=null,b.j=0,(b.S=(b.N=false,void 0),b.wt=0,window).performance)||{},(b.P=0,b).I=!(b.Z=8001,1),b.H=[],[]),(b.i=void 0,b.U=25,b.C=void 0,b.R=[],(b.V=void 0,b).RQ=function(R){this.A=R},b).K=[],0),(b.F=0,O).timeOrigin||(O.timing||{}).navigationStart)||0),void 0),319),b,0),k(351,b,0),475)),168)),function(R,w,q){0!=(q=Z((w=P(R),q=P(R),q),R),Z(w,R))&&k(319,R,q)}),342),0),253),b,[]),b),b),b),0),b),function(R){bo(R,4)},267),function(R,w,q,N,u){(q=(u=Z((w=Z((u=P((q=(N=(w=P(R),P)(R),P)(R),R)),w),R.A),u),R),N=Z(N,R),Z)(q,R),0)!==w&&(q=vW(1,R,u,q,w,N),w.addEventListener(N,q,c),k(182,R,[w,N,q]))}),261),function(R,w,q,N,u){(w=(q=P((N=(u=P(R),P)(R),R)),P(R)),q=Z(q,R),w=Z(w,R),N=Z(N,R),k)(u,R,vW(w,R,q,N))}),222),function(R,w,q,N){(w=P((N=(q=P(R),P)(R),R)),k)(w,R,Z(q,R)||Z(N,R))}),381),{})),b),0),270),b,z),b),function(R){Zb(R,3)},395),V)(b,function(R,w,q){k((q=Z((w=P((q=P(R),R)),q),R),q=R8(q),w),R,q)},405),function(R,w,q,N){!A(w,false,true,R)&&(w=rl(R),q=w.J,N=w.AN,R.A==R||q==R.RQ&&N==R)&&(k(w.aQ,R,q.apply(N,w.O)),R.F=R.D())}),234),V)(b,function(R){Zb(R,4)},203),335)),[160,0,0])),206)),0),function(){}),503),V)(b,function(R,w,q,N,u,M,H,r,m,L,X,G){function Q(n,h){for(;q<n;)G|=g(R)<<q,q+=8;return h=G&(1<<n)-1,q-=n,G>>=n,h}for(X=(L=(q=G=(M=P(R),0),(Q(3)|0)+1),u=Q(5),N=0),m=[];N<u;N++)H=Q(1),m.push(H),X+=H?0:1;for(X=(w=(N=((X|0)-1).toString(2).length,[]),0);X<u;X++)m[X]||(w[X]=Q(N));for(N=0;N<u;N++)m[N]&&(w[N]=P(R));for(r=[];L--;)r.push(Z(P(R),R));V(R,function(n,h,Y,NO,t){for(h=(NO=[],0),Y=[];h<u;h++){if(t=w[h],!m[h]){for(;t>=Y.length;)Y.push(P(n));t=Y[t]}NO.push(t)}n.S=Db(n,(n.C=Db(n,r.slice()),NO))},M)},94),b),[]),367)),function(R,w,q,N){(N=Z((q=Z((w=(q=P(R),P)(R),q),R),w),R),k)(w,R,N+q)}),58),function(R,w,q,N,u,M){if(!A(w,true,true,R)){if("object"==R8((R=Z((M=(w=(M=(q=(w=(N=P(R),P)(R),P(R)),P(R)),Z)(w,R),Z)(M,R),q=Z(q,R),N),R),R))){for(u in N=[],R)N.push(u);R=N}for(N=(u=(q=0<q?q:1,0),R).length;u<N;u+=q)w(R.slice(u,(u|0)+(q|0)),M)}}),341),function(R,w,q,N){if(w=R.rt.pop()){for(q=g(R);0<q;q--)N=P(R),w[N]=R.K[N];R.K=(w[253]=R.K[253],w[97]=R.K[97],w)}else k(319,R,R.j)}),327),b),function(R,w,q){w=P(R),q=P(R),k(q,R,""+Z(w,R))},455),function(R,w,q,N,u){for(q=(u=P(R),w=mj(R),N=[],0);q<w;q++)N.push(g(R));k(u,R,N)}),34),117)),T)(4)),205),b,524),0),function(R,w,q,N){N=(w=P((q=(N=P(R),P(R)),R)),Z(N,R)),q=Z(q,R),k(w,R,N in q|0)}),79),[0,0,0])),function(R,w,q,N,u){(q=(u=(N=P(R),P(R)),P)(R),R).A==R&&(q=Z(q,R),w=Z(N,R),u=Z(u,R),w[u]=q,377==N&&(R.G=void 0,2==u&&(R.V=B(32,R,false),R.G=void 0)))}),474),b),function(R,w,q,N,u,M){A(w,false,true,R)||(N=rl(R.A),w=N.AN,M=N.O,q=N.J,u=M.length,N=N.aQ,w=0==u?new w[q]:1==u?new w[q](M[0]):2==u?new w[q](M[0],M[1]):3==u?new w[q](M[0],M[1],M[2]):4==u?new w[q](M[0],M[1],M[2],M[3]):2(),k(N,R,w))},317),b),2048),89)),473)),function(R,w,q,N){k((N=(q=Z((w=P((N=(q=P(R),P(R)),R)),q),R),Z(N,R)),w),R,q[N])}),380),uo)],b),l)([S,I],b),[f2,K]),b),b))},l=function(b,I){I.R.splice(0,0,b)},XO=function(b,I,K,O){try{O=b[((I|0)+2)%3],b[I]=(b[I]|0)-(b[((I|0)+1)%3]|0)-(O|0)^(1==I?O<<K:O>>>K)}catch(y){throw y;}},n2=function(b,I,K){if(3==b.length){for(K=0;3>K;K++)I[K]+=b[K];for(b=[13,8,13,12,16,5,3,10,15],K=0;9>K;K++)I[3](I,K%3,b[K])}},GJ=function(b,I,K,O,y){for(y=(K=K[3]|(O=K[2]|0,0),0);14>y;y++)I=I>>>8|I<<24,I+=b|0,K=K>>>8|K<<24,b=b<<3|b>>>29,I^=O+2298,K+=O|0,K^=y+2298,b^=I,O=O<<3|O>>>29,O^=K;return[b>>>24&255,b>>>16&255,b>>>8&255,b>>>0&255,I>>>24&255,I>>>16&255,I>>>8&255,I>>>0&255]},v=function(b,I,K,O){for(K=(b|0)-1,O=[];0<=K;K--)O[(b|0)-1-(K|0)]=I>>8*K&255;return O},wl=function(b,I,K,O,y,R){if(!b.s){b.v++;try{for(R=(y=(K=b.j,void 0),0);--I;)try{if((O=void 0,b).C)y=hW(b,b.C);else{if(R=Z(319,b),R>=K)break;O=P((k(351,b,R),b)),y=Z(O,b)}A((y&&y[$P]&2048?y(b,I):e([D,21,O],b,0),I),false,false,b)}catch(w){Z(205,b)?e(w,b,22):k(205,b,w)}if(!I){if(b.CI){b.v--,wl(b,216630971487);return}e([D,33],b,0)}}catch(w){try{e(w,b,22)}catch(q){f(q,b)}}b.v--}},rl=function(b,I,K,O,y,R){for(R=(K=((O=(I=b[kP]||{},P(b)),I.aQ=P(b),I).O=[],b.A==b?(g(b)|0)-1:1),P(b)),y=0;y<K;y++)I.O.push(P(b));for(;K--;)I.O[K]=Z(I.O[K],b);return(I.J=Z(O,b),I).AN=Z(R,b),I},vW=function(b,I,K,O,y,R){function w(){if(I.A==I){if(I.K){var q=[F,O,K,void 0,y,R,arguments];if(2==b)var N=C(false,false,(l(q,I),I));else if(1==b){var u=!I.R.length;(l(q,I),u)&&C(false,false,I)}else N=AW(I,q);return N}y&&R&&y.removeEventListener(R,w,c)}}return w},E1=function(b,I,K,O,y,R,w,q){return O=[-9,-48,48,29,-71,-79,O,-95,27,81],R=Vj,q=b&7,y=p[K.h](K.pI),y[K.h]=function(N){q+=(w=N,6+7*b),q&=7},y.concat=function(N){return(w=(N=(N=-46*I*I*w- -2208*I*w+(N=I%16+1,1*I*I*N)+q+46*w*w+O[q+27&7]*I*N- -2944*w+(R()|0)*N-N*w,O)[N],void 0),O[(q+21&7)+(b&2)]=N,O)[q+(b&2)]=-48,N},y},C=function(b,I,K,O,y,R){if(K.R.length){K.I=(K.KI=(K.I&&0(),b),true);try{y=K.D(),K.F=y,K.X=y,K.i=0,O=p2(b,K),R=K.D()-K.X,K.Y+=R,R<(I?0:10)||0>=K.U--||(R=Math.floor(R),K.o.push(254>=R?R:254))}finally{K.I=false}return O}},J=z.requestIdleCallback?function(b){requestIdleCallback(function(){b()},{timeout:4})}:z.setImmediate?function(b){setImmediate(b)}:function(b){setTimeout(b,0)},e=function(b,I,K,O,y,R){if(!I.N){if((b=(K=(0==(R=Z(253,((O=void 0,b)&&b[0]===D&&(O=b[2],K=b[1],b=void 0),I)),R).length&&(y=Z(351,I)>>3,R.push(K,y>>8&255,y&255),void 0!=O&&R.push(O&255)),""),b&&(b.message&&(K+=b.message),b.stack&&(K+=":"+b.stack)),Z)(97,I),3)<b){I.A=(K=(b-=(K=K.slice(0,(b|0)-3),(K.length|0)+3),Qj)(K),O=I.A,I);try{x(162,I,v(2,K.length).concat(K),9)}finally{I.A=O}}k(97,I,b)}},HW=function(b,I,K,O){for(K=(O=P(b),0);0<I;I--)K=K<<8|g(b);k(O,b,K)},FO=function(b,I){return I(function(K){K(b)}),[function(){return b}]},cW=function(b,I,K){return I.B(function(O){K=O},false,b),K},x=function(b,I,K,O,y,R){if(I.A==I)for(R=Z(b,I),162==b?(b=function(w,q,N,u){if((u=(q=R.length,(q|0)-4>>3),R.hN)!=u){u=(u<<(N=[0,0,y[R.hN=u,1],y[2]],3))-4;try{R.bf=GJ(io(u,R),io((u|0)+4,R),N)}catch(M){throw M;}}R.push(R.bf[q&7]^w)},y=Z(230,I)):b=function(w){R.push(w)},O&&b(O&255),I=K.length,O=0;O<I;O++)b(K[O])},TJ=function(b,I){if((I=(b=null,z).trustedTypes,!I)||!I.createPolicy)return b;try{b=I.createPolicy("bg",{createHTML:gl,createScript:gl,createScriptURL:gl})}catch(K){z.console&&z.console.error(K.message)}return b},p2=function(b,I,K,O){for(;I.R.length;){K=(I.g=null,I).R.pop();try{O=AW(I,K)}catch(y){f(y,I)}if(b&&I.g){b=I.g,b(function(){C(true,true,I)});break}}return O},AW=function(b,I,K,O,y){if(O=I[0],O==W)b.U=25,b.u(I);else if(O==E){K=I[1];try{y=b.s||b.u(I)}catch(R){f(R,b),y=b.s}K(y)}else if(O==zJ)b.u(I);else if(O==S)b.u(I);else if(O==f2){try{for(y=0;y<b.l.length;y++)try{K=b.l[y],K[0][K[1]](K[2])}catch(R){}}catch(R){}(0,I[b.l=[],1])(function(R,w){b.B(R,true,w)},function(R){l([$P],(R=!b.R.length,b)),R&&C(true,false,b)})}else{if(O==F)return y=I[2],k(332,b,I[6]),k(356,b,y),b.u(I);O==$P?(b.H=[],b.K=null,b.o=[]):O==uo&&"loading"===z.document.readyState&&(b.g=function(R,w){function q(){w||(w=true,R())}z.document.addEventListener("DOMContentLoaded",q,(w=false,c)),z.addEventListener("load",q,c)})}},MO=function(b,I){return p[b](p.prototype,{pop:I,call:I,splice:I,document:I,replace:I,prototype:I,length:I,propertyIsEnumerable:I,floor:I,console:I,parent:I,stack:I})},Db=function(b,I,K){return K=p[b.h](b.ju),K[b.h]=function(){return I},K.concat=function(O){I=O},K},a,Zb=function(b,I,K,O,y){(((y=(K=P((I&=(O=I&3,4),y=P(b),b)),Z)(y,b),I)&&(y=Qj(""+y)),O)&&x(K,b,v(2,y.length)),x)(K,b,y)},B=function(b,I,K,O,y,R,w,q,N,u,M,H,r,m){if((r=Z(319,I),r)>=I.j)throw[D,31];for(w=r,u=(H=I.fI.length,b),q=0;0<u;)M=w%8,R=8-(M|0),N=w>>3,R=R<u?R:u,O=I.H[N],K&&(y=I,y.G!=w>>6&&(y.G=w>>6,m=Z(377,y),y.W=GJ(y.V,y.G,[0,0,m[1],m[2]])),O^=I.W[N&H]),q|=(O>>8-(M|0)-(R|0)&(1<<R)-1)<<(u|0)-(R|0),w+=R,u-=R;return k(319,I,(K=q,(r|0)+(b|0))),K},P=function(b,I){if(b.C)return hW(b,b.S);return(I=B(8,b,true),I)&128&&(I^=128,b=B(2,b,true),I=(I<<2)+(b|0)),I},d,k=function(b,I,K){if(319==b||351==b)I.K[b]?I.K[b].concat(K):I.K[b]=Db(I,K);else{if(I.N&&377!=b)return;507==b||162==b||17==b||253==b||230==b?I.K[b]||(I.K[b]=E1(54,b,I,K)):I.K[b]=E1(137,b,I,K)}377==b&&(I.V=B(32,I,false),I.G=void 0)},Qj=function(b,I,K,O,y){for(y=(I=K=(b=b.replace(/\\r\\n/g,"\\n"),0),[]);I<b.length;I++)O=b.charCodeAt(I),128>O?y[K++]=O:(2048>O?y[K++]=O>>6|192:(55296==(O&64512)&&I+1<b.length&&56320==(b.charCodeAt(I+1)&64512)?(O=65536+((O&1023)<<10)+(b.charCodeAt(++I)&1023),y[K++]=O>>18|240,y[K++]=O>>12&63|128):y[K++]=O>>12|224,y[K++]=O>>6&63|128),y[K++]=O&63|128);return y},g=function(b){return b.C?hW(b,b.S):B(8,b,true)},T=function(b,I){for(I=[];b--;)I.push(255*Math.random()|0);return I},mj=function(b,I){return(I=g(b),I)&128&&(I=I&127|g(b)<<7),I},K2=function(b,I,K,O){return(O=d[b.substring(0,3)+"_"])?O(b.substring(3),I,K):FO(b,I)},c={passive:true,capture:true},gl=function(b){return b},U=function(b,I,K){K=this;try{JW(this,b,I)}catch(O){f(O,this),I(function(y){y(K.s)})}},hW=function(b,I){return(I=I.create().shift(),b.C.create().length||b.S.create().length)||(b.C=void 0,b.S=void 0),I},kP=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),zJ=[],f2=[],$P=((U.prototype.FY=void 0,U).prototype.T="toString",U.prototype.CI=false,[]),W=(U.prototype.eu=void 0,[]),E=[],S=[],uo=[],D={},F=[],p=(((I8,T,XO,function(){})(n2),U.prototype).h="create",D.constructor),Vj=((a=U.prototype,a.nI=function(b,I,K,O,y,R){for(R=[],K=O=0;K<b.length;K++)for(O+=I,y=y<<I|b[K];7<O;)O-=8,R.push(y>>O&255);return R},a).GP=function(b,I,K){return b^((I=(I^=I<<13,I^=I>>17,(I^I<<5)&K))||(I=1),I)},void 0),PW=(((a.D=(a.B=(a.Mm=function(){return Math.floor(this.Y+(this.D()-this.X))},a.dt=function(){return Math.floor(this.D())},a.Oj=function(b,I,K,O,y){for(y=O=0;y<b.length;y++)O+=b.charCodeAt(y),O+=O<<10,O^=O>>6;return O=(b=(O+=O<<3,O^=O>>11,O)+(O<<15)>>>0,new Number(b&(1<<I)-1)),O[0]=(b>>>I)%K,O},function(b,I,K,O,y){if(K="array"===R8(K)?K:[K],this.s)b(this.s);else try{y=[],O=!this.R.length,l([W,y,K],this),l([E,b,y],this),I&&!O||C(I,true,this)}catch(R){f(R,this),b(this.s)}}),(window.performance||{}).now?function(){return this.DP+window.performance.now()}:function(){return+new Date}),U.prototype.u=function(b,I){return Vj=(I=(b={},{}),function(){return I==b?-64:-17}),function(K,O,y,R,w,q,N,u,M,H,r,m,L,X,G){I=(u=I,b);try{if(y=K[0],y==S){L=K[1];try{for(M=H=(R=(q=atob(L),[]),0);H<q.length;H++)O=q.charCodeAt(H),255<O&&(R[M++]=O&255,O>>=8),R[M++]=O;this.H=R,this.j=this.H.length<<3,k(377,this,[0,0,0])}catch(Q){e(Q,this,17);return}wl(this,8001)}else if(y==W)K[1].push(Z(97,this),Z(162,this).length,Z(17,this).length,Z(507,this).length),k(356,this,K[2]),this.K[376]&&yj(this,8001,Z(376,this));else{if(y==E){(X=(G=v(2,((H=K[2],Z(507,this)).length|0)+2),this).A,this).A=this;try{w=Z(253,this),0<w.length&&x(507,this,v(2,w.length).concat(w),10),x(507,this,v(1,this.L),109),x(507,this,v(1,this[E].length)),q=0,N=Z(162,this),q+=Z(366,this)&2047,q-=(Z(507,this).length|0)+5,4<N.length&&(q-=(N.length|0)+3),0<q&&x(507,this,v(2,q).concat(T(q)),15),4<N.length&&x(507,this,v(2,N.length).concat(N),156)}finally{this.A=X}if(r=((M=T(2).concat(Z(507,this)),M)[1]=M[0]^6,M[3]=M[1]^G[0],M[4]=M[1]^G[1],this).sj(M))r="!"+r;else for(q=0,r="";q<M.length;q++)m=M[q][this.T](16),1==m.length&&(m="0"+m),r+=m;return Z(507,(Z(((k(97,(R=r,this),H.shift()),Z)(162,this).length=H.shift(),17),this).length=H.shift(),this)).length=H.shift(),R}if(y==zJ)yj(this,K[2],K[1]);else if(y==F)return yj(this,8001,K[1])}}finally{I=u}}}(),U.prototype).V2=0,U.prototype).sj=function(b,I,K,O){if(I=window.btoa){for(O=(K=0,"");K<b.length;K+=8192)O+=String.fromCharCode.apply(null,b.slice(K,K+8192));b=I(O).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else b=void 0;return b},U.prototype.XY=0,/./),o8,BW=S.pop.bind((U.prototype[f2]=[0,0,1,1,0,1,1],U.prototype[W])),xP=(o8=MO(U.prototype.h,(PW[U.prototype.T]=BW,{get:BW})),U.prototype.gt=void 0,function(b,I){return(I=TJ())&&1===b.eval(I.createScript("1"))?function(K){return I.createScript(K)}:function(K){return""+K}}(z));(40<(d=z.botguard||(z.botguard={}),d.m)||(d.m=41,d.bg=O1,d.a=K2),d).LDL_=function(b,I,K){return[(K=new U(b,I),function(O){return cW(O,K)})]};}).call(this);'));
}).call(this);
                                    

Executed Writes (7)

#1 JavaScript::Write (size: 102, repeated: 1) - SHA256: 85da7d1cfcb15d9fce544ae41b75b8814d98033b37c12ba5dfd8b315ff4d0cbe

                                        < a target = '_blank'
class = 'anc'
href = 'http://x6.xclicks.net/sc/out.php?s=7896' > Mais V� deos Porno < /a>
                                    

#2 JavaScript::Write (size: 166, repeated: 1) - SHA256: 53320710b9ffcedf6f731be05fcfa9b0aac3dd2da481f8a777f8119b300d462c

                                        < script type = "text/javascript"
src = "https://secureimage.securedataimages.com/javascript//secure/ffadult-anchor_banner_toolbar-1381352212.js"
charset = "UTF-8" > < /script>
                                    

#3 JavaScript::Write (size: 166, repeated: 1) - SHA256: 8d506440a7afb82439401221ab48025d3059d610b4b4a516ccd90777a2798fff

                                        < script type = "text/javascript"
src = "https://secureimage.securedataimages.com/javascript//secure/ffadult-floater_ads_masterset-1309894486.js"
charset = "UTF-8" > < /script>
                                    

#4 JavaScript::Write (size: 16804, repeated: 1) - SHA256: e9c1b16a67f160fa15c81cda291b6fcc25b7682ee4d17c72a996cf4a94deef67

                                        < div id = "FFN_Banner_Holder"
style = "position:fixed; z-index:99999; width:98%; height:26px; right:1%; bottom:0px;" > < div style = "float:right; width:98%; min-width:695px;" > < div id = "FFN_Banner_Container"
style = "z-index:99499; position:relative; width:100%; height:26px; top:0px; background-color:#660000;" > < div style = "z-index:99497; position:absolute; top:0px; left:0px;" > < img src = "https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/skins/red_1/left.gif"
width = "3"
height = "26"
border = "0"
alt = "left" / > < /div><div style="z-index:99496; position:absolute; top:0px; left:3px; text-align:left;">  <div style="float:left; padding-top:2px; background:url(https:/ / secureimage.securedataimages.com / banners / floater_ads / anchor / toolbar / skins / red_1 / logo_bg.gif) repeat - x;
"><a href="
http: //adultfriendfinder.com/p/register.cgi?pid=g1368562-pct&site=ffadult&amp;lang=english;REG_sex=1&looking_for_person=2&show=M-F&age=18-35&creative=toolbar_chat" target="_blank" title="Click here for more."><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/logo_ffadult.png" height="24" border="0" alt="AdultFriendFinder" /></a></div>  <div style="float:left; clear:none; background-color:#660000;"><a href="http://adultfriendfinder.com/p/register.cgi?pid=g1368562-pct&site=ffadult&amp;lang=english;REG_sex=1&looking_for_person=2&show=M-F&age=18-35&creative=toolbar_chat" target="_blank" onmouseover="FFN.banners.masterSet.imgAct('but_profile','profiles_over'); FFN.banners.ab_toolbar.showMsg(this,'View%20Member%20Profiles');" onmouseout="FFN.banners.masterSet.imgAct('but_profile','profiles_out'); FFN.banners.ab_toolbar.hideMsg();"><img name="but_profile" src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/skins/red_1/profiles_out.gif" width="51" height="26" border="0" /></a></div>  <div style="float:left; clear:none; background-color:#660000;"><a href="http://adultfriendfinder.com/p/register.cgi?pid=g1368562-pct&site=ffadult&amp;lang=english;REG_sex=1&looking_for_person=2&show=M-F&age=18-35&creative=toolbar_chat" target="_blank" onmouseover="FFN.banners.masterSet.imgAct('but_videos','videos_over'); FFN.banners.ab_toolbar.showMsg(this,'View%20Hot%20Videos');" onmouseout="FFN.banners.masterSet.imgAct('but_videos','videos_out'); FFN.banners.ab_toolbar.hideMsg();"><img name="but_videos" src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/skins/red_1/videos_out.gif" width="49" height="26" border="0" /></a></div>  <div style="float:left; clear:none; background-color:#660000;"><a href="http://adultfriendfinder.com/p/register.cgi?pid=g1368562-pct&site=ffadult&amp;lang=english;REG_sex=1&looking_for_person=2&show=M-F&age=18-35&creative=toolbar_chat" target="_blank" onmouseover="FFN.banners.masterSet.imgAct('but_chat','chat_over'); FFN.banners.ab_toolbar.showMsg(this,'Live%20Sex%20Chat');" onmouseout="FFN.banners.masterSet.imgAct('but_chat','chat_out'); FFN.banners.ab_toolbar.hideMsg();"><img name="but_chat" src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/skins/red_1/chat_out.gif" width="49" height="26" border="0" /></a></div></div><div style="z-index:99400; position:absolute; width:99%; top:0px; left:3px; background:#660000 url(https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/skins/red_1/bg.gif) repeat-x; text-align:left;"><div style="float:left;"><table><tr><td height="26" valign="bottom" style="font-family:Arial, Helvetica, sans-serif; font-size:8px; font-weight:bold; color:#996666;">May not be actual members / data. For illustrative purposes only.</tr></td></table></div></div><div style="width:0px; height:0px;"><object id="FFN_audio" type="application/x-shockwave-flash" data="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/audio/player.swf" width="0" height="0"><param name="allowScriptAccess" value="always" /><param name="quality" value="high" /><param name="flashvars" value="" /><param name="movie" value="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/audio/player.swf" /></object></div><div id="FFN_Chat" style="z-index:99799; position:absolute; bottom:0px; right:197px; width:230px; height:180px; display:none;"><div style="z-index:99795; position:absolute; top:0px; right:0px; width:20px; height:20px; background-color:transparent; cursor:pointer;" onclick="FFN.banners.ab_toolbar.closeOnlineChat();"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/spacer.gif" width="20" height="20" border="0" alt="" /></div><div style="z-index:99794; position:absolute; top:0px; left:0px; width:228px; height:154px; cursor:pointer;" onclick="FFN.banners.ab_toolbar.openClick('http://adultfriendfinder.com/p/register.cgi?pid=g1368562-pct&site=ffadult&amp;lang=english;REG_sex=1&looking_for_person=2&show=M-F&age=18-35&creative=toolbar_chat');"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/spacer.gif" width="228" height="154" border="0" alt="" /></div><div style="z-index:99793; position:absolute; bottom:0px; right:0px; width:145px; height:22px; cursor:pointer;" onclick="FFN.banners.ab_toolbar.openClick('http://adultfriendfinder.com/p/register.cgi?pid=g1368562-pct&site=ffadult&amp;lang=english;REG_sex=1&looking_for_person=2&show=M-F&age=18-35&creative=toolbar_chat');"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/spacer.gif" width="145" height="22" border="0" alt="" /></div><div style="background-color:#FFFFFF; border:2px solid #666666; height:150px;"><div style="position:absolute; top:5px; left:5px;"><img id="FFN_on_img" src="https://secureimage.securedataimages.com/ffadult/featured/external/43/134384_134384.134384.thumb.gif" width="47" height="62" border="0" alt="" /></div><div style="background-color:#660000; color:#FFFFFF; font-family:Arial, Helvetica, sans-serif; font-weight:bold; font-size:12px; padding:2px 6px 2px 56px;"><div id="FFN_on_handle1" style="float:left; font-weight:bold;">Lustlady9</div><div style="float:right; clear:none;">X</div><div style="clear:both;"></div></div><div style="color:#000000; text-align:left; background-color:#CCCCCC; font-family:Arial, Helvetica, sans-serif; font-size:10px; padding-left:56px; height:40px; overflow:hidden;"><span id="FFN_on_age">18</span>/<span id="FFN_on_gender">F</span>,&nbsp;<span id="FFN_on_city">Sunnyvale</span><br /><span id="FFN_on_caption">Caption</span></div><div style="margin:10px 5px 5px 5px;"><div id="FFN_Chat_Member"style="color:#000000; text-align:left; font-family:Arial, Helvetica, sans-serif; font-size:10px; height:48px; overflow:hidden; border-bottom:1px solid #ccc;"></div><form name="chat" style="margin:0; padding:0;"><div style="padding-top:4px;"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/chatbubble.gif" width="20" height="17" border="0" alt="" align="absmiddle" />&nbsp;<img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/blink.gif" width="2" height="14" border="0" alt="" align="absmiddle" />&nbsp;<input type="text" name="frm_chat" style="border-width:0; width:175px; background-color:#FFFFFF;" /></div></form></div></div><div id="FFN_Chat_LT"><div style="z-index:99790; position:absolute; bottom:0px; right:0px; background-color:#fff; width:145px; height:26px; border-width:2px; border-style:none solid solid solid; border-color:transparent #666 #666 #666; font-family:Arial, Helvetica, sans-serif; font-weight:bold; font-size:11px;"><div style="color:#000000; text-align:left; margin:6px 0 0 5px;"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/online_active.gif" width="8" height="8" border="0" alt="" align="absmiddle" />&nbsp;<span id="FFN_on_handle2">Lustlady9</span></div></div></div></div><div id="FFN_Online_Members" style="z-index:99699; position:absolute; bottom:0px; right:15px; width:180px; height:180px; display:none;"><div style="z-index:99695; position:absolute; top:0px; right:0px; width:20px; height:20px; cursor:pointer;" onclick="FFN.banners.ab_toolbar.hide('FFN_Online_Members');FFN.banners.ab_toolbar.updateClr();"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/spacer.gif" width="20" height="20" border="0" alt="" /></div><div style="z-index:99694; position:absolute; top:0px; left:0px; width:178px; height:154px; cursor:pointer;" onclick="FFN.banners.ab_toolbar.openClick('http://adultfriendfinder.com/p/register.cgi?pid=g1368562-pct&site=ffadult&amp;lang=english;REG_sex=1&looking_for_person=2&show=M-F&age=18-35&creative=toolbar_chat');"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/spacer.gif" width="178" height="154" border="0" alt="" /></div><div style="background-color:#fff; border:2px solid #666666; height:150px;"><div style="background-color:#660000; color:#FFFFFF; font-family:Arial, Helvetica, sans-serif; font-weight:bold; font-size:12px; padding:2px 6px;"><div style="float:left;">Online Members</div><div style="float:right;">&ndash;</div><div style="clear:both;"></div></div><div style="color:#000000; text-align:left; background-color:#CCCCCC; font-family:Arial, Helvetica, sans-serif; font-size:10px; padding-left:6px;">Friend List</div><div style="margin:5px;"><div style="overflow:auto; height:80px; border-bottom:1px solid #CCCCCC; font-family:Arial, Helvetica, sans-serif; font-size:10px;"><table width="150" cellpadding="0" cellspacing="0" border="0"><tr height="27" bgcolor="#FFFFFF"><td><img src="https://secureimage.securedataimages.com/ffadult/featured/external/photos/KU/dXKUtkQ0xtOqFkAHKCU6Sg.jpg" width="18" height="23" border="0" alt="imfit2btied" /></td><td style="color:#000000; text-align:left; font-family:Arial, Helvetica, sans-serif; font-size:10px;">imfit2btied</td><td align="center" valign="middle"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/online.png" width="7" height="7" border="0" alt="Online" /></td></tr><tr height="27" bgcolor="#F1F1f1"><td><img src="https://secureimage.securedataimages.com/ffadult/featured/external/photos/PX/qSPXuPXW7oDCeV1Y8L1KARQ.jpg" width="18" height="23" border="0" alt="missexplorer73" /></td><td style="color:#000000; text-align:left; font-family:Arial, Helvetica, sans-serif; font-size:10px;">missexplorer73</td><td align="center" valign="middle"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/online.png" width="7" height="7" border="0" alt="Online" /></td></tr><tr height="27" bgcolor="#FFFFFF"><td><img src="https://secureimage.securedataimages.com/ffadult/featured/external/photos/XH/cGxHvBkuMBALoSLg24uCQHg.jpg" width="18" height="23" border="0" alt="cute_miss_here" /></td><td style="color:#000000; text-align:left; font-family:Arial, Helvetica, sans-serif; font-size:10px;">cute_miss_here</td><td align="center" valign="middle"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/online.png" width="7" height="7" border="0" alt="Online" /></td></tr></table></div><div style="text-align:left; padding:6px 0;"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/magnify.gif" width="15" height="14" border="0" alt="" /></div></div></div><div style="z-index:99690; position:absolute; bottom:0px; left:0px; background-color:#FFFFFF; width:145px; height:26px; border-width:2px; border-style:none solid solid solid; border-color:transparent #666 #666 #666; font-family:Arial, Helvetica, sans-serif; font-weight:bold; font-size:11px;"></div></div><div id="FFN_Notifications" style="z-index:99599; position:absolute; bottom:0px; right:15px; width:180px; height:180px; display:none;"><div style="z-index:99595; position:absolute; top:0px; right:0px; width:20px; height:20px; cursor:pointer;" onclick="FFN.banners.ab_toolbar.hide('FFN_Notifications');"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/spacer.gif" width="20" height="20" border="0" alt="" /></div><div style="z-index:99594; position:absolute; top:0px; left:0px; width:178px; height:154px; cursor:pointer;" onclick="FFN.banners.ab_toolbar.openClick('http://adultfriendfinder.com/p/register.cgi?pid=g1368562-pct&site=ffadult&amp;lang=english;REG_sex=1&looking_for_person=2&show=M-F&age=18-35&creative=toolbar_chat');"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/spacer.gif" width="178" height="154" border="0" alt="" /></div><div style="background-color:#FFFFFF; border:2px solid #666666; height:150px;"><div style="background-color:#660000; color:#FFFFFF; font-family:Arial, Helvetica, sans-serif; font-weight:bold; font-size:12px; padding:2px 6px;"><div style="float:left; font-weight:bold;">Notifications</div><div style="float:right; clear:none;">&ndash;</div><div style="clear:both;"></div></div><div style="color:#000000; text-align:left; font-family:Arial, Helvetica, sans-serif; font-size:10px; padding-right:6px; text-align:right;">See All</div><div style="color:#000000; text-align:left; margin:5px; font-family:Arial, Helvetica, sans-serif; font-size:10px;"><ul style="list-style-type:disc; margin:0 0 0 15px; padding:0; line-height:12px;"><li style="padding:0; margin:0; font-family:Arial, Helvetica, sans-serif; font-size:10px; line-height:12px;">117,199,469 Members!</li><li style="padding:0; margin:0; font-family:Arial, Helvetica, sans-serif; font-size:10px; line-height:12px;">117,501 New Photos this week!</li><li style="padding:0; margin:0; font-family:Arial, Helvetica, sans-serif; font-size:10px; line-height:12px;">361 chatting now.</li><li style="padding:0; margin:0; font-family:Arial, Helvetica, sans-serif; font-size:10px; line-height:12px;"> using IM now</li></ul><div style="position:absolute; bottom:32px; width:166px;"><div style="margin-top:5px; font-family:Arial, Helvetica, sans-serif; font-size:10px; line-height:11px;">Meet members near</div><div style="font-family:Arial, Helvetica, sans-serif; font-size:11px; font-weight:bold; line-height:10px;">Seattle</div><div style="margin-top:5px; padding:1px 0; height:13px; font-family:Arial, Helvetica, sans-serif; font-size:10px; background:#660000 url(https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/note_button.png) no-repeat left; color:#FFFFFF; text-align:center; text-transform:uppercase; font-weight:bold; ">GET LAID NOW</div></div></div></div><div style="z-index:99590; position:absolute; bottom:0px; right:0px; background-color:#FFFFFF; width:26px; height:26px; border-width:2px; border-style:none solid solid solid; border-color:transparent #666 #666 #666; font-family:Arial, Helvetica, sans-serif; font-weight:bold; font-size:11px;"><div style="margin:6px 0 0 5px;"></div></div></div><div id="FFN_Online" style="z-index:99898; position:absolute; bottom:0px; right:47px; width:143px; height:20px; cursor:pointer;" onclick="FFN.banners.ab_toolbar.hide('FFN_Notifications');FFN.banners.ab_toolbar.toggle('FFN_Online_Members');FFN.banners.ab_toolbar.updateClr();"><div id="FFN_Online_Txt" style="font-family:Arial, Helvetica, sans-serif; font-size:10px; font-weight:bold; color:#FFFFFF;"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/user_online.png" width="30" height="16" border="0" alt="" align="absmiddle" />Online (<span id="FFN_onlineNow" style="font-size:10px;">34,652</span>)</div></div><div id="FFN_NoteBubble" style="z-index:99897; position:absolute; bottom:0px; right:17px; width:18px; height:23px; display:none; cursor:pointer;" onclick="FFN.banners.ab_toolbar.hide('FFN_Online_Members');FFN.banners.ab_toolbar.toggle('FFN_Notifications');FFN.banners.ab_toolbar.updateClr();"><div id="FFN_NoteBubbleNo" style="background:transparent url(https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/notifications_bubble.png) no-repeat; width:17px; height:17px; color:#FFFFFF; font-family:Verdana, Arial, Helvetica, sans-serif; font-weight:bold; font-size:10px; text-align:center;">1</div></div><div style="z-index:99896; position:absolute; bottom:2px; right:21px;"><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/notifications.gif" width="20" height="21" border="0" alt="" /></div><div style="z-index:99899; position:absolute; top:0px; right:0px; background:#660000 url(https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/skins/red_1/bg.gif) repeat-x;"><a id="FFN_Banner_Close" href="#" title="Click here to close."><img src="https://secureimage.securedataimages.com/banners/floater_ads/anchor/toolbar/skins/red_1/advertisement.gif" width="15" height="26" border="0" alt="Advertisement" /></a></div></div></div></div>
                                    

#5 JavaScript::Write (size: 157, repeated: 1) - SHA256: 4045fe27a1333990aceb3daebc048035c862b4d33cfc641e5d112ab9cc0b6caa

                                        < script type = "text/javascript"
src = "https://secureimage.securedataimages.com/javascript//secure/ffadult-social_media-1305837491.js"
charset = "UTF-8" > < /script>
                                    

#6 JavaScript::Write (size: 2211, repeated: 1) - SHA256: 53c3db434d0d476e01e13e89b7b4fe977c1c049824262bb4d4a4299e086f6635

                                        < style type = "text/css" > # FFN_Banner {
    width: 275 px;height: 250 px;background - color: # AB14CA;color: # FFFFFF;font: 12 px Arial,
    Helvetica,
    sans - serif; - webkit - border - radius: 6 px;overflow: hidden;
}
# FFN_Banner a {
    color: # FFFFFF;text - decoration: none;
}
# FFN_Banner a: hover {
    text - decoration: underline;
}
# FFN_Header, # FFN_Footer {
    padding: 10 px;
}
# FFN_Body {
    margin: 1 px;background - color: # FFFFFF; - webkit - border - radius: 6 px;overflow: hidden;
}
# FFN_Media {
    height: 180 px;overflow - x: hidden;overflow - y: scroll;
}
# FFN_Media a {
    color: #0866D1; }# FFN_Disclaimer {
            color: #999999; font-size:9px; text-align:right; }# FFN_Logo {
                float: left;
            }
            # FFN_Logo img {
                max - height: 15 px;
                max - width: 100 % ;
            }
            # FFN_CTA {
                float: right;
            }
            # FFN_Clear {
                clear: both;
            }
            a.FFN_linkSm {
                font - size: 10 px;
            }.FFN_Member {
                clear: left;overflow: hidden;
            }.FFN_Member_area {
                padding: 6 px;
            }.FFN_img {
                float: left;
            }.FFN_text {
                margin - left: 40 px;
                color: #444444; }</style><div id= "FFN_Container" > < div id = "FFN_Banner" > < div id = "FFN_Header" > < a href = "http://adultfriendfinder.com/search/?pid=g1368562-pct&site=ffadult&lang=english&find_sex=2&looking_for_person=1&min_age=18&max_age=99&country=Norway&show=F-M&ip=auto&race=0&age=18-99&creative=social_media"
                target = "_blank"
                title = "Click here for more." > Real people hooking up near < b > < /b></a > < /div><div id="FFN_Body"><div id="FFN_Media"><div id="FFN_MemberTop"></div > < div id = "FFN_Disclaimer" > * For illustrative purposes only.Not actual member data. < /div></div > < /div><div id="FFN_Footer"><div id="FFN_Logo"><a href="http:/ / adultfriendfinder.com / search / ? pid = g1368562 - pct & site = ffadult & lang = english & find_sex = 2 & looking_for_person = 1 & min_age = 18 & max_age = 99 & country = Norway & show = F - M & ip = auto & race = 0 & age = 18 - 99 & creative = social_media " target="
                _blank " title="
                AdultFriendFinder "><img src="
                https: //secureimage.securedataimages.com/banners/btn_banner/logo_ffadult.png" border="0" alt="AdultFriendFinder" /></a></div><div id="FFN_CTA"><a href="http://adultfriendfinder.com/search/?pid=g1368562-pct&site=ffadult&lang=english&find_sex=2&looking_for_person=1&min_age=18&max_age=99&country=Norway&show=F-M&ip=auto&race=0&age=18-99&creative=social_media" target="_blank" title="Click here for more."></a></div><div id="FFN_Clear"></div></div></div></div>
                                    

#7 JavaScript::Write (size: 79, repeated: 1) - SHA256: d958b8875c9e00de7b00eba7d6015f25612007f4441fb71c93592f578b105fe9

                                        < img border = 0 src = "http://x6.xclicks.net/sc/ct.php?s=7896&l="
height = 1 width = 1 >
                                    


HTTP Transactions (157)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9849
Expires: Fri, 25 Nov 2022 00:08:20 GMT
Date: Thu, 24 Nov 2022 21:24:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5979
Cache-Control: max-age=139599
Date: Thu, 24 Nov 2022 21:24:11 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:10:50 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 21:19:00 GMT
cache-control: public,max-age=3600
age: 311
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7411
Expires: Thu, 24 Nov 2022 23:27:42 GMT
Date: Thu, 24 Nov 2022 21:24:11 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: nwxucuF2G3uucYn4oZj5OCNBYt1IeFOi/ZE/WgQezWvpxLQHsjVllkVp5fp3KDtu5LrIpgP3YjU=
x-amz-request-id: H9BBTWJRMTMRBX83
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 20:40:32 GMT
age: 2619
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /2012/10/loira-peituda-transando-com-pastor-da.html HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Thu, 24 Nov 2022 21:24:11 GMT
Date: Thu, 24 Nov 2022 21:24:11 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
ETag: W/"684200741652f978388806fc4d658000a59dd4c4f6e874910078cacca7078110"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 19681
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1989)
Size:   19681
Md5:    09e4a00fc6e65f5e11c00b84875ec73a
Sha1:   7f73502bd1d09e563aa154fe185fe54660c81bb1
Sha256: 4dd1221a03db0c17a09445d97f514f204a68c634c5e0d8b88ad30ada4f2fcb36

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 21:24:11 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 24715
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 18 Nov 2022 08:24:02 GMT
Expires: Sat, 18 Nov 2023 08:24:02 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 565209
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines (820)
Size:   24715
Md5:    cc24419c482370498f3c227ac73d666b
Sha1:   37fc103ace873f47102e0ca88eb4735bc6806750
Sha256: 152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
                                        
                                            GET /files/related-posts-with-thumbnails-for-blogger-pro.js HTTP/1.1 
Host: blogergadgets.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         64.233.164.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1615
Date: Thu, 24 Nov 2022 21:24:11 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1615
Md5:    9f42fa6045aeff17f7192e3a9415c1e0
Sha1:   b5e6f59896dd8973b93bc9719deb7fb619578787
Sha256: 3d079ad4a9d6da0eea8080f6427e3f0ade868c3b89549fe2228c8c6726d3e1a2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
age: 278528
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56726
Md5:    1217c8e34acb09c7cea97bae4d386ea1
Sha1:   55ee17703d0a7710943e93913bacb49220d98b4b
Sha256: c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 20:32:38 GMT
expires: Wed, 22 Nov 2023 20:32:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Nov 2022 12:53:21 GMT
age: 175893
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30596)
Size:   6620
Md5:    6f46e6f68353c7911fe34f31faa1518f
Sha1:   ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
Sha256: 0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Thu, 24 Nov 2022 21:24:11 GMT
expires: Thu, 24 Nov 2022 21:24:11 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1279)
Size:   20984
Md5:    7ac44ef24e267df17ff72f195b252806
Sha1:   62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
Sha256: aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
                                        
                                            GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:59:43 GMT
expires: Wed, 22 Nov 2023 18:59:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 19:52:12 GMT
age: 181468
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1441)
Size:   6573
Md5:    f60e5037324bf7fd2256c16929886f09
Sha1:   aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
Sha256: 71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.105
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:55 GMT
expires: Tue, 29 Nov 2022 14:43:55 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 15:52:34 GMT
age: 196816
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            GET /files/related-posts-with-thumbnails-for-blogger-pro.js HTTP/1.1 
Host: blogergadgets.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         64.233.164.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1615
Date: Thu, 24 Nov 2022 21:24:11 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1615
Md5:    9f42fa6045aeff17f7192e3a9415c1e0
Sha1:   b5e6f59896dd8973b93bc9719deb7fb619578787
Sha256: 3d079ad4a9d6da0eea8080f6427e3f0ade868c3b89549fe2228c8c6726d3e1a2
                                        
                                            GET /_9nphYWWWTBQ/TLmYA0o_SMI/AAAAAAAAEFk/gm6u3GX5vdo/Digg.png HTTP/1.1 
Host: lh4.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Digg.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1326
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 19:34:14 GMT
Expires: Tue, 08 Nov 2022 18:33:00 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6597
ETag: "v1059"


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1326
Md5:    10608003e93993d3f3fda5e99f210476
Sha1:   9842a666af577b4c02c981a8abd2facf54e617dd
Sha256: f5ec9311bcd2ca02870e8b7008083c4cfdfea555d3b07df04effe54bf35aecbd
                                        
                                            GET /_9nphYWWWTBQ/TLmYA4uPqKI/AAAAAAAAEFo/g58cpHv-YPo/Facebook.png HTTP/1.1 
Host: lh4.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Facebook.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1150
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 19:34:14 GMT
Expires: Tue, 22 Nov 2022 13:15:40 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6597
ETag: "v105a"


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1150
Md5:    a0d95963fa1a3c9d22d358373c32c8cd
Sha1:   6be325d212ae50ee2553bb2ba5da6b01df4773d5
Sha256: 238cee44a8381f5c66dcf1cfbf84990f701192f0871150453eebb66b23e56662
                                        
                                            GET /feeds/posts/default/-/buceta%20apertada?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"59ebb9b4d6c603bf8159ae8387cc9b718bfd18e6368e67f40013e060943b1fd7"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 7152
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (26946)
Size:   7152
Md5:    61c39115eddd78e0f10755be9d9f76f2
Sha1:   0327547e5ab47a2d71ac76fa195591998b6f0702
Sha256: aed66ab2f48922d793e84e8cbdaa119936493d04b5669267724596b3ffc107e9
                                        
                                            GET /files/related-posts-with-thumbnails-for-blogger-pro.js HTTP/1.1 
Host: blogergadgets.googlecode.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         64.233.164.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Referrer-Policy: no-referrer
Content-Length: 1615
Date: Thu, 24 Nov 2022 21:24:11 GMT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size:   1615
Md5:    9f42fa6045aeff17f7192e3a9415c1e0
Sha1:   b5e6f59896dd8973b93bc9719deb7fb619578787
Sha256: 3d079ad4a9d6da0eea8080f6427e3f0ade868c3b89549fe2228c8c6726d3e1a2
                                        
                                            GET /feeds/posts/default/-/arrombando%20a%20buceta?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"87df2b9a5a3af075d1ea559aa3384adb518f0e4915165cf5df298ebc5bdfdbdb"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 7710
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (33973)
Size:   7710
Md5:    2c00438a688be99e1b47096d93ab9cbd
Sha1:   eb291c51fc601097d55b284883f3e19c7576c868
Sha256: be10c93f3742986ec01980bed55186310e7d4e54dbb0e1513ae5971ee870d0b1
                                        
                                            GET /feeds/posts/default/-/branca?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"0724db2add9266de2d5bc357cb65c56de93e1e8e57cbd9cbf75e1db4822ee100"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 8358
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (44184)
Size:   8358
Md5:    f402b9f7a0291499ca5713d26101781f
Sha1:   8673ea3df904391f5e707ac1acd46cb7512a190e
Sha256: 15e090f5bcc1e645710e48f97ba9a4fb9dbd0491ad0b07b668aad3555e911754
                                        
                                            GET /_9nphYWWWTBQ/TLmYFxOP4gI/AAAAAAAAEF4/rDkLOvv8sJ0/twitter.png HTTP/1.1 
Host: lh4.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="twitter.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1279
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 19:34:14 GMT
Expires: Tue, 15 Nov 2022 05:05:36 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6597
ETag: "v105e"


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1279
Md5:    66d1a75cdca026f07f98b5b625352dfa
Sha1:   5e102099eb0d0b896fd95ec36439eb6350b5f731
Sha256: 7071b79b69b54cfa3b9afae0df4e65930aa8caa63bed7f4e714d60c5c91684bc
                                        
                                            GET /feeds/posts/default/-/boquete%20com%20gozada%20na%20boca?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"59259cddeb7410a82df05e832bcbb808ad3c962adfaafb0209dbdda66f1d9f47"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 7170
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (26974)
Size:   7170
Md5:    ba93053e4807d48e8c49f71e755fac7d
Sha1:   117f7384f1abc1dd516aedc4003da0fecdc8799c
Sha256: 8dee2d7ca64c8e8f84531deea6480bd056ec7cdbd0b7320150ef8ac687848011
                                        
                                            GET /feeds/posts/default/-/buceta%20raspada?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"1080d260a29bd6bc189d8166cabf75066141ad1c798072bbb86442eab473276a"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 8470
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (44203)
Size:   8470
Md5:    1c54c727f10d766172a6192c0201dfa1
Sha1:   3a31bce89d9d0f00c9581ca4a971e3761610c4e8
Sha256: bed55d23343730e4691200c9e8c645e7d5b68b044176d8fe201f62c382f15c46
                                        
                                            GET /_9nphYWWWTBQ/TLmYBT_ge_I/AAAAAAAAEFw/XZf8Zb1dIpI/Reddit.png HTTP/1.1 
Host: lh3.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Reddit.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1450
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 19:34:14 GMT
Expires: Tue, 15 Nov 2022 05:05:36 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6597
ETag: "v105c"


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1450
Md5:    889748978c072a34b9abab8d8407b0f0
Sha1:   276230a2bbe44512e1f50dca065b75450fea4720
Sha256: 34799d98a83fce9fc08ab43152047fcfc04fa92b93a4e6770fea346092cf3ee1
                                        
                                            GET /_9nphYWWWTBQ/TLmYFrIDM4I/AAAAAAAAEF0/J-b3MfIBwHc/StumbleUpon.png HTTP/1.1 
Host: lh3.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="StumbleUpon.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1613
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 19:34:14 GMT
Expires: Sat, 19 Nov 2022 08:54:41 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6597
ETag: "v105d"


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1613
Md5:    99209120343f0e7cf45163a1b6ffd94c
Sha1:   1359308cb8f630ea982367f5f63f6395f217235c
Sha256: 7912620d5eb8632ab0f45e8d258076f7d14c1d7a510264b43631cdee6f69ebbb
                                        
                                            GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
age: 127673
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (580)
Size:   57794
Md5:    813b15c3004464f6bd39fd0773b04757
Sha1:   bd2218fe1e647f61132aad70d29cd91fd0416f26
Sha256: 446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 10:51:13 GMT
Expires: Thu, 08 Dec 2022 10:51:13 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Age: 37978


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            GET /_9nphYWWWTBQ/TLmYAgLBpzI/AAAAAAAAEFg/FY_biFoavms/Del.icio.us.png HTTP/1.1 
Host: lh5.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Del.icio.us.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 735
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 19:34:14 GMT
Expires: Sat, 19 Nov 2022 08:54:41 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6597
ETag: "v1058"


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   735
Md5:    cf024764c35feede0d0357822343d6ee
Sha1:   bfbe1f58fc73bcbb000d2c49a113ea27fc046afe
Sha256: e0f2ec6c4d8252bc7b8dc90913c597d4e1fb52293fafae2fe5ed24bb55b4b793
                                        
                                            GET /_9nphYWWWTBQ/TLTvGgaiY7I/AAAAAAAAEEA/VrbqtVsUEUg/searchactive.gif HTTP/1.1 
Host: lh5.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="searchactive.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1638
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 19:34:14 GMT
Expires: Mon, 14 Nov 2022 14:58:07 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6597
ETag: "v3b9f"


--- Additional Info ---
Magic:  GIF image data, version 89a, 69 x 31\012- data
Size:   1638
Md5:    4942e98461a7310a5ac224ed23a087be
Sha1:   89c8cd5ff1d4a89310e75d1ac7efa1d75508e4df
Sha256: b3bf08760969982a822b245c35ae508b6a54112ffbda4554d795bc55e6102944
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_9nphYWWWTBQ/TLmYBHsj-NI/AAAAAAAAEFs/KxucVpV_78Y/Friend%20Feed.png HTTP/1.1 
Host: lh5.ggpht.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Friend Feed.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1333
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 19:34:14 GMT
Expires: Sat, 19 Nov 2022 08:54:41 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6597
ETag: "v105b"


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1333
Md5:    425ec64739b2d8c463aaebeec0fd5a21
Sha1:   820b7e1a9a317d5a945ffbafc3467458c14c1e14
Sha256: dc449cce56f15b6e7ea3722fa38c0560102c9f839c6d8eaa122bd69e87368e83
                                        
                                            GET /feeds/posts/default/-/arrombando%20a%20loirinha?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"59996db6b4972f3f946db22d4f69124edf240c6853cabdcdb502e5d1084ba48d"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 7674
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (33584)
Size:   7674
Md5:    c15b0f8bd151304b2d638b1e023649a7
Sha1:   f68617c9731ff030e8267c04dce8d32d9ff0f3b9
Sha256: 58f7d28e852d21e8e2e6e613a2310cb17f1537748cf4b55dd6eadd17a614c26f
                                        
                                            GET /go/page/js_anchor_banner_toolbar?plain_text=1&skip_lpo=1&win_popups=100&chat_tab1=3&chat_tab2=3&skin=4&find_sex=2&looking_for_person=1&age=18-35&photo=3&explicit=1&page=registration&pid=g1368562-pct&lang= HTTP/1.1 
Host: banners.adultfriendfinder.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         69.165.107.14
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 24 Nov 2022 21:24:07 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains
X-PERF: 0.028004,0.006732,TS_6_0.0070880,TM_6_0.0070650,DB_6_0.0029980,CD_14_0.0018440,FS_18_0.0008010,PK_2_0.0000360,CE_15_0.0014400
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2815
Age: 3
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (705)
Size:   2815
Md5:    f5272c7e97e9f7f9cfcbc39ffccc5a93
Sha1:   6516dde27b87f0063c99186c84b38e917cd881d3
Sha256: 59a967780a7c56a76a12bc4147aec62b08d3a097792084c7626ea8cf27027178
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 21:11:11 GMT
cache-control: public,max-age=3600
age: 780
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /go/page/iframe_btn_banner?width=960&height=60&show_logo=0&show_cta=0&page=search&skin=1&show=F-M&pid=g1368562-pct HTTP/1.1 
Host: banners.adultfriendfinder.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Upgrade-Insecure-Requests: 1

                                         
                                         69.165.107.14
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 24 Nov 2022 21:24:08 GMT
Server: Apache
X-PERF: 0.013376,0.010428,DB_4_0.0017020,CD_5_0.0006480,PK_1_0.0000170,CE_7_0.0005810
Strict-Transport-Security: max-age=300; includeSubDomains
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3850
Age: 3
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   3850
Md5:    90ab0246faad0a037e60ffbd895ab55f
Sha1:   991e0b325b1f402fcc12b072acea12fb544a4924
Sha256: 2d36ce2c1bbc68a8c986794cb061a7e443720cf12504a8c82c05a28efc0c2a5b
                                        
                                            GET /-XN79Q0Ydp4g/T8U9qUN3oEI/AAAAAAAAAGc/RdYEy6tbhYE/s1600/topo.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v67"
Expires: Fri, 25 Nov 2022 21:24:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="topo.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: fife
Content-Length: 24226
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 960x90, components 3\012- data
Size:   24226
Md5:    4f203ec8298ac4fd2516162567ed29f4
Sha1:   66249e61084e564ff3482cca4749c359011f2be3
Sha256: f678e7dc870d0817db482e2e4b8b1898052881f253884d926ed1091553768dfc
                                        
                                            GET /-nm9PJUDwxo8/T81R7jhFqeI/AAAAAAAAAJQ/hvVi12s6oic/s1600/log2o.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v94"
Expires: Fri, 25 Nov 2022 21:24:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="log2o.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: fife
Content-Length: 13736
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 136x54, components 3\012- data
Size:   13736
Md5:    fa4021c70ecad5976bec6f56f88ed021
Sha1:   8b2be17943bcacabfe3e06d1dd19b6f21bca8650
Sha256: c4fff9a747d88fc04982cf24b0e7040b4084290f957bcce1ba221b8bbfe74762
                                        
                                            GET /javascript/live_cd/secure/ffadult-button_banner-1596005119.js HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: text/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
age: 2481379
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:11 GMT
expires: Sat, 24 Dec 2022 21:24:11 GMT
last-modified: Thu, 27 Oct 2022 04:07:51 GMT
server: ECS (ska/F708)
vary: Accept-Encoding
x-cache: HIT
x-cache-hits: 2
x-perf: 0.057577,0.057547,CD_1_0.0000300
content-length: 4364
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Algol 68 source text\012- Pascal source, ASCII text, with very long lines (3097)
Size:   4364
Md5:    2a9eece755f23cf10f529625f3b38c43
Sha1:   41301bfe7d962f283b96782531c3fd6577bf90a3
Sha256: 4bfc7d6e924b7d68288129604175dd01fde5a08acba6c112792e3e496bfabebd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1287
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 21:24:11 GMT
Last-Modified: Thu, 24 Nov 2022 21:02:44 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /feeds/posts/default/-/da%20igreja?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"2ff04adc14b9ba33bfa87021c245982efa2e03a2f01f5a52ad320be5b2a41e75"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 7151
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (26934)
Size:   7151
Md5:    fe21bf96c76c56bc290a59947fc5118b
Sha1:   60a4dc274ba2632ad9b9312361e584306ba7390c
Sha256: 5525eba2f47c5b757a0526051b338f13bc8d1b854d384c2a3f4c604b1f19ffe0
                                        
                                            GET /feeds/posts/default/-/dedada%20na%20xoxota?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"eadcf4c4060f9088aa50f57908dcc5d98486c576ad53bba55aad1e36ecd75ee2"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 7678
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (33659)
Size:   7678
Md5:    bf406f9b0894eb0d9952d6d62dba93b2
Sha1:   956c99a6f91bb79eb5715f13883dd84bbf1a7cc8
Sha256: 9882c41754f880b007acfd8b8223848531b8e94f2703ff07b61cbd9adecc3226
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Thu, 24 Nov 2022 21:24:11 GMT
Expires: Thu, 01 Dec 2022 21:24:11 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 24 Nov 2022 20:54:31 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
                                        
                                            GET /feeds/posts/default/-/fazendo%20sexo%20anal?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"7751b49aa49742748bb7341ec808be5763c6f1e1b81754802b3663d9bb60b4d5"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 7652
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (33683)
Size:   7652
Md5:    0fa2cffbf848449bbfcbf5c5172bd7f9
Sha1:   bc025cb05cce79ed5086b07810b07fa4ac9d38a4
Sha256: 509f971a795567b9ae5e17983ac37e4a2583f641d9188e053ea545f6698ba6cd
                                        
                                            GET /feeds/posts/default/-/transando%20com%20pastor?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"762261467a7df79fd5bac4e57eaccac7d95970bb32dfcdb1472be3ac32b7c9c1"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 7158
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (26958)
Size:   7158
Md5:    67e4a01930b98bc1d9993f7f11d3d6d7
Sha1:   1cb613277319a5319dfe839a819a835e416ce915
Sha256: 606b648dcc8e2d0fd7f7782e384bdba9b7253b38a268dd1f0535ca8c1eda019a
                                        
                                            GET /feeds/posts/default/-/Loira?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"74dd186b977daca03dd23cbf22676a5a22a5d8142bc5b81ad0c4f3af6754b672"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 8471
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (44245)
Size:   8471
Md5:    d723aa69d09761c675b18a42ac06f70b
Sha1:   4d5dd6acc66839d5d8859f72f3d722d13d366d41
Sha256: 567adf668c1713ea234b6e9376e6eb0ac7b21812786873a119e21884ddb41556
                                        
                                            GET /feeds/posts/default/-/Sexo%20Oral?alt=json-in-script&callback=related_results_labels_thumbs&max-results=6 HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"224f89e58e7a9de316f6808ee5be920e057718e1a20c8ceaa63771f38c0f9330"
Date: Thu, 24 Nov 2022 21:24:11 GMT
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
Content-Encoding: gzip
Content-Length: 8411
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (44155)
Size:   8411
Md5:    e495ba568759626c9a7b62a6ab4b2e89
Sha1:   d29ea17aa27274f970fbfa22fb7a151531fa2625
Sha256: 7e060516e635fb8e165118ea1e6c1ac50b477bbaf44b9581df3ba8084169069a
                                        
                                            GET /-mJu7xIR07Mg/T80_5z5A3uI/AAAAAAAAAI8/umzatZSU--g/s1600/fundo+netinhas.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v8f"
Expires: Fri, 25 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="fundo netinhas.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 21:24:12 GMT
Server: fife
Content-Length: 213967
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 1539x949, components 3\012- data
Size:   213967
Md5:    8a939882fcbbb051408101aa141d82d1
Sha1:   7836b09f122759304aff52ba90d8e3adc08b7d3f
Sha256: 36f66e55f9ad71a96971d717641e48c57b03f64790d8d9399d009e59ae9b5eb5
                                        
                                            GET /javascript//secure/ffadult-floater_ads_masterset-1309894486.js HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: text/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
age: 2221249
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Sun, 30 Oct 2022 04:23:22 GMT
server: ECS (ska/F705)
vary: Accept-Encoding
x-cache: HIT
x-cache-hits: 2
x-perf: 0.001906,0.001879,CD_1_0.0000270
content-length: 1513
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1908)
Size:   1513
Md5:    1bb70e1a10fae4fad9c164f62d255800
Sha1:   76e6eb69ca63015af8292c586d5bf9e5d263455f
Sha256: 94a0606a4807d105c39cc04b047c5cc1b7d3d5e1fb9590573100211a7e498bda
                                        
                                            GET /javascript//secure/ffadult-anchor_banner_toolbar-1381352212.js HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: text/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
age: 2479823
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 27 Oct 2022 04:19:30 GMT
server: ECS (ska/F70C)
vary: Accept-Encoding
x-cache: HIT
x-cache-hits: 2
x-perf: 0.003958,0.003932,CD_1_0.0000260
content-length: 11675
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9112)
Size:   11675
Md5:    9748d6b7f9d02ce9fc2cfe80fc291f83
Sha1:   b187019420b23ac66638c18bce7abd3c1ccff170
Sha256: affd2cda9587bf37055a41766035fb700ec8611b5986ad58097d2dddd064ca12
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/profiles_out.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "1741f-35a-47c86845d1fc0"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 06 Jan 2010 22:31:35 GMT
server: ECS (ska/F707)
x-cache: HIT
x-cache-hits: 0
content-length: 858
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 51 x 26\012- data
Size:   858
Md5:    614fb562ccee7f90a6ab274609985b76
Sha1:   d7364fa9e2af82539cadee121268ad43dc17ff3d
Sha256: ec98347cff16586632e5a0a7e1919843d24dd735e9cc1f0b037a16cf858f6178
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/profiles_over.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17426-35f-47c8685420180"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 06 Jan 2010 22:31:50 GMT
server: ECS (ska/F713)
x-cache: HIT
x-cache-hits: 0
content-length: 863
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 51 x 26\012- data
Size:   863
Md5:    15358f697bb419a6fa6fa1fc6660d1a2
Sha1:   fa3778db771358ad475306c5362d5fc5b6d42f38
Sha256: 27d0698eb56b9c08aa85cddcbdf0df33e7bc6ff61b9166342cc1875a54a1c30e
                                        
                                            GET /banners/floater_ads/anchor/toolbar/audio/player.swf HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: application/x-shockwave-flash
                                        
accept-ranges: bytes
age: 261391
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17376-378-47c0e386e9440"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 31 Dec 2009 23:00:25 GMT
server: ECS (ska/F707)
x-cache: HIT
x-cache-hits: 0
content-length: 888
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 9\012- data
Size:   888
Md5:    3df595a5af8bc75d9195bbbd51fa7c70
Sha1:   c23372057a1d2ddba9b946f4cfac4847cf08930a
Sha256: 5223fcb7e492b562929d107eabea8259190433e2e0cc3f21955fad9210e1f78a
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/videos_out.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17430-1e2-47c86845d1fc0"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 06 Jan 2010 22:31:35 GMT
server: ECS (ska/F717)
x-cache: HIT
x-cache-hits: 0
content-length: 482
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 49 x 26\012- data
Size:   482
Md5:    9115f990fe2afecbb7256635422bbde1
Sha1:   fdf8551679c52fce59086740db881d159e4a446e
Sha256: 8fd8c9faed99614e9bf11e6fba82af2d13ca9ae4547cdff746dd7ac8bc456a46
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/videos_over.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "1743b-1d6-47c8685420180"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 06 Jan 2010 22:31:50 GMT
server: ECS (ska/F704)
x-cache: HIT
x-cache-hits: 0
content-length: 470
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 49 x 26\012- data
Size:   470
Md5:    ed6fff441eb04480743e84d6ae7ed742
Sha1:   48bdb81b3f8fbb07e5964928fcc605be8da65f74
Sha256: 7dae149209b21a040abbc9dd82c4d5f789c0f4db331437e1cbbc5be83300bc22
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/chat_out.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "173f5-384-47c86845d1fc0"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 06 Jan 2010 22:31:35 GMT
server: ECS (ska/F70F)
x-cache: HIT
x-cache-hits: 0
content-length: 900
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 49 x 26\012- data
Size:   900
Md5:    ff27aed2945a39441c9babb9be95668c
Sha1:   35f13e1d8fae0c0547807d2997f55d9178fa7726
Sha256: ce7cc3c89bd8cd859caa9f52daf6d4536d8548cd304ae361135d90588a2e0034
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/chat_over.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17400-389-47c8685420180"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 06 Jan 2010 22:31:50 GMT
server: ECS (ska/F705)
x-cache: HIT
x-cache-hits: 0
content-length: 905
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 49 x 26\012- data
Size:   905
Md5:    80f3036bc39ebcb24425e29abbe95a6a
Sha1:   68ac617927e6e4014731430281f2b5b2fa58c9bc
Sha256: 7375c2bc5f31ff1d78e6bf12a14276dd9a45955d91b0fe98040a34628cd68539
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/left.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "1740c-128-47c57cec72800"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 04 Jan 2010 14:48:00 GMT
server: ECS (ska/F718)
x-cache: HIT
x-cache-hits: 0
content-length: 296
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 3 x 26\012- data
Size:   296
Md5:    c507181497c027a03f5573a83657a8eb
Sha1:   9f07070c736b9dd4b998a99d18fa4bf43915176b
Sha256: c2ac2531032d11d024ceee90fd44eade1f9f9610cd3a8a086844753371a54780
                                        
                                            GET /banners/floater_ads/anchor/toolbar/logo_ffadult.png HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
age: 8043
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "1757c-732-4b6a90dda9640"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 16 Jan 2012 18:05:05 GMT
server: ECS (ska/F714)
x-cache: HIT
x-cache-hits: 0
content-length: 1842
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1842
Md5:    21e0b6ef67842933a66e4d263ce4d849
Sha1:   b5d30403d36f456c707c290f3b41fa6adac5130e
Sha256: a130e0222853510fb30ea8ed4b9c6d5df8f50817242d96b4083324fdcabe8ab6
                                        
                                            GET /banners/floater_ads/anchor/toolbar/spacer.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 289861
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "176bc-2b-47c969c88eb00"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 07 Jan 2010 17:43:40 GMT
server: ECS (ska/F6FE)
x-cache: HIT
x-cache-hits: 0
content-length: 43
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b5b02126cacf7125bcea58f66d264191
Sha1:   63838a9a58b636dffc3fc72823292b3c87f7d425
Sha256: 67ef561543ce7fb8f839e365ad2a89a85a9fa19655d8d843368260af7cad8def
                                        
                                            GET /ffadult/featured/external/43/134384_134384.134384.thumb.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 452002
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "139a068f-5d1-428368cc400bf"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 29 Jan 2007 23:51:01 GMT
server: ECS (ska/F705)
x-cache: HIT
x-cache-hits: 0
content-length: 1489
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 47x62, components 3\012- data
Size:   1489
Md5:    5aa00f7a14da0ac3818d49116c1281e2
Sha1:   be97de51278ba2ee2a1e52209f9fff8ddea3dfd5
Sha256: 743ed6d716019d689774bb4d2cbe4398f639c758f25d8163b4e38fe9b4e5e8e2
                                        
                                            GET /banners/floater_ads/anchor/toolbar/chatbubble.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 528890
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17508-f7-47b44dd70ea80"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 21 Dec 2009 22:46:50 GMT
server: ECS (ska/F70E)
x-cache: HIT
x-cache-hits: 0
content-length: 247
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 20 x 17\012- data
Size:   247
Md5:    905ac6f18c47f4cadea6b8a76e2efe2c
Sha1:   efdc1923efccdb6d13eb3b4894dea7c86ff5b41e
Sha256: 96482dc6c77b7d25d3d95edccc45f1617c1bd8a30ff7e4f893c306a6a433b224
                                        
                                            GET /banners/floater_ads/anchor/toolbar/blink.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 473278
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "1736d-59-47c5ae19e6e40"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 04 Jan 2010 18:28:01 GMT
server: ECS (ska/F6FD)
x-cache: HIT
x-cache-hits: 0
content-length: 89
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 2 x 14\012- data
Size:   89
Md5:    c5a1e27a6b7290ee691d3d8cb71fe52c
Sha1:   79182497fa26f8fae73a569cac8ca876f3f7278a
Sha256: 71136a1493802abd83009b4adff994cff8889258a08d055fd6cd09eb1829258d
                                        
                                            GET /banners/floater_ads/anchor/toolbar/online_active.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 550115
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17682-83-47b5680abf6c0"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Tue, 22 Dec 2009 19:49:23 GMT
server: ECS (ska/F706)
x-cache: HIT
x-cache-hits: 0
content-length: 131
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 8 x 8\012- data
Size:   131
Md5:    dbc727146ec17510951654cac88d3aac
Sha1:   70da4b1e18315d2654e1455ebf413b2a30bbdc92
Sha256: 19e0ee530679f296b82952465a0f43512fa74602da729d7baedd5f8393adcd68
                                        
                                            GET /ffadult/featured/external/photos/KU/dXKUtkQ0xtOqFkAHKCU6Sg.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 484958
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a18fb0-e27-49fcc2cc4ef01"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 31 Mar 2011 19:19:40 GMT
server: ECS (ska/F718)
x-cache: HIT
x-cache-hits: 0
content-length: 3623
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 47x62, components 3\012- data
Size:   3623
Md5:    37af743567242f3139917ac574a77cba
Sha1:   1df6aa866a2fab682d94b39fd0b720de5e1f378d
Sha256: 97181435cb340e2f1eb9160afcf87ce63fbdd096f0bcfc7a2630a452451f9f28
                                        
                                            GET /banners/floater_ads/anchor/toolbar/online.png HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
age: 389024
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17671-ab-47b4226366680"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 21 Dec 2009 19:32:26 GMT
server: ECS (ska/F714)
x-cache: HIT
x-cache-hits: 0
content-length: 171
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 7 x 7, 8-bit/color RGBA, non-interlaced\012- data
Size:   171
Md5:    0fdd3cb73dcbc0c340e44b64227a9e1f
Sha1:   e82e07c75b0e86d2670cd71e8746c9ca94d388c6
Sha256: 898e8c70867ac62e8731e42055f1b97e83eaa32f0b0b810e40a750ce6e910b24
                                        
                                            GET /ffadult/featured/external/photos/PX/qSPXuPXW7oDCeV1Y8L1KARQ.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 124381
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a43370-b32-4822dff1a6d08"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Fri, 19 Mar 2010 21:26:11 GMT
server: ECS (ska/F719)
x-cache: HIT
x-cache-hits: 0
content-length: 2866
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 47x62, components 3\012- data
Size:   2866
Md5:    7f3f1801ae488bf3ef4aed10c1406a99
Sha1:   e305cfe079a0bd27aae43d896f34f62af46f17c4
Sha256: d6e07c1ebbf2530c787851fe5ad4fcfba5a3473b6b4f656fa84f7b63a2f24bee
                                        
                                            GET /ffadult/featured/external/photos/XH/cGxHvBkuMBALoSLg24uCQHg.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 440544
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a7e522-1271-4925f41171068"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 11 Oct 2010 22:55:18 GMT
server: ECS (ska/F6FC)
x-cache: HIT
x-cache-hits: 0
content-length: 4721
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 47x62, components 3\012- data
Size:   4721
Md5:    4831f95b00a974079fd7486a0b3dcbee
Sha1:   4d01d72a10f2f079baf618504dcea5a228f2b4e9
Sha256: 36c03732c38ba9cf7126df536fa84a6e8f6aa3ddd527ac84f056bab4cf4e346d
                                        
                                            GET /banners/floater_ads/anchor/toolbar/magnify.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 535512
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "1761d-dc-47b421b2f8640"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 21 Dec 2009 19:29:21 GMT
server: ECS (ska/F70F)
x-cache: HIT
x-cache-hits: 0
content-length: 220
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 15 x 14\012- data
Size:   220
Md5:    e6475b2ffbe6b22b297832eddc6de038
Sha1:   ef6d56ae342924973ee6406ce47ea6708642469f
Sha256: 397f4458370c74fc4db5b45907de65262cb329d57329bdf55ce918aaf8da17bf
                                        
                                            GET /banners/floater_ads/anchor/toolbar/user_online.png HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
age: 315734
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17741-d5-4abbe1ce8d700"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Tue, 30 Aug 2011 19:35:24 GMT
server: ECS (ska/F705)
x-cache: HIT
x-cache-hits: 0
content-length: 213
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 30 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   213
Md5:    94e1f8901f08c39db07380c1be25abff
Sha1:   f11ec6d4b41613bf014429321e89cdd9269570fe
Sha256: ef8746776815fd1fcfad75c45ee0e540b628ecb8e3fd761fdf365e9e3a559339
                                        
                                            GET /banners/floater_ads/anchor/toolbar/notifications.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 391464
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17651-17b-47b42c67d48c0"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 21 Dec 2009 20:17:15 GMT
server: ECS (ska/F710)
x-cache: HIT
x-cache-hits: 0
content-length: 379
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 20 x 21\012- data
Size:   379
Md5:    cf85237977506ab81d77c10b9f63226a
Sha1:   fbc9f3dae4ffa6b0f55455b39fbb4456af3db2b1
Sha256: 6a7b88da366614c2b53a0c91f9564d7965d26bc60e602f74a9196d7fbb8ac314
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/advertisement.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "173e2-194-47c5966c59140"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 04 Jan 2010 16:42:05 GMT
server: ECS (ska/F707)
x-cache: HIT
x-cache-hits: 0
content-length: 404
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 15 x 26\012- data
Size:   404
Md5:    acfc1849b8e7d4ecb614afe4b67c980c
Sha1:   c994e4409b90c567641ca56c8b6436a80a93c5d2
Sha256: 55d631b11633cf6c446ad8e3677aa861d4cffc43f425c1a2c77bfd98eae4fe9d
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/logo_bg.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "17415-c3-47c57cec72800"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 04 Jan 2010 14:48:00 GMT
server: ECS (ska/F710)
x-cache: HIT
x-cache-hits: 0
content-length: 195
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 5 x 26\012- data
Size:   195
Md5:    15b87ebe208ce198024339d3add98baf
Sha1:   b58acfff45e2622f514856727ea50324cadc697d
Sha256: 4fef91651b364e1c68c1eebe2f35392cbd12f9b258387797ba076e7977b8ee61
                                        
                                            GET /banners/floater_ads/anchor/toolbar/skins/red_1/bg.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 322376
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "173eb-72-47c58df599940"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 04 Jan 2010 16:04:13 GMT
server: ECS (ska/F71B)
x-cache: HIT
x-cache-hits: 0
content-length: 114
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 5 x 26\012- data
Size:   114
Md5:    70720dc3a4faebd0aac11f341a909a0c
Sha1:   5e79f0a59fbb303ec1d2064a35e241680eca57a9
Sha256: 595db3f7fd1758920da6fa061781a6cf932e32cb4cab669f4cc4ae3de87137bf
                                        
                                            GET /plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fthecapitaoroby&layout=standard&show_faces=false&width=450&action=like&font=tahoma&colorscheme=light&height=80 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Upgrade-Insecure-Requests: 1

                                         
                                         157.240.200.35
HTTP/1.1 301 Moved Permanently
Content-Type: text/plain
                                        
Location: https://www.facebook.com/plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fthecapitaoroby&layout=standard&show_faces=false&width=450&action=like&font=tahoma&colorscheme=light&height=80
Server: proxygen-bolt
Date: Thu, 24 Nov 2022 21:24:12 GMT
Connection: keep-alive
Content-Length: 0

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0E8z5z5NepZNpWDTk1wCEA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.24.78.9
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /KqTeRW7WNKuNVSKg8KGgEAQW8w=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4556
Cache-Control: max-age=118695
Date: Thu, 24 Nov 2022 21:24:12 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 06:22:27 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /go/page/js_social_media?width=275&height=250&casing_background_color=%23AB14CA&find_sex=2&looking_for_person=1&photo=1&page=search&pid=g1368562-pct&skip_lpo=1&iframe=1&popunder_off=1&no_click=1 HTTP/1.1 
Host: banners.adultfriendfinder.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Upgrade-Insecure-Requests: 1

                                         
                                         69.165.107.14
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Server: Apache
X-PERF: 0.021501,0.016508,DB_4_0.0024310,CD_7_0.0011970,PK_1_0.0000190,CE_12_0.0013460
Strict-Transport-Security: max-age=300; includeSubDomains
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7074
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (772)
Size:   7074
Md5:    b4407be6b43f2654620a66559486ec72
Sha1:   2073adf49222a5f8818da6f18f7964b95d8d6ef6
Sha256: 55211c003f6771c742f0bcf79ddf99ba1657a5cb3b55e81e9e2c1f901b6e6cd1
                                        
                                            GET /piclist?age=18-20&background_color=%23F3F3F3&banner_title=1Encontre+mulheres+gostosas+para+transar+em&border_color=%23DDDDDD&display=vertical&explicit=1&filter_show_sex=2&find_sex=2&grid=1x2&link_color=%230000FF&looking_for_person=1&movie=0&page=registration&photo=3&pic_border_color=%23000000&pic_border_width=0&piclang=portuguese&pid=g1368562-pct&race=0&rollover_header_color=%23FFEE80&rows=2&show_join_link=0&show_profile=1&show_title=1&site=ffadult&size=1&target=_blank&text_color=%23000000&thumb=bigsquare&title_color=%23000000&width=100%25&spcpromo_creative=July-spc&iframe=1 HTTP/1.1 
Host: banners.adultfriendfinder.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Upgrade-Insecure-Requests: 1

                                         
                                         69.165.107.14
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Server: Apache
X-PERF: 0.035275,0.015224,TM_17_0.0035230,CD_19_0.0094870,DB_8_0.0038020,FS_13_0.0007310,PK_1_0.0000210,CE_20_0.0024870
Set-Cookie: spcpromo_creative=July-spc; path=/; domain=.adultfriendfinder.com; expires=Fri, 25-Nov-2022 21:24:12 GMT;HttpOnly;Secure ffadult_who=r_5XEyBivLDEBqDKGfuD6z_e9Mz_27LdEnc9MTxYq74eNKJWGub7OVVcyZCXEipNSQd2GdCq_ACtoKEu9Td_IA03KO0enWRloym_wHdH43fxHTSxfiJTosQaEm_NfiwnqflAClB6HwT26t01gKjiSPSg--; path=/; domain=.adultfriendfinder.com; expires=Sat, 23-Nov-2024 21:24:12 GMT;HttpOnly;Secure v_hash=_english_0; path=/; domain=.adultfriendfinder.com; expires=Sat, 24-Dec-2022 21:24:12 GMT;HttpOnly;Secure IP_COUNTRY=Norway; path=/; domain=.adultfriendfinder.com; expires=Sat, 24-Dec-2022 21:24:12 GMT;HttpOnly;Secure ffadult_tr=r_7k3bQIyAzow_0Dfr4PAQx4.62qQK2hsB2L97GQX4NV2mYrQ24nTGgakbsz6fbmcy; path=/; domain=.adultfriendfinder.com; expires=Sat, 24-Dec-2022 21:24:12 GMT;HttpOnly;Secure LOCATION_FROM_IP=country&Norway&area_code&&longitude&10.859&country_name&Norway&lat&59.955&region_name&Oslo+County&country_code&NO&region&03&state&&city&Oslo&postal_code&0103&latitude&59.955&lon&10.859&dma_code&&country_code3&NOR; path=/; domain=.adultfriendfinder.com; expires=Sat, 24-Dec-2022 21:24:12 GMT;HttpOnly;Secure HISTORY=20221124-1-Dk; path=/; domain=.adultfriendfinder.com; expires=Sat, 24-Dec-2022 21:24:12 GMT;HttpOnly;Secure AB_TRACKING=jbZCmubsXHJGENwQAheF1k; path=/; domain=.adultfriendfinder.com; expires=Sat, 24-Dec-2022 21:24:12 GMT;HttpOnly;Secure throttling={"time":1669325052,"AppD":1,"GTM":0}; path=/; domain=.adultfriendfinder.com; expires=Sat, 24-Dec-2022 21:24:12 GMT;HttpOnly;Secure
P3P: CP="DSP LAW"
X-ApacheServer: si210-341
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4620
Keep-Alive: timeout=5, max=105
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (753)
Size:   4620
Md5:    ceb4049349ad227bae0b8c06fdff7788
Sha1:   83ea6df65289291d9a1713917337a086b5b43fdd
Sha256: 0e099ff2524b84c06bf1b5cd928cf57cf58808db7219ffac96d2e0c310e46a1a
                                        
                                            GET /plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fthecapitaoroby&layout=standard&show_faces=false&width=450&action=like&font=tahoma&colorscheme=light&height=80 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://netinhascombr.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: rd/rhkybUlUd/eOBv+QVe5uLSOfdtVJOsfR1yVK3PAgAm0mgV13H2vkKkXiCGAvqMPp1Cgz2ky4TeuZZc1mOEg==
content-length: 0
date: Thu, 24 Nov 2022 21:24:12 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /2012/10/links_yellow.gif HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html
Cookie: xclbktst=1

                                         
                                         142.250.74.161
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 24 Nov 2022 21:24:12 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 17390
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1811)
Size:   17390
Md5:    6095c997252394ea7f277194b75d936f
Sha1:   7b23d506836c71663c98eba8c2583f3202c1900a
Sha256: 8a0ad5d36d3ee58a82bad2a2811b147f6d4131b8e59b7309339636c3ba723349
                                        
                                            GET /small.js HTTP/1.1 
Host: widgets.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         104.22.75.171
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Fri, 11 Nov 2022 22:14:26 GMT
etag: W/"636ec942-2170"
expires: Fri, 25 Nov 2022 21:16:55 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 436
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f535c96b700a31-ARN


--- Additional Info ---
Magic:  ASCII text, with very long lines (8560), with no line terminators
Size:   3488
Md5:    08283f674ed2a3a87b0ca0b64950ef28
Sha1:   1d6018c4a9104d337726cfe9f67b43ff37acc0cb
Sha256: 442e1c2e9e1692d86c6c4df3c68167fbddb4ec4ec7fa90258fd683f5a5f3578d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4556
Cache-Control: max-age=118695
Date: Thu, 24 Nov 2022 21:24:12 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 06:22:27 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ffadult/featured/external/photos/AH/mVah3zO5oh4oJiBZSPpHC7Q.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 545339
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "139d055e-19ef-47cfc0dad7bfd"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Tue, 12 Jan 2010 18:45:09 GMT
server: ECS (ska/F712)
x-cache: HIT
x-cache-hits: 0
content-length: 6639
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Size:   6639
Md5:    27ea87eea0990cbd12b6beba6435a3aa
Sha1:   6e31dcb1f0543217d12946ddcc069ce0b637daf6
Sha256: 2e790ea8ea629cc8c103e4efbc4b915543b14667c33e382df44116c4756acd02
                                        
                                            GET /ffadult/featured/external/photos/VZ/hcvzByYk4rgkcbsISaLHAw.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 200492
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a74a80-222c-482170d4ae03f"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 18 Mar 2010 18:03:45 GMT
server: ECS (ska/F71B)
x-cache: HIT
x-cache-hits: 0
content-length: 8748
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Size:   8748
Md5:    28d5f9807d166d3477c188c679fffcac
Sha1:   eba87721fd340ea3a23ad3a0c015c23baf6d8a2f
Sha256: 97883d29f4ea949398c5ddc74d3b14da1ffadf85373018e2a40942a529de2f8a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: netinhascombr.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/2012/10/loira-peituda-transando-com-pastor-da.html
Cookie: xclbktst=1

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                        
Expires: Thu, 24 Nov 2022 21:24:12 GMT
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 07 Dec 2021 05:17:52 GMT
ETag: W/"684200741652f978388806fc4d658000a59dd4c4f6e874910078cacca7078110"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 948
Server: GSE


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   948
Md5:    e1883032d64e90d2e6970a26f209979d
Sha1:   4c611a4264cf3e121810a006416e714042ca516b
Sha256: 7638eadb5c1be766f14a1c0b7dd3a9603fd18563e3ea8d0a25dbb5a1e35b9076
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /go/page/js_social_media?width=275&height=250&casing_background_color=%23AB14CA&find_sex=2&looking_for_person=1&photo=1&page=search&pid=g1368562-pct&skip_lpo=1&iframe=1&popunder_off=1&no_click=1 HTTP/1.1 
Host: banners.adultfriendfinder.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://netinhascombr.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         69.165.107.14
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Server: Apache
X-PERF: 0.021501,0.016508,DB_4_0.0024310,CD_7_0.0011970,PK_1_0.0000190,CE_12_0.0013460
Strict-Transport-Security: max-age=300; includeSubDomains
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7074
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (772)
Size:   7074
Md5:    b4407be6b43f2654620a66559486ec72
Sha1:   2073adf49222a5f8818da6f18f7964b95d8d6ef6
Sha256: 55211c003f6771c742f0bcf79ddf99ba1657a5cb3b55e81e9e2c1f901b6e6cd1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Thu, 24 Nov 2022 21:24:12 GMT
date: Thu, 24 Nov 2022 21:24:12 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 665
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1034), with no line terminators
Size:   665
Md5:    34e37af4d526255a20a2056cd5f4addf
Sha1:   bcac186d6a49539e69a3f67aa08d0188966f5623
Sha256: 51a2c479b272414cb9d7e1ec62edffbad01217068b73d516d33cb8f26a4fc634
                                        
                                            GET /images/ffadult/css/header.css HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: gzip
accept-ranges: bytes
age: 5460
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "fbdc450-0-5b3b7213300af"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Tue, 10 Nov 2020 02:06:40 GMT
server: ECS (ska/F713)
vary: Accept-Encoding
x-cache: HIT
x-cache-hits: 0
content-length: 20
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.110
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
date: Thu, 24 Nov 2022 21:24:12 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+788; expires=Sat, 23-Nov-2024 21:24:12 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 24 Nov 2022 21:24:12 GMT
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /javascript//secure/ffadult-social_media-1305837491.js HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: text/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
age: 2472794
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 27 Oct 2022 06:24:55 GMT
server: ECS (ska/F709)
vary: Accept-Encoding
x-cache: HIT
x-cache-hits: 0
x-perf: 0.000891,0.000870,CD_1_0.0000210
content-length: 5070
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1797)
Size:   5070
Md5:    ae0759c6a7d4ed1d3dbb01f1fbaf0882
Sha1:   f905120e95c54fe13e5d488fe595eefa278844b8
Sha256: 169980787b46a314447c86b3aefb8aab25a772fea11e026614fee7ea2664da89
                                        
                                            POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2978
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.110
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-encoding: gzip
date: Thu, 24 Nov 2022 21:24:12 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+346; expires=Sat, 23-Nov-2024 21:24:12 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 24 Nov 2022 21:24:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   131
Md5:    babb6f090aeebc6f421624475b4aefff
Sha1:   06079b7547949822c118224e51604f4c5ebf80c8
Sha256: b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
                                        
                                            GET /ffadult/featured/external/photos/M1/VJM1h1qosyvrUjpjlQPeiw.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 433560
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a24af7-1d53-43b98aa1df380"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 03 Oct 2007 15:53:02 GMT
server: ECS (ska/F70A)
x-cache: HIT
x-cache-hits: 0
content-length: 7507
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   7507
Md5:    dc49f2b98dd27203efc4fb7504d84059
Sha1:   9e698781429c626959e96521ce3fbb1a9a538b4d
Sha256: 7f212b06be8c0dfdc27727619de776a6824056ab099aaa090edf08521e0c79d4
                                        
                                            GET /ffadult/featured/external/photos/YC/ltyCAFfpm4sQuyKdCSTSPoA.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 80592
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a84383-171b-4822deb95b8a5"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Fri, 19 Mar 2010 21:20:44 GMT
server: ECS (ska/F70C)
x-cache: HIT
x-cache-hits: 0
content-length: 5915
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   5915
Md5:    7d463c4e7a72ff39852af5633ec5796b
Sha1:   b1d9598f580a7af61b6a8339762b71714ad60097
Sha256: de7eefebd5bdf738ec53ee9e3750be3982726f37239ca7fbb6d01c31e3f4b5e5
                                        
                                            GET /ffadult/featured/external/photos/7D/Vj7DgXI6TLloMc1YJM2gEQ.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 291426
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "139c4107-ca7-488a1a94bcf1d"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 09 Jun 2010 23:56:58 GMT
server: ECS (ska/F717)
x-cache: HIT
x-cache-hits: 0
content-length: 3239
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   3239
Md5:    4d4eabee670b78c23f4daeafad50946d
Sha1:   ce6871b3a7365ee3a7c1f6f466bb2dd033b1fa0f
Sha256: fcd22aad3a64112c2a7c162a8543c4f9f36956c95f5a21cfb6c6a0b6bfce86e7
                                        
                                            GET /ffadult/featured/external/photos/7O/SL7ovHyMUcgIm7VKTZk3GSLQ.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 55769
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "139c53c3-13b3-47cb16ee3e217"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Sat, 09 Jan 2010 01:43:38 GMT
server: ECS (ska/F71B)
x-cache: HIT
x-cache-hits: 0
content-length: 5043
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   5043
Md5:    46ac845b5b2615ea8a840543e0bfdd5f
Sha1:   3ad5375129f1592ed80ada4724599c7e6ae1531d
Sha256: a4d211833f615fd7abf023ece05f99d82aad22b860234bf1190b535564e9674f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ffadult/featured/external/photos/GW/pTgWAH5JlnyPrn5mDT6qEA.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 243332
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "139fda64-4af1-491f6ff17713c"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 06 Oct 2010 18:32:14 GMT
server: ECS (ska/F70C)
x-cache: HIT
x-cache-hits: 0
content-length: 19185
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x160, components 3\012- data
Size:   19185
Md5:    585cb5352f1fbdbc36aefacf534c1226
Sha1:   ba16a89acfbf5baa758abc126a04aced025cff61
Sha256: eb4ab549510ed53da0ad64b5b8f57f8b24fdd0105adfe20508b836a96ab93da7
                                        
                                            GET /ffadult/featured/external/photos/ZL/JSZl5y9svsVozlbfsXjqBg.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 389309
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a8cf10-19f5-491f6ff1137c7"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 06 Oct 2010 18:32:14 GMT
server: ECS (ska/F71C)
x-cache: HIT
x-cache-hits: 0
content-length: 6645
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x160, components 3\012- data
Size:   6645
Md5:    8d301c7affb915aed7321658c66ec508
Sha1:   126d1ba21318b792415bfe786f4b25968ef6178e
Sha256: 381c7f3ca8cc35e9fa0006fa557dd022c4378279fbef7998d80820122a7cc841
                                        
                                            GET /ffadult/featured/external/photos/PS/96PSJoFwdQl3xptdQxB6nw.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 515138
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a40ef5-1718-48f6046618602"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Fri, 03 Sep 2010 19:52:47 GMT
server: ECS (ska/F713)
x-cache: HIT
x-cache-hits: 0
content-length: 5912
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   5912
Md5:    0e256a522a8cd6f6137c11839154fca3
Sha1:   9cf0253e111f97dcc92d7d6cfec1a4d858deaffd
Sha256: ebf92422ae0a260009a53629037931f8583d2deb25bce5a5b46771a0f19db15d
                                        
                                            GET /ffadult/featured/external/photos/SX/L7SXMt0SPTte0DrYxfVh1tQ.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 217954
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a5a586-10ae-44e66f43b4b80"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 29 May 2008 23:33:18 GMT
server: ECS (ska/F718)
x-cache: HIT
x-cache-hits: 0
content-length: 4270
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   4270
Md5:    1195e7cf7fd253879f71969b47259288
Sha1:   27c08b04aeb3e206319dc4361dbd68bf054e0c17
Sha256: 2f2195eb83ab50331310628ba4fa5fe49c9237bc02a59b3a53f0111acb2b455d
                                        
                                            GET /ffadult/featured/external/photos/PH/pSPhhSPcMKDHF4xxlSL4SZaUA.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 485866
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a3dc86-12c7-44e66f6145140"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 29 May 2008 23:33:49 GMT
server: ECS (ska/F6FE)
x-cache: HIT
x-cache-hits: 0
content-length: 4807
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   4807
Md5:    03b22f6cd5902a90749a09b21d37ecba
Sha1:   0659fc7543c7e67a1a9bd7316a6d77c5edeb81da
Sha256: b93d30250e088d3ea3a4b700f3bd433194d4194bb32cc361ddfc8fb03b6ea88c
                                        
                                            GET /ffadult/featured/external/photos/J5/4MJ51DvvxQ4oMEBPEDetIQ.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 51108
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a0cc05-12df-497023ebcbb21"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 09 Dec 2010 23:03:25 GMT
server: ECS (ska/F71A)
x-cache: HIT
x-cache-hits: 0
content-length: 4831
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   4831
Md5:    95a2fa7672fbb2684b4049a83cd0d1ef
Sha1:   33a3e8a24859d501d0f623bc48cb4dd8ed4117ba
Sha256: fedfa14bb5d2712a94d6b011940e95bd74e9e2b00887ed9db4210793d9f34cb2
                                        
                                            GET /ffadult/featured/external/photos/JR/W0JrUfuAp31wgoI5TnVOmA.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 191009
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a111e8-41c2-494cf690f4174"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 11 Nov 2010 23:34:08 GMT
server: ECS (ska/F710)
x-cache: HIT
x-cache-hits: 0
content-length: 16834
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x160, components 3\012- data
Size:   16834
Md5:    bd57d7829fd533a461c55bd0f1bcce87
Sha1:   9cfcae4abb5a9cf707853551181c7ff8a4cb3a5b
Sha256: f36e195f11bf96b5af9c1e872a77f99603f8e0d89944db2ac250cb78e8b69d73
                                        
                                            GET /ffadult/featured/external/photos/KC/zQKClSgwMyurtR9VpkHV8w.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 167794
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a150e4-43be-4a41d09978266"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Wed, 25 May 2011 17:28:48 GMT
server: ECS (ska/F711)
x-cache: HIT
x-cache-hits: 0
content-length: 17342
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   17342
Md5:    1cb7971cf9995a5e0768581a90130384
Sha1:   8e7d264e39ae58dc564bb48146eaa222c2be956e
Sha256: f49b1500ac22e56c3eaae0771a95d10a954716a796a920093141e7086d3f690f
                                        
                                            GET /ffadult/featured/external/photos/O5/KoO5ksrDJU3Z1SCWSTtxqQ.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 125673
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a330d1-fda-47c5f8969eb00"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Tue, 05 Jan 2010 00:01:16 GMT
server: ECS (ska/F70B)
x-cache: HIT
x-cache-hits: 0
content-length: 4058
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   4058
Md5:    995ddd1757bca32963001024cce53c98
Sha1:   b9b6541eb03be3566c3b9909fe3d07c45d89f243
Sha256: 39c772e2ce2664d86e1c2162602f2977ac29ca773a4d1b6110bf064c012ee748
                                        
                                            GET /ffadult/featured/external/photos/HK/XIHkaygxKJxMrctSBJBdhw.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 139087
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a01bea-2072-464c9ac413000"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Tue, 10 Mar 2009 20:34:08 GMT
server: ECS (ska/F717)
x-cache: HIT
x-cache-hits: 0
content-length: 8306
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 120x160, components 3\012- data
Size:   8306
Md5:    a6a4125668e5d0cca0219d3426011598
Sha1:   e6730e32d09d84be9da8a8782931c71f5ceb2d30
Sha256: e4376d4a47f16048be1d4277e420e0a47f1331d7203277df4748b62659ebd3ac
                                        
                                            GET /ffadult/featured/external/photos/4A/yD4Ammad3KXuVCYbFZgGzA.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 402954
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "139b960d-1991-4ad65134e2c9b"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Tue, 20 Sep 2011 20:12:14 GMT
server: ECS (ska/F70F)
x-cache: HIT
x-cache-hits: 0
content-length: 6545
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x160, components 3\012- data
Size:   6545
Md5:    8148f7657bdd01aaf9d8fc38839c8781
Sha1:   6ed5c3c80d33b70d5518d8627d8e91eea33bb0e1
Sha256: 74adc19b9ed017ef0562ccc13b0c0de4d70b1baa49709a91721aeac361f0d2d7
                                        
                                            GET /ffadult/featured/external/photos/BX/0pBx5TlJdFLeqRDui423BA.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 220773
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "139daa06-c7f-4871dfe0eeca9"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Fri, 21 May 2010 17:26:33 GMT
server: ECS (ska/F713)
x-cache: HIT
x-cache-hits: 0
content-length: 3199
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   3199
Md5:    62ed44b914e01ab67b74528d57998eaf
Sha1:   3ee23f3bbe26f59fcf3072b35475e1da7990e6da
Sha256: 985e0756b10b61aae35fa153ad1d5015d4f173c25e5c72888c29a3ee16e7dd6a
                                        
                                            GET /ffadult/featured/external/photos/GE/SPGeENGIvB0Szqglx5oV9uw.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 295059
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "139f9662-15f0-4981842362630"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 23 Dec 2010 18:44:24 GMT
server: ECS (ska/F708)
x-cache: HIT
x-cache-hits: 0
content-length: 5616
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x160, components 3\012- data
Size:   5616
Md5:    331d8b66a3dcb9f148d0c6c973e17df5
Sha1:   a69cb696badceb472bd4e27ddbe89d23ece84c08
Sha256: e5132bc728aee117626f6dca2252a496639dd82cad5913f10b3e10f2d541c8ea
                                        
                                            GET /ffadult/featured/external/photos/SP/TnsPO6U1KAigXWdrUeJNyQ.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 509957
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a5da64-1150-44f806faf24c0"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 12 Jun 2008 23:22:35 GMT
server: ECS (ska/F70F)
x-cache: HIT
x-cache-hits: 0
content-length: 4432
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   4432
Md5:    455f516f35126a2af26b26370d86118d
Sha1:   8b8177ef650bcc0859daa3383c4428b2b0c3eaf3
Sha256: fd42387fbfc523efc1ec99538e0369e1ded6723b750fbec36335599b9b762d80
                                        
                                            GET /ffadult/featured/external/07/50075322_58421.13162658.gallery.gif HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 74441
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "1399f777-a394-4288bc4db7901"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Sat, 03 Feb 2007 05:31:15 GMT
server: ECS (ska/F708)
x-cache: HIT
x-cache-hits: 0
content-length: 41876
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, resolution (DPCM), density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=16, description= , manufacturer=SONY, model=DSC-P72, orientation=upper-left, xresolution=251, yresolution=259, resolutionunit=3, software=Adobe Photoshop CS2 Windows, datetime=2007:02:02 21:31:28], progressive, precision 8, 120x160, components 3\012- data
Size:   41876
Md5:    6d195c9503d27a848c3f7e65876c6d00
Sha1:   3d46d6e2b2a98accc111292c82fc064cf8d297f1
Sha256: 05a6ef2db960a419e06293d096d6e3f309d2391bd2bb419286510945ba88e8f4
                                        
                                            GET /ffadult/featured/external/photos/TN/bTTnU21YDQxMbsjkRMyT2A.jpg HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
access-control-allow-origin: *
age: 170595
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "13a6381b-1366-44e66f30a1e80"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Thu, 29 May 2008 23:32:58 GMT
server: ECS (ska/F71B)
x-cache: HIT
x-cache-hits: 0
content-length: 4966
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x160, components 3\012- data
Size:   4966
Md5:    3482c8248694ebec38a37e0e570c2f96
Sha1:   4a5032f3d6f119a96cb03bf4a068c229ce659325
Sha256: 43de1e5b79271869a74e70cbd7dec693a787aa836a5d984548abd209948738a9
                                        
                                            GET /banners/btn_banner/logo_ffadult.png HTTP/1.1 
Host: secureimage.securedataimages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.229.233.220
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
age: 525201
cache-control: max-age=2592000
date: Thu, 24 Nov 2022 21:24:12 GMT
etag: "128d9-e40-48cd9da1d7c80"
expires: Sat, 24 Dec 2022 21:24:12 GMT
last-modified: Mon, 02 Aug 2010 16:40:02 GMT
server: ECS (ska/F713)
x-cache: HIT
x-cache-hits: 0
content-length: 3648
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 200 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size:   3648
Md5:    4f8472e9b51c6c6062fbbb05594f9dc7
Sha1:   47c421d646fe2ce8d10c6cc2ca0bb0f155ef2ef3
Sha256: 71b1ffc4738bd7fa10bc698c61f663793f1f59d344f670749e999a84655d95a7
                                        
                                            GET /gtm.js?id=GTM-P8ZF4WS HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://banners.adultfriendfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 21:24:12 GMT
expires: Thu, 24 Nov 2022 21:24:12 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44338
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5726)
Size:   44338
Md5:    df24ce8ee7e14f9a2c90f6db8b1d1998
Sha1:   3f2a48519814e57dfdeb568933c84b69d7644911
Sha256: 417250b6dc3451179e8022797fd6dd1e08823fa08c45ccdcf87d9d18b819ba11
                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 09:43:42 GMT
expires: Fri, 24 Nov 2023 09:43:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
age: 42030
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (730)
Size:   162976
Md5:    79d18cf4265108d7cecca1bf4ada6109
Sha1:   e51d0285a545381d4c39e9e0292a650ffeeecbb9
Sha256: 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pingjs/?k=8jh7rhg7mk86&t=Loira%20peituda%20transando%20com%20pastor%20da%20igreja%20arrombando%20bucetinha%20apertada%20e%20sex&c=s&x=http%3A%2F%2Fnetinhascombr.blogspot.com%2F2012%2F10%2Floira-peituda-transando-com-pastor-da.html&y=&a=0&d=1.467&v=27&r=6569 HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/

                                         
                                         172.67.8.141
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Date: Thu, 24 Nov 2022 21:24:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f535cb1cec0b45-OSL


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   50
Md5:    53faad67e90f44d6fe2a2c49a561434d
Sha1:   46280c43055e41145d82d3248e0838bc18932ae6
Sha256: 57dff0166d38fc98c90dd447151da9aec2e5cbb906ce5876ac7cd30af6ca1842
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 463935
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 603477
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 21:24:13 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 23:33:45 GMT
Expires: Wed, 30 Nov 2022 23:33:44 GMT
Etag: "306e1db159c6462ac16527788f772c0615f3741d"
Cache-Control: max-age=525570,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f535cd7ab2b517-OSL

                                        
                                            GET /tc.js HTTP/1.1 
Host: cdn.tynt.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://netinhascombr.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.36.173
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 24 Nov 2022 21:24:13 GMT
last-modified: Thu, 21 Jul 2022 14:57:29 GMT
vary: Accept-Encoding
etag: W/"62d96959-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 21558
expires: Sun, 27 Nov 2022 21:24:13 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 76f535cdc8c9fac4-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (647)
Size:   9393
Md5:    a6d04b6a140de75189d21ad5b24923f1
Sha1:   c5511ade3671e9f6c00d2762f3cf016d1fe87a06
Sha256: 1bbb45765acf8d67b50bb897b12f817e8b1342673c9f6ca13dc48712e9837bd0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4571
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 21:24:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4571
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 21:24:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC