Report - gavetadefichas.blogspot.com/2010_07_01

Report Overview

Submitted URL
gavetadefichas.blogspot.com/2010_07_01_archive.html
IP
142.250.74.161
ASN
#15169 GOOGLE
Submitted
2022-11-24 08:49:09
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
translate-pa.googleapis.com	1620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	487 B	2.4 kB	142.250.74.42
gavetadefichas.blogspot.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	26 kB	142.250.74.161
www.blogger.com	8975	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	72 kB	142.250.74.105
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	322 B	655 B	216.58.211.2
accounts.google.com	81	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.1 kB	216.58.207.237
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.161.148.163
www.blogblog.com	28878	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	334 B	986 B	142.250.74.105
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	6.8 kB	142.250.74.163
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	104.18.32.68
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.6 kB	18 kB	142.250.74.3
codice.shinystat.com	262672	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	324 B	2.9 kB	185.206.85.82
3.bp.blogspot.com	11048	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	24 kB	142.250.74.161
www.giveawayoftheday.com	755736	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	6.5 kB	208.94.233.109
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	2.5 kB	142.250.74.46
resources.blogblog.com	13274	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	7.8 kB	142.250.74.105
clients6.google.com	95	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	828 B	1.5 kB	142.250.74.142
codicebusiness.shinystat.com	119453	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	312 B	3.0 kB	185.206.86.14
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	922 B	81 kB	142.250.74.174
4.bp.blogspot.com	11215	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	54 kB	142.250.74.161
giveawayoftheday.com	197231	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	451 B	21 kB	208.94.233.109
calendar.google.com	826	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	863 B	1.1 kB	142.250.74.14
2.bp.blogspot.com	11071	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	7.5 kB	142.250.74.161
pt.giveawayoftheday.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	673 B	1.7 kB	208.94.233.109
img.youtube.com	3087	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	409 B	4.2 kB	142.250.74.174
translate.googleapis.com	1005	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	924 B	81 kB	172.217.21.170
1.bp.blogspot.com	8403	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	487 B	5.6 kB	142.250.74.161
s9.shinystat.com	839473	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	532 B	1.3 kB	185.206.85.85
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
files.bannersnack.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	302 B	507 B	52.216.59.25
advm.brznetwork.com	167278	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	326 B	429 B	185.206.86.13
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	4.0 kB	142.250.74.164
themes.googleusercontent.com	9661	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	910 B	513 kB	142.250.74.33
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	435 B	12 kB	216.58.207.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-24	medium	files.bannersnack.com/iframe/embed.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (51)

	URL	Size	First Seen	Last Seen
	apis.google.com/js/platform.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:23 Last Seen2023-03-17 23:35:13 Times Seen1 Hash 82b37d5e95d1e985a554cf000e9bb15c 8973b2e12ea8de1b8a14c8b7ea3be6c1c25eae07 4c6520efed0ab3222ea84da3fb4d6cdc929353fdfa0ac12422253be3ffcf525a Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	137 B	2023-03-11	2023-03-12
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-12 18:19:07 Times Seen1 Hash 5870586cee95eb374aeeeb53a479504b 558f9557a073f2165601cca3d2607f8c1b8c6767 84091571f20202a182b086ec6640e4176afcaee56eda6e22d15156ebfe44ac8f Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	266 B	2023-03-07	2024-04-15
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:43:57 Last Seen2024-04-15 15:27:25 Times Seen200 Hash e79a095ed555697eb8313387caba2a8e fd8c34c7e86dd248b89066cf0060747ae1d60aa7 74b37805db59443c340c3f21ab775c504a4b9599b55f6c9ee51c81e8a857a258 Loading...

	calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon	81 B	2023-03-07	2023-03-29
Pretty URL calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:43:57 Last Seen2023-03-29 23:34:15 Times Seen9 Hash 6a268af8f03f7140a27717d8a7492756 55059c8240e178f0dca92ced77772d0d4716db66 c8099a8a3e764a5cff3663c53744fc98ae1e956c0ddf378c2489c748e3f36b78 Loading...

	www.blogger.com/navbar.g?targetBlogID=7919270763485362439&blogName=Gaveta+de+fichas+-+1%C2%BA+Ciclo&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://gavetadefichas.blogspot.com/search&blogLocale=pt_PT&v=2&homepageUrl=gavetadefichas.blogspot.com/&vt=-474842966176479771&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fgavetadefichas.blogspot.com&pfname=&rpctoken=37319313	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=7919270763485362439&blogName=Gaveta+de+fichas+-+1%C2%BA+Ciclo&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://gavetadefichas.blogspot.com/search&blogLocale=pt_PT&v=2&homepageUrl=gavetadefichas.blogspot.com/&vt=-474842966176479771&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fgavetadefichas.blogspot.com&pfname=&rpctoken=37319313 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	275 B	2023-03-07	2024-04-19
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-19 07:58:25 Times Seen57130 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	134 B	2023-03-07	2024-04-19
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-19 07:58:12 Times Seen13749 Hash 7e2a455be32f5870991d61ec53c7dc39 5b4ae6802be8b8b8033c315ae65a16eeaf7682aa 8f0eb730a7427cc79a611009ff5de0a3d74e5249ea9a9db98d1954e2b933d91d Loading...

	apis.google.com/js/googleapis.proxy.js?onload=startup	18 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/js/googleapis.proxy.js?onload=startup IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:23 Last Seen2023-03-11 23:50:53 Times Seen1 Hash 608520987d83830d2b69aa4e457282b5 7a45b4c87fc19d491bbb7df65765689f548b2e75 8075897403ef7271588072b8be24eae89a5e8e887b2117eb34f41bbac15df4a8 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	176 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-03-17 23:14:57 Times Seen1 Hash 56e3c588ced8ba4b5f2fc17026a9d57e 85f89594b97d49984b826d511fb82271bfddb85b b1370ea109344f61415c6a6414837fd2089a02bcd1d6bc88fad765fe7640541a Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-04-19
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 216.58.211.2 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 07:58:13 Times Seen47733 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	1.6 kB	2023-03-11	2023-03-12
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-12 18:19:07 Times Seen1 Hash 2d24993ce7c738d21d42f5e0ac669061 e12d2e244925da0f3b0d83e61f1e058039e9cd67 48afdf525597c0fb09278adb7f7695d63d202822df45c54f182b2e328322529e Loading...

	www.google.com/cse/brand?form=cse-search-box&lang=pt	14 kB	2023-03-07	2024-04-15
Pretty URL www.google.com/cse/brand?form=cse-search-box&lang=pt IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:13 Last Seen2024-04-15 02:46:46 Times Seen3661 Hash 5fd232d76f845e55064ad5069abfc141 afaa74984a2c8eb086ff2d22e0ad2abfce7d272e 6395e6f9f6fbcd953f0ffa40615094c565d86c265fb5028e64dd2dc872b5ce69 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	41 B	2023-03-11	2023-03-12
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-12 18:19:07 Times Seen1 Hash d0d56d5c3639dd1c102acd3db33cecf8 15a2f3355d18fbcbcce2cdafdae8304558faa41a 3a983329262a65db526582b30dafadd63ee14ecd86563f7540eef82b6cb56715 Loading...

	pt.giveawayoftheday.com/ticker/	3.2 kB	2023-03-11	2023-03-11
Pretty URL pt.giveawayoftheday.com/ticker/ IP 208.94.233.109 ASN #40824 WZCOM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-11 18:59:25 Times Seen1 Hash 0a1452359d694f1fcd43f00d9157dd0f b9b1107aa059d76f65d4ab46f4bbef058c656a96 1f9189ab24ba2b29b3d572f0595d304047c8a8c945ab9ff3d856c0fae4126804 Loading...

	calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon	164 B	2023-03-07	2023-04-05
Pretty URL calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:26 Last Seen2023-04-05 02:11:17 Times Seen20 Hash d1b0a8156294160646c83f32352f9bed cfcbfcdfed1b7420a996f940026076491f328c49 a949ad4e1dbad90ea3d433dfaf840d23d37a97bfd6bed409fb2555df6109c126 Loading...

	calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon	1.0 kB	2023-03-11	2023-03-11
Pretty URL calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-11 18:59:25 Times Seen1 Hash 7d60ef0d53578b54d087febc608f1346 b45d682542dff7995e7c84ab876099dc0f9cd0a9 a641d427faa3f2ea6066150a200e2638db61aa58c3b2f6e33ec5a174c7982d29 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 08:14:54 Times Seen36954876 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	codicebusiness.shinystat.com/dcode/dcode.min.js	8.0 kB	2023-03-08	2023-05-05
Pretty URL codicebusiness.shinystat.com/dcode/dcode.min.js IP 185.206.86.14 ASN #6665 Shiny S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:55:46 Last Seen2023-05-05 00:52:34 Times Seen61 Hash 45ce47b605a3981f4e3efe7cf35a3d7b 6276e907da9c8620cbd08cf184ae78eb536cf9b7 389e540f31ab39e71dd10cb73766b31fb75e792ff4667b9c93dd369bedec9669 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	723 B	2023-03-11	2023-03-12
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-12 18:19:07 Times Seen1 Hash 9ab94ec497b593f86850314790a7e0ba 2657ed3287ee1bb18abeb2834d99cf32d41db65e 5054a5f56557f076eb24a85f13891c4a23cb3196b65007e37a3957f24e333365 Loading...

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	76 kB	2023-03-11	2023-03-11
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:57:59 Last Seen2023-03-11 18:59:51 Times Seen1 Hash 1a91200750b9f5564f041bed59a6b67a 9bf3ff94221d4d64c43b11f19afa356f42d19066 9a5b238d80e176db6779b296bdd4d47c88d5f32e04cbaa9024d7f36c20731ea1 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	125 B	2023-03-11	2023-03-12
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-12 18:19:07 Times Seen1 Hash ccb7d135b4319fc6e3f3a42ac61fdffb 1a3e060c609d719aba075f1a312320734bc6c24f 24d9a20c6f00f519ebaa4ef4075875fff9e1e6b326ceeb0884e5d55e99289b7c Loading...

	codice.shinystat.com/cgi-bin/getcod.cgi?USER=gavetadefichas	6.8 kB	2023-03-11	2023-03-11
Pretty URL codice.shinystat.com/cgi-bin/getcod.cgi?USER=gavetadefichas IP 185.206.85.82 ASN #6665 Shiny S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-11 18:59:25 Times Seen1 Hash 309d2ba74ab87dea6037d4a504d99eaf 7495a259138b366f66e6521ae4bb27f1c0091749 f368be3fb315b3df024b2edac992485c3b9710580e82316600a7bef9c1578288 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	302 B	2023-03-07	2024-04-19
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 07:58:12 Times Seen28581 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	www.blogger.com/static/v1/widgets/2342155703-widgets.js	157 kB	2023-03-08	2023-03-17
Pretty URL www.blogger.com/static/v1/widgets/2342155703-widgets.js IP 142.250.74.105 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:40 Last Seen2023-03-17 23:35:13 Times Seen1 Hash 64d62574443f9d2148012af05abf60ac 16fc9b9b71eb94dbfdc15da12e9b3f21dfe1636e c752966435826f865df5163012e3066bd9f0339b1959098323533be261741246 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	269 B	2023-03-07	2024-04-19
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 07:58:12 Times Seen27898 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	calendar.google.com/calendar/_/web/calendar-static/_/js/k=calendar-web.embed.no.asez3S6RmZc.es5.O/d=1/rs=ABFko38nFpNRjEQ_9uszToAtqGwXIqmBDw/m=embed	220 kB	2023-03-11	2023-03-11
Pretty URL calendar.google.com/calendar/_/web/calendar-static/_/js/k=calendar-web.embed.no.asez3S6RmZc.es5.O/d=1/rs=ABFko38nFpNRjEQ_9uszToAtqGwXIqmBDw/m=embed IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:43:52 Last Seen2023-03-11 21:33:08 Times Seen1 Hash bd2988796c72f629e11b56bd3c083e8f f6e61db22fc9dca7332b364b5b29ccc61beaa666 bd4116267d8ca144a11d10a6a024a149e1f87c32937eba7fae3c765f1891bbba Loading...

	calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon	80 B	2023-03-07	2023-04-05
Pretty URL calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:26 Last Seen2023-04-05 02:11:17 Times Seen20 Hash 064d45a30dd871e620c786c9da7dcc77 44919060900eaf4a2e892abb66566d1d4fa0a1ea 4c2429dbd73e9d54fbdfbfbb7e30b6e6b597840bfb38c576f80dcdd831e87499 Loading...

	calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon	395 B	2023-03-07	2023-04-05
Pretty URL calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:26 Last Seen2023-04-05 02:11:17 Times Seen20 Hash 386a9087e992ebe9d214c5b148617625 815c73a903bb84214548fdc94741c81e1e30c722 9bed3d6c59006a80de9c6c68795d42ae8e570504be1f4cbab1ac4ed858cbeab5 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	12 kB	2023-03-11	2023-03-11
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-11 18:59:25 Times Seen1 Hash 13e5d22071ad6014aafdce9068f624a3 1500b861f07a0b95fba8abfaec9de216986f55c0 b227ecaa699e3629a866846f34c6e1144f6f34f4cb561d231c57d42e2b874991 Loading...

	www.blogger.com/followers.g?blogID=7919270763485362439&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fgavetadefichas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1#id=I0_1669279736750&_gfid=I0_1669279736750&parent=http%3A%2F%2Fgavetadefichas.blogspot.com&pfname=&rpctoken=11706092	424 B	2023-03-11	2023-03-12
Pretty URL www.blogger.com/followers.g?blogID=7919270763485362439&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fgavetadefichas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1#id=I0_1669279736750&_gfid=I0_1669279736750&parent=http%3A%2F%2Fgavetadefichas.blogspot.com&pfname=&rpctoken=11706092 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-12 18:19:07 Times Seen1 Hash 9416fbf11d10a35273b3c1df92c6f7bf fb944bfa608bd3738b9de7d1f3ff701b8104083b 0c217902d84434560dd87bdf68ea5651ffe63167a4fdff94cd7cb65e3a4ad5e1 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	129 kB	2023-03-08	2023-11-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-11-05 00:33:19 Times Seen5 Hash ebaa2506c5b4b13ecfc737a1e3b7eb3d e75a7603d9e5016c0c774ab99d5c0b9b756e1a03 9e6d60f06b6332ed1831d9d501e602656f3c884480c6d7034542866281ea3086 Loading...

	http:srcdoc	1.2 kB	2023-03-08	2023-04-22
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-04-22 02:10:05 Times Seen1280 Hash 1bdd099873761648dd3aa8aad60e2ac3 713e5a99347bd73f3d9c359acd1c885430e22060 0624e7ce1ad63657924f8ca830c5a9a16c721b527ea1b98d2ef471d04348a07d Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	68 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:23 Last Seen2023-03-11 23:50:53 Times Seen1 Hash 5cff7fc363200f40485210564c16c7f7 8a1ef7ba97cff872e3e1988fe6a71b38142e5ae5 1d905e0828f616b08b62876f651ffaf3a523e45f93d302c9d1d52d0d8f98d2db Loading...

	apis.google.com/js/client.js?onload=clientLibraryLoaded	18 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/js/client.js?onload=clientLibraryLoaded IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:23 Last Seen2023-03-11 23:50:53 Times Seen1 Hash 25c58eeaaca1425755cf32843563cfba 969fadf21af53d1017260d5cffba6c8cda31eee2 ead7c01cfdccba256c2328278b3ea4492e821205f84c6db233157b25079110a7 Loading...

	calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon	66 B	2023-03-07	2023-04-05
Pretty URL calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:26 Last Seen2023-04-05 02:11:17 Times Seen20 Hash 1afe8a62c2d7be50954cf91b5c471487 d6e3b23df92e8f80bf34b19e2e540f303a4934c5 3f1407d0605c958379d34dfa96086ee87da59b294cf863d9803126161ed523b0 Loading...

	gavetadefichas.blogspot.com/2010_07_01_archive.html	789 B	2023-03-07	2024-02-13
Pretty URL gavetadefichas.blogspot.com/2010_07_01_archive.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	gavetadefichas.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-19
Pretty URL gavetadefichas.blogspot.com/js/cookienotice.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-19 07:58:25 Times Seen112929 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	www.blogger.com/followers.g?blogID=7919270763485362439&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fgavetadefichas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1#id=I0_1669279736750&_gfid=I0_1669279736750&parent=http%3A%2F%2Fgavetadefichas.blogspot.com&pfname=&rpctoken=11706092	1.9 kB	2023-03-11	2023-03-12
Pretty URL www.blogger.com/followers.g?blogID=7919270763485362439&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fgavetadefichas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1#id=I0_1669279736750&_gfid=I0_1669279736750&parent=http%3A%2F%2Fgavetadefichas.blogspot.com&pfname=&rpctoken=11706092 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-12 18:19:07 Times Seen1 Hash 33512e9c56c65646a1595476e07e5f03 07b1103702d085ef03bc4690fc1488548c25cac6 1b3cc81debbe61061aab1989794c879bc22d86958b6fc6d17827d2aaf7ad94a3 Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-03-17 23:14:57 Times Seen1 Hash 0f33e12fa3290716d243f3162bb63cb0 32f9b00bfd7449ebd5382871d1c083db9c1b2b95 82c53629d9ff53cc334633ac037d1dc1f843008d6e1347ce784b9f255bacb42f Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main	211 kB	2023-03-08	2024-03-20
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main IP 172.217.21.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2024-03-20 15:56:26 Times Seen134 Hash 416b0fc07995be8d2b5b67aba46171b0 dd355df12143ce031c19ed0b2b8bf512b6c7d5f1 99a05e6c4657850662d766688752248659646b186aff567879d5d159812d1904 Loading...

	www.blogger.com/navbar.g?targetBlogID=7919270763485362439&blogName=Gaveta+de+fichas+-+1%C2%BA+Ciclo&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://gavetadefichas.blogspot.com/search&blogLocale=pt_PT&v=2&homepageUrl=gavetadefichas.blogspot.com/&vt=-474842966176479771&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fgavetadefichas.blogspot.com&pfname=&rpctoken=37319313	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=7919270763485362439&blogName=Gaveta+de+fichas+-+1%C2%BA+Ciclo&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://gavetadefichas.blogspot.com/search&blogLocale=pt_PT&v=2&homepageUrl=gavetadefichas.blogspot.com/&vt=-474842966176479771&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fgavetadefichas.blogspot.com&pfname=&rpctoken=37319313 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	clients6.google.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#parent=https%3A%2F%2Fcalendar.google.com&rpctoken=327515035	71 B	2023-03-07	2023-04-05
Pretty URL clients6.google.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#parent=https%3A%2F%2Fcalendar.google.com&rpctoken=327515035 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:49 Last Seen2023-04-05 02:11:17 Times Seen65 Hash 4cb932da0f92ef918dbeb885268891be 5836540c0e59fa3af5a395f69ffe99a07b355bd0 9ccd099b5047f017c81d60433e9d3de6ccfbd5fc27addc83d472cdfc07b4c704 Loading...

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	17 kB	2023-03-07	2024-04-19
Pretty URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 07:31:34 Times Seen14109 Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 62eb888dc1e8db6aa829b0a2066dda2a	1.4 kB	2023-03-11	2023-03-12
Pretty Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-12 18:19:09 Times Seen1 Hash 62eb888dc1e8db6aa829b0a2066dda2a 4628776726265b8a8086a885e8ca633550715d13 b8fea024def1a669da31c446c8b710995557daf9e8a0cde8c90aaba1d8379cf6 Loading...

		Size	First Seen	Last Seen
	#1 Write - 5315761f6982f05b74ca1bad22d5c4a4	1.2 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 18:59:25 Last Seen2023-03-11 18:59:25 Times Seen1 Hash 5315761f6982f05b74ca1bad22d5c4a4 c54d78ba32ce4a0d088dfcf2c9b6f0b855ec1fcd 6a5da76afb984394722e1e58df3bf11758aa5e57272232d54198529b5e4e9116 Loading...

	#2 Write - 7e7acd0117eeb58b8f1fc7c2e95ebd27	7 B	2023-03-07	2024-03-18
Pretty Observations First Seen2023-03-07 12:24:23 Last Seen2024-03-18 09:34:03 Times Seen67 Hash 7e7acd0117eeb58b8f1fc7c2e95ebd27 da73131d8a61fe0d20ef39037b965e1d11583473 5eb51658c4ff035fecdeb4c269efb2d33a67ac9928a2a6c2d2d9a14630a0ec35 Loading...

	#3 Write - 3edc0d2763802bd7634576cf780630fd	24 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 06:49:55 Times Seen10697 Hash 3edc0d2763802bd7634576cf780630fd 598d900dcdecd9064535e606bf7a0708d4bf0ec2 a3ba8250ebf2c8e28e99b0cbcb48488777fa3f512e83a7a56930803eb5d35e05 Loading...

	#4 Write - 1ea872e800e8178012560994a717feee	2.9 kB	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-03-17 12:49:46 Times Seen1 Hash 1ea872e800e8178012560994a717feee 391fb300646cecffead4773ee363d154bdc7b723 bd9b9037f2231777bcc799f76eeeae2e5a01663cce765e72e2ed1bda49cc926c Loading...

	#5 Write - 8b61ee8612aec53f39c77bf6f6bd989f	382 B	2023-03-07	2023-06-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-06-19 20:30:52 Times Seen84 Hash 8b61ee8612aec53f39c77bf6f6bd989f 100a093c0b3e54546f31abf306c6ecc99e293938 d2485660acb012ca34ca118cb59e6fbb11edb83ea98a0e050dd9bed186ee9274 Loading...

	#6 Write - 17b4f42d4db289726d11bffdeb8ecb62	382 B	2023-03-07	2023-06-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-06-19 20:30:52 Times Seen84 Hash 17b4f42d4db289726d11bffdeb8ecb62 4714b95ed330602e794dcb5c76a744645b463b8c c68c84b340115ef05318c4438aed24d3cd6198fdac59ac30dc7bac98452fda69 Loading...

	#7 Write - fb819afd1dda1cb61af5eb0da1c2b3c5	21 B	2023-03-11	2023-12-28
Pretty Observations First Seen2023-03-11 18:59:25 Last Seen2023-12-28 05:27:42 Times Seen4 Hash fb819afd1dda1cb61af5eb0da1c2b3c5 45aa8ef7a0daec895fd4ce851f8f9b726770044e 78b7b2541a90b7630b7ffc7158e290e7e14739174c69a5a57f7fb163075e80e8 Loading...

HTTP Transactions (100)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11002
Expires: Thu, 24 Nov 2022 11:52:18 GMT
Date: Thu, 24 Nov 2022 08:48:56 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1975
Cache-Control: max-age=94515
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:04:11 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13501
Expires: Thu, 24 Nov 2022 12:33:57 GMT
Date: Thu, 24 Nov 2022 08:48:56 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 08:17:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1901
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: CQtw16sHDK3a+W11R6YZjiZswlhfpMI68fLCqaPX1hFRlM83micTAfTTjTM/rL1q9aK7D8tm6H8=
x-amz-request-id: X8MJ0HF4GY7W6PSF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 08:43:20 GMT
age: 336
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

gavetadefichas.blogspot.com/2010_07_01_archive.html

142.250.74.161

200 OK

21 kB

URL HTTP/1.1
gavetadefichas.blogspot.com/2010_07_01_archive.html
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1238)
Size
21 kB (21027 bytes)
Hash
ed009e8ced546ab97b472e486e715453
a1403ba54848a253a61c875227f8527d34dc3530
42859261c78e9427e5fea910d28392fc7257f62115f0c8b2d7451975c0463bfd

HTTP Headers

GET /2010_07_01_archive.html HTTP/1.1
Host: gavetadefichas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Thu, 24 Nov 2022 08:48:56 GMT
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 19 Oct 2022 00:58:45 GMT
ETag: W/"e9b1a35a3c7c6dd9c9a7be2089ae90b40f6839bfd4d1d011731e4b78139c1d4f"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 21027
Server: GSE

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 08:48:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

gavetadefichas.blogspot.com/js/cookienotice.js

142.250.74.161

200 OK

2.0 kB

URL HTTP/1.1
gavetadefichas.blogspot.com/js/cookienotice.js
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: gavetadefichas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/2010_07_01_archive.html

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Thu, 24 Nov 2022 08:48:56 GMT
Expires: Thu, 01 Dec 2022 08:48:56 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 24 Nov 2022 07:55:32 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0

www.google.com/cse/brand?form=cse-search-box&lang=pt

142.250.74.164

301 Moved Permanently

237 B

URL HTTP/1.1
www.google.com/cse/brand?form=cse-search-box&lang=pt
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
237 B (237 bytes)
Hash
bda0dec939809d66ff8388fe5c716412
d768e1edcca0d64e15c1a26978d19c8fdfbd4e4f
334f05a39cdb64bac9f876dd2a2011649d08d578f6d751460c91ca294f3304cd

HTTP Headers

GET /cse/brand?form=cse-search-box&lang=pt HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 301 Moved Permanently
Location: https://www.gstatic.com/prose/brandjs.js
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 08:48:56 GMT
Expires: Thu, 24 Nov 2022 09:18:56 GMT
Cache-Control: public, max-age=1800
Server: sffe
Content-Length: 237
X-XSS-Protection: 0

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.46

301 Moved Permanently

0 B

URL HTTP/1.1
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 24 Nov 2022 08:48:56 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
186f5295f578dc81663537fd23a898a8
212cd5caaa9d44817996854d067e7a4eae843a56
01a37259454aef3bf6436eeac239313c9bb17f58337ad0070c7784f154069e8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css

142.250.74.105

200 OK

7.8 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35959)
Size
7.8 kB (7776 bytes)
Hash
5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630

HTTP Headers

GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:12:52 GMT
expires: Wed, 22 Nov 2023 18:12:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: text/css
age: 138964
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.blogblog.com/img/icon_feed12.png

142.250.74.105

200 OK

500 B

URL HTTP/2
resources.blogblog.com/img/icon_feed12.png
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Size
500 B (500 bytes)
Hash
44e7355a788fd1082deff0018883758e
50e3a28a44978e85d13c30522e0c71c8d0b24675
3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319

HTTP Headers

GET /img/icon_feed12.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 12:43:16 GMT
expires: Tue, 29 Nov 2022 12:43:16 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 21:54:35 GMT
content-type: image/png
age: 158740
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

codice.shinystat.com/cgi-bin/getcod.cgi?USER=gavetadefichas

185.206.85.82

200 OK

2.6 kB

URL HTTP/1.1
codice.shinystat.com/cgi-bin/getcod.cgi?USER=gavetadefichas
IP
185.206.85.82:0
ASN
#6665 Shiny S.r.l.

File type
exported SGML document, ASCII text, with very long lines (946)
Size
2.6 kB (2624 bytes)
Hash
89d0cd5f8bea2f0920215e7d6848c9fa
7bc1ca6c00ba4ea1002328a747502adfb23f9c45
eee6cfeb7e93020c00bb16116e1f27b46b8b84e5eff4325ef87255428e889f13

HTTP Headers

GET /cgi-bin/getcod.cgi?USER=gavetadefichas HTTP/1.1
Host: codice.shinystat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
date: Thu, 24 Nov 2022 08:48:56 GMT
server: Apache
vary: Accept-Encoding
content-encoding: gzip
p3p: CP="NOI NID ADM OUR STP"
content-length: 2624
content-type: application/x-javascript
connection: close

resources.blogblog.com/img/widgets/arrow_dropdown.gif

142.250.74.105

200 OK

141 B

URL HTTP/2
resources.blogblog.com/img/widgets/arrow_dropdown.gif
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 13 x 10\012- data
Size
141 B (141 bytes)
Hash
2964a07d60a4e76b299130fb1b4115f6
3b72dcc19f3ad685513eaba612e07e0ed495f2e1
28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7

HTTP Headers

GET /img/widgets/arrow_dropdown.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 19:19:11 GMT
expires: Tue, 29 Nov 2022 19:19:11 GMT
cache-control: public, max-age=604800
last-modified: Tue, 22 Nov 2022 14:54:22 GMT
content-type: image/gif
age: 134985
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.blogblog.com/img/widgets/subscribe-netvibes.png

142.250.74.105

200 OK

1.4 kB

URL HTTP/2
resources.blogblog.com/img/widgets/subscribe-netvibes.png
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Size
1.4 kB (1445 bytes)
Hash
c52a5f4ecb6be5d7e93b23ef4122ee4e
4e698a5f455daf3a8ea1e219b1998079f0546716
71b8ad79c680b3e5d452a792c3b418b23f739a0a34005e0f37ec674f4c78cb5d

HTTP Headers

GET /img/widgets/subscribe-netvibes.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 04:30:11 GMT
expires: Wed, 30 Nov 2022 04:30:11 GMT
cache-control: public, max-age=604800
last-modified: Wed, 23 Nov 2022 02:52:49 GMT
content-type: image/png
age: 101925
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

apis.google.com/js/platform.js

142.250.74.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1279)
Size
21 kB (20984 bytes)
Hash
7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Thu, 24 Nov 2022 08:48:56 GMT
expires: Thu, 24 Nov 2022 08:48:56 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.blogblog.com/img/widgets/subscribe-yahoo.png

142.250.74.105

200 OK

580 B

URL HTTP/2
resources.blogblog.com/img/widgets/subscribe-yahoo.png
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Size
580 B (580 bytes)
Hash
79f602b6ac18bee79b4e2353a6674010
28accf82263aa1a11bb821439d4d185865662530
bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e

HTTP Headers

GET /img/widgets/subscribe-yahoo.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 12:20:26 GMT
expires: Wed, 30 Nov 2022 12:20:26 GMT
cache-control: public, max-age=604800
last-modified: Wed, 23 Nov 2022 07:50:07 GMT
content-type: image/png
age: 73710
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

4.bp.blogspot.com/-fUIAJSH5Smk/Vq_2esOlh_I/AAAAAAAAoMk/r2aGm5R0dYE/s72-c/1.jpg

142.250.74.161

200 OK

1.0 kB

URL HTTP/1.1
4.bp.blogspot.com/-fUIAJSH5Smk/Vq_2esOlh_I/AAAAAAAAoMk/r2aGm5R0dYE/s72-c/1.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
1.0 kB (1022 bytes)
Hash
5253010babd5ff4b168ec8674ca7fbe0
be4b51e0361920d1c126bb4a6aebd6a6e23ddd2f
983b4903696b493fa0f45ba8cf6c5a25ee3adaf6cd02234f2960e101993f25be

HTTP Headers

GET /-fUIAJSH5Smk/Vq_2esOlh_I/AAAAAAAAoMk/r2aGm5R0dYE/s72-c/1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1022
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 08:21:17 GMT
Expires: Thu, 17 Nov 2022 08:22:45 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 1659
ETag: "va0cb"
Content-Type: image/jpeg

www.blogger.com/static/v1/widgets/2342155703-widgets.js

142.250.74.105

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56726 bytes)
Hash
1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b

HTTP Headers

GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 233213
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6670d72d487e9659c04c74563b60a962
47d621aed97253a6023c4f22a34260a831c406c1
f1bafc7a8db870f25ddb3b368e7b86196d1fffabfcae65a4c04c224a667890cb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6670d72d487e9659c04c74563b60a962
47d621aed97253a6023c4f22a34260a831c406c1
f1bafc7a8db870f25ddb3b368e7b86196d1fffabfcae65a4c04c224a667890cb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs

142.250.74.174

200 OK

58 kB

URL HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (580)
Size
58 kB (57794 bytes)
Hash
813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 82358
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.blogblog.com/img/widgets/s_top.png

142.250.74.105

200 OK

335 B

URL HTTP/2
resources.blogblog.com/img/widgets/s_top.png
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
PNG image data, 144 x 400, 4-bit colormap, non-interlaced\012- data
Size
335 B (335 bytes)
Hash
c4908f4189f7698dc8afdd67df8ce041
b6f7cd64ff84e7cedb4b8b92ceb8b9800ad7624a
cfe1d5dd45c7f0897d769e6c95ae9036fbdc7dad76ac9ed6ce6b21a785ecd6de

HTTP Headers

GET /img/widgets/s_top.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 335
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:23 GMT
expires: Wed, 30 Nov 2022 09:56:23 GMT
cache-control: public, max-age=604800
last-modified: Wed, 23 Nov 2022 04:53:50 GMT
content-type: image/png
age: 82353
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.blogblog.com/img/widgets/s_bottom.png

142.250.74.105

200 OK

172 B

URL HTTP/2
resources.blogblog.com/img/widgets/s_bottom.png
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
PNG image data, 144 x 3, 4-bit colormap, non-interlaced\012- data
Size
172 B (172 bytes)
Hash
a9bbd1bf495055e06e61aec7f8c1b6c4
491c1a006da8a9eea4f3d1bb27e5815ab66a9f45
91fe35689444e53c1bf3e04f24c154fa0468be9edd3c84344f9f64c2eff89eeb

HTTP Headers

GET /img/widgets/s_bottom.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 15:03:32 GMT
expires: Tue, 29 Nov 2022 15:03:32 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 14:52:53 GMT
content-type: image/png
age: 150324
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

files.bannersnack.com/iframe/embed.js

52.216.59.25

403 Forbidden

243 B

URL HTTP/1.1
files.bannersnack.com/iframe/embed.js
IP
52.216.59.25:0
ASN
#0

File type
XML 1.0 document text\012- XML document, ASCII text
Size
243 B (243 bytes)
Hash
1670cdfd6a944c79f6543bfae4892d71
accd554e135491daa4a495aff5734c7bb3059812
a9216ee09e6a6dd60ea8b311a3123874b2eb6a2effd31cf0012291da12c86db4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /iframe/embed.js HTTP/1.1
Host: files.bannersnack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 403 Forbidden
x-amz-request-id: 60VV683XCMQQG7ZM
x-amz-id-2: CDDjJyuWpi9dRzC2I+XrZznAcLo5tetDFGMeAUIuGnyeuiFaOUVjyg8opLUniU3MidIOMWRD4d0=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Thu, 24 Nov 2022 08:48:56 GMT
Server: AmazonS3

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

216.58.211.2

200 OK

67 B

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
67 B (67 bytes)
Hash
9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 08:04:08 GMT
Expires: Thu, 08 Dec 2022 08:04:08 GMT
Cache-Control: public, max-age=1209600
Age: 2688
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8

themes.googleusercontent.com/image?id=1hQhS-4GCqpLtyNodPfwrzTXqD89iAP3mesy-fqSBaRonQfT7Pr76WtDnHyc9RHyejgb8&options=w1600

142.250.74.33

301 Moved Permanently

0 B

URL HTTP/1.1
themes.googleusercontent.com/image?id=1hQhS-4GCqpLtyNodPfwrzTXqD89iAP3mesy-fqSBaRonQfT7Pr76WtDnHyc9RHyejgb8&options=w1600
IP
142.250.74.33:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /image?id=1hQhS-4GCqpLtyNodPfwrzTXqD89iAP3mesy-fqSBaRonQfT7Pr76WtDnHyc9RHyejgb8&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 24 Nov 2022 08:48:56 GMT
Location: https://themes.googleusercontent.com/image?id=1hQhS-4GCqpLtyNodPfwrzTXqD89iAP3mesy-fqSBaRonQfT7Pr76WtDnHyc9RHyejgb8&options=w1600
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

4.bp.blogspot.com/-FTmdSF-MMAo/XGkO5a3qRbI/AAAAAAAAAgs/vIemcxdRikU_fFRM5wNHUMq9h41XxT0AwCLcBGAs/s72-c/guardare-btn.png

142.250.74.161

200 OK

2.4 kB

URL HTTP/2
4.bp.blogspot.com/-FTmdSF-MMAo/XGkO5a3qRbI/AAAAAAAAAgs/vIemcxdRikU_fFRM5wNHUMq9h41XxT0AwCLcBGAs/s72-c/guardare-btn.png
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
2.4 kB (2393 bytes)
Hash
a28352fcc1c2274d92cf422b71b327c4
45abf32ece57f4b1f1781205359a1bce62b79a48
95f9982d0417159a294725458564e6cae412a27c6b5a273137fa4c06fe2c279d

HTTP Headers

GET /-FTmdSF-MMAo/XGkO5a3qRbI/AAAAAAAAAgs/vIemcxdRikU_fFRM5wNHUMq9h41XxT0AwCLcBGAs/s72-c/guardare-btn.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="guardare-btn.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2393
x-xss-protection: 0
date: Thu, 24 Nov 2022 06:16:17 GMT
expires: Tue, 15 Nov 2022 15:40:38 GMT
cache-control: public, max-age=86400, no-transform
age: 9159
etag: "v20c"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

2.bp.blogspot.com/-5Wx3SK7WxH0/W-_Vxv_IGQI/AAAAAAAAPz0/mcSOyYog6as4hUWRFJo-2M1753embqbAgCLcBGAs/s72-c/estrela%2Batividade%2Bcrian%25C3%25A7a.jpg

142.250.74.161

200 OK

3.7 kB

URL HTTP/2
2.bp.blogspot.com/-5Wx3SK7WxH0/W-_Vxv_IGQI/AAAAAAAAPz0/mcSOyYog6as4hUWRFJo-2M1753embqbAgCLcBGAs/s72-c/estrela%2Batividade%2Bcrian%25C3%25A7a.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.7 kB (3736 bytes)
Hash
fe6fc945a37319e714bb38ff2ad0e1c7
94d14618d78092b7db8535c872a6d94be4fb9785
2186541f6f048089d5e5e519565e883efcd28d3cbbd97afea4c6d3cf81972786

HTTP Headers

GET /-5Wx3SK7WxH0/W-_Vxv_IGQI/AAAAAAAAPz0/mcSOyYog6as4hUWRFJo-2M1753embqbAgCLcBGAs/s72-c/estrela%2Batividade%2Bcrian%25C3%25A7a.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="estrela atividade crian_a.jpg";filename*=UTF-8''estrela%20atividade%20crian%C3%A7a.jpg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3736
x-xss-protection: 0
date: Thu, 24 Nov 2022 08:48:56 GMT
expires: Thu, 17 Nov 2022 23:07:25 GMT
cache-control: public, max-age=86400, no-transform
etag: "v3f3e"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogblog.com/1kt/simple/gradients_light.png

142.250.74.105

200 OK

403 B

URL HTTP/1.1
www.blogblog.com/1kt/simple/gradients_light.png
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
PNG image data, 20 x 1100, 8-bit/color RGBA, non-interlaced\012- data
Size
403 B (403 bytes)
Hash
4f7de2e6afefb125b1f14fa5cda610ee
57a145f234b504a73f9d55cf39f2231a04719456
ecb30886406e3f776ff7bc3834de849944471e626ff148bed2fa389d02866044

HTTP Headers

GET /1kt/simple/gradients_light.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 403
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 07:13:23 GMT
Expires: Wed, 30 Nov 2022 07:13:23 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 06:50:29 GMT
Content-Type: image/png
Age: 92133

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pt.giveawayoftheday.com/ticker/

208.94.233.109

301 Moved Permanently

178 B

URL HTTP/1.1
pt.giveawayoftheday.com/ticker/
IP
208.94.233.109:0
ASN
#40824 WZCOM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /ticker/ HTTP/1.1
Host: pt.giveawayoftheday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 08:48:56 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Keep-Alive: timeout=5
Location: https://pt.giveawayoftheday.com/ticker/

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6670d72d487e9659c04c74563b60a962
47d621aed97253a6023c4f22a34260a831c406c1
f1bafc7a8db870f25ddb3b368e7b86196d1fffabfcae65a4c04c224a667890cb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/cantarell/v17/B50IF7ZDq37KMUvlO01xN4d-E46f.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/1.1
fonts.gstatic.com/s/cantarell/v17/B50IF7ZDq37KMUvlO01xN4d-E46f.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11496, version 1.0\012- data
Size
12 kB (11496 bytes)
Hash
4c6067e818e7a0aa7a345a9481863f9e
7e94315bb69ca1a99423412ce06e6d0d6bd3d09a
298f6ec1b9034ddefe6a8a80872b68f2e13785956bc5f514c9404dcfc0a9d4ff

HTTP Headers

GET /s/cantarell/v17/B50IF7ZDq37KMUvlO01xN4d-E46f.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gavetadefichas.blogspot.com
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 11496
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 20:54:45 GMT
Expires: Wed, 22 Nov 2023 20:54:45 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 08 Nov 2022 20:01:50 GMT
Content-Type: font/woff2
Age: 129251

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img.youtube.com/vi/b9G5vdwF2y4/default.jpg

142.250.74.174

200 OK

3.4 kB

URL HTTP/2
img.youtube.com/vi/b9G5vdwF2y4/default.jpg
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Size
3.4 kB (3400 bytes)
Hash
3d780bc948bb62a8c49fe52a17f45fa6
b6c466ff40ea2aa0d21b3cb064697bdd059ebc63
24ff853c2d82efacd9fd3bfb42780c7ba73c8119c037bb77d8b1ceb5a1c4d045

HTTP Headers

GET /vi/b9G5vdwF2y4/default.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 3400
date: Thu, 24 Nov 2022 08:48:57 GMT
expires: Thu, 24 Nov 2022 10:48:57 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/prose/brandjs.js

142.250.74.163

200 OK

5.8 kB

URL HTTP/2
www.gstatic.com/prose/brandjs.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1352)
Size
5.8 kB (5807 bytes)
Hash
10aa07ab4f7de5535f4cafe167ca4fa7
6c804574a29f9d8a77ed2823a7879e56dbc42c22
d111484a9bceee10b129b20ebd4ead4639b5d7dd78117522249195fb84db3cf0

HTTP Headers

GET /prose/brandjs.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gavetadefichas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 5807
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:15:07 GMT
expires: Thu, 24 Nov 2022 14:15:07 GMT
cache-control: public, max-age=86400
age: 66830
last-modified: Tue, 06 Apr 2021 15:14:29 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6670d72d487e9659c04c74563b60a962
47d621aed97253a6023c4f22a34260a831c406c1
f1bafc7a8db870f25ddb3b368e7b86196d1fffabfcae65a4c04c224a667890cb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6670d72d487e9659c04c74563b60a962
47d621aed97253a6023c4f22a34260a831c406c1
f1bafc7a8db870f25ddb3b368e7b86196d1fffabfcae65a4c04c224a667890cb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f7801fe8b983652ae788bc952856c2ed
f3898da21792b146a9f856e87ed3520d76277fb8
faa1bc8a9887e2dc694ff645546ea16cb96ac4bd1b0c460aef95f2cced100d6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/cse/static/images/1x/en/branding.png

142.250.74.164

200 OK

1.4 kB

URL HTTP/2
www.google.com/cse/static/images/1x/en/branding.png
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
PNG image data, 124 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1372 bytes)
Hash
5fa765d6ecd4ddbe72abbac8698fa4b0
468231e63b1ab3ed01a9488f5c981b141a54d024
331b2b1241f1f2a53744bdca867c5b76954d9431970e91f490f64c707fc24a16

HTTP Headers

GET /cse/static/images/1x/en/branding.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 558161
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

3.bp.blogspot.com/--d-fJVHvWDY/W27yLzNvr3I/AAAAAAAAlrY/mp-dI9pY7eo0OBXbhMV_-06gmLANSECtQCKgBGAs/w72-h72-p-k-no-nu/ponto_a_ponto_23.jpg

142.250.74.161

200 OK

2.5 kB

URL HTTP/2
3.bp.blogspot.com/--d-fJVHvWDY/W27yLzNvr3I/AAAAAAAAlrY/mp-dI9pY7eo0OBXbhMV_-06gmLANSECtQCKgBGAs/w72-h72-p-k-no-nu/ponto_a_ponto_23.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.5 kB (2532 bytes)
Hash
9a3a135a352ffcec8d061266b9e81f56
43381b3811b7765ce0b663ef8ad7a0ce28146a7e
d97e353d675d2762f08465b671b70374272bc6bb1139bcfdc52ad5f9ef99388d

HTTP Headers

GET /--d-fJVHvWDY/W27yLzNvr3I/AAAAAAAAlrY/mp-dI9pY7eo0OBXbhMV_-06gmLANSECtQCKgBGAs/w72-h72-p-k-no-nu/ponto_a_ponto_23.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v96ba"
expires: Fri, 25 Nov 2022 08:48:57 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ponto_a_ponto_23.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 24 Nov 2022 08:48:57 GMT
server: fife
content-length: 2532
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f7801fe8b983652ae788bc952856c2ed
f3898da21792b146a9f856e87ed3520d76277fb8
faa1bc8a9887e2dc694ff645546ea16cb96ac4bd1b0c460aef95f2cced100d6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8%40group.calendar.google.com&color=%232952A3&ctz=Europe%2FLisbon

142.250.74.164

302 Found

0 B

URL HTTP/2
www.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8%40group.calendar.google.com&color=%232952A3&ctz=Europe%2FLisbon
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8%40group.calendar.google.com&color=%232952A3&ctz=Europe%2FLisbon HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: application/binary
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 08:48:57 GMT
location: https://calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=IIexZZ-uDwNJcRSPb6onwEQ83tHSWHwv2SVF_EE7imVyTwzmAP9d1yr1q6EkCWyyMveIVWdn4vkow6p2G77hkmzFNNZ3Uh16TM8soIfBol6rKKIAb-6vXgtgZKSzLcJ43wmfDDwqG7xx2OmaYXfWVX--QFJ4MMOGhN3c2pYWrpo; expires=Fri, 26-May-2023 08:48:57 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main

172.217.21.170

200 OK

75 kB

URL HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main
IP
172.217.21.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1613)
Size
75 kB (75035 bytes)
Hash
110765e1accf41111543c29721c78b52
3eeceb853d592a297162325f20f0420e136c875a
b5fb084ee4491e64fca48643106c0eb338212638caafdad88ff91e0d4198b589

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75035
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 00:23:31 GMT
expires: Thu, 23 Nov 2023 00:23:31 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 12 Nov 2022 06:10:12 GMT
content-type: text/javascript; charset=UTF-8
age: 116726
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

4.bp.blogspot.com/-1GrjelyAILQ/U9TO_heL23I/AAAAAAAAIiQ/y83W9fwddHY/s1600/Concursos_estrangeiro.JPG

142.250.74.161

200 OK

10 kB

URL HTTP/1.1
4.bp.blogspot.com/-1GrjelyAILQ/U9TO_heL23I/AAAAAAAAIiQ/y83W9fwddHY/s1600/Concursos_estrangeiro.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 300x146, components 3\012- data
Size
10 kB (10080 bytes)
Hash
2913d79c53628685bdd23d83e7eec8b7
8ce287e8691ee1ce5e6e0db9314216c7b6309d73
fe42e4847f10cd43f1c2076d93a39afa9d117f88e02005b75e9d1e927788f888

HTTP Headers

GET /-1GrjelyAILQ/U9TO_heL23I/AAAAAAAAIiQ/y83W9fwddHY/s1600/Concursos_estrangeiro.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2225"
Expires: Fri, 25 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Concursos_estrangeiro.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 08:48:57 GMT
Server: fife
Content-Length: 10080
X-XSS-Protection: 0

translate.googleapis.com/translate_static/css/translateelement.css

172.217.21.170

200 OK

3.6 kB

URL HTTP/2
translate.googleapis.com/translate_static/css/translateelement.css
IP
172.217.21.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18670)
Size
3.6 kB (3619 bytes)
Hash
897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0

HTTP Headers

GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 07:53:12 GMT
expires: Thu, 24 Nov 2022 08:53:12 GMT
cache-control: public, max-age=3600
age: 3345
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

3.bp.blogspot.com/-LCZ3yykBDjc/U7w71z8TsaI/AAAAAAAAIhA/Z9w4zBjFwgA/w72-h72-p-k-no-nu/google++.jpg

142.250.74.161

200 OK

2.6 kB

URL HTTP/1.1
3.bp.blogspot.com/-LCZ3yykBDjc/U7w71z8TsaI/AAAAAAAAIhA/Z9w4zBjFwgA/w72-h72-p-k-no-nu/google++.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.6 kB (2632 bytes)
Hash
1c34c67c19dd723b8f827bebef908b85
9797a0be2a7372877a44f77ffe22c77eb4f3ab4d
f21c51d4e6f2bb9e6a54c13f1d69d488e9cf89fc82acd857ed640c047bf9bb83

HTTP Headers

GET /-LCZ3yykBDjc/U7w71z8TsaI/AAAAAAAAIhA/Z9w4zBjFwgA/w72-h72-p-k-no-nu/google++.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2211"
Expires: Fri, 25 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="google +.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 08:48:57 GMT
Server: fife
Content-Length: 2632
X-XSS-Protection: 0

3.bp.blogspot.com/-ldQg86euVQ8/U9TJ7a4jihI/AAAAAAAAIiA/ciBXn_KC8cU/s1600/concursos_acores.JPG

142.250.74.161

200 OK

17 kB

URL HTTP/1.1
3.bp.blogspot.com/-ldQg86euVQ8/U9TJ7a4jihI/AAAAAAAAIiA/ciBXn_KC8cU/s1600/concursos_acores.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 440x167, components 3\012- data
Size
17 kB (17323 bytes)
Hash
5df81c8835c11c973e9d4352f7f9552d
ae5b8ae52b9f42bbce218cb53d826eece3208e65
008e0a6b4de5123c383762ea2842614c1f32bb885e47992e24c7a02dcd9264cb

HTTP Headers

GET /-ldQg86euVQ8/U9TJ7a4jihI/AAAAAAAAIiA/ciBXn_KC8cU/s1600/concursos_acores.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2221"
Expires: Fri, 25 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="concursos_acores.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 08:48:57 GMT
Server: fife
Content-Length: 17323
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
43590d3cdc6d87840c90fdfc4320028d
40d15b8a046a321b9edaf9665cc6edbf7e9ae719
b4a9dd9a946e3a00d3f960f24e359f6f112e85f01da9d930f95a29c743ce82e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

4.bp.blogspot.com/-CUuqW7QbRog/U9TJsS5g80I/AAAAAAAAIh0/I_kT2r68ZPU/s1600/concursos_madeira.JPG

142.250.74.161

200 OK

17 kB

URL HTTP/1.1
4.bp.blogspot.com/-CUuqW7QbRog/U9TJsS5g80I/AAAAAAAAIh0/I_kT2r68ZPU/s1600/concursos_madeira.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 291x212, components 3\012- data
Size
17 kB (16729 bytes)
Hash
c4c51d2b66df9bd78fb3ffa5425a3a03
ff84571aa5ea62a5f8367de156bcdd37fc4cc158
796c59c0edb484b84640e2f0e8d45fe9fcf2b3ac789dee65da5a19fda34e8a01

HTTP Headers

GET /-CUuqW7QbRog/U9TJsS5g80I/AAAAAAAAIh0/I_kT2r68ZPU/s1600/concursos_madeira.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v221e"
Expires: Fri, 25 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="concursos_madeira.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 08:48:57 GMT
Server: fife
Content-Length: 16729
X-XSS-Protection: 0

4.bp.blogspot.com/-eR_187zMXwA/U9TJLld_XKI/AAAAAAAAIho/8kaYg9EPKx4/s1600/concursos_continente.JPG

142.250.74.161

200 OK

21 kB

URL HTTP/1.1
4.bp.blogspot.com/-eR_187zMXwA/U9TJLld_XKI/AAAAAAAAIho/8kaYg9EPKx4/s1600/concursos_continente.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 481x293, components 3\012- data
Size
21 kB (20824 bytes)
Hash
fb46accc75f21e97ab4bf5f9af251479
37db12f586363dd8a8494e11609508fce210e44f
ab66c6fa7d69df11663b609759e1e557a106ab0c3ff84baf83ad6ad3ed946e72

HTTP Headers

GET /-eR_187zMXwA/U9TJLld_XKI/AAAAAAAAIho/8kaYg9EPKx4/s1600/concursos_continente.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v221b"
Expires: Fri, 25 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="concursos_continente.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 08:48:57 GMT
Server: fife
Content-Length: 20824
X-XSS-Protection: 0

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 08:11:11 GMT
cache-control: public,max-age=3600
age: 2266
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

1.bp.blogspot.com/-exLZkbCTwFU/YDU4-qw1ORI/AAAAAAACPfM/cVyGThLwCNwvWo3m8nblxBjjU2vqZm1MACLcBGAsYHQ/s72-c/81wYHL3hQUL.jpg

142.250.74.161

200 OK

5.0 kB

URL HTTP/2
1.bp.blogspot.com/-exLZkbCTwFU/YDU4-qw1ORI/AAAAAAACPfM/cVyGThLwCNwvWo3m8nblxBjjU2vqZm1MACLcBGAsYHQ/s72-c/81wYHL3hQUL.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
5.0 kB (4980 bytes)
Hash
4ff9aaa5837108d158bd51da0af5fb60
02359d8be27f70392cf478fd8e4a00cc654255bc
d3e04fcff1ce9c9a1b8fd770f304afd29f371d5565bfbd17d36fca5b21890ffa

HTTP Headers

GET /-exLZkbCTwFU/YDU4-qw1ORI/AAAAAAACPfM/cVyGThLwCNwvWo3m8nblxBjjU2vqZm1MACLcBGAsYHQ/s72-c/81wYHL3hQUL.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v23df7"
expires: Fri, 25 Nov 2022 08:48:57 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="81wYHL3hQUL.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 24 Nov 2022 08:48:57 GMT
server: fife
content-length: 4980
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

2.bp.blogspot.com/-1GGN4GQk1kI/Wg9kJLCpbYI/AAAAAAAAlmo/NRiEmjEJk6kLDpL82G7ZgzdIOtG8Rx4OgCLcBGAs/w72-h72-p-k-no-nu/aurasma_googleplay.JPG

142.250.74.161

200 OK

2.4 kB

URL HTTP/2
2.bp.blogspot.com/-1GGN4GQk1kI/Wg9kJLCpbYI/AAAAAAAAlmo/NRiEmjEJk6kLDpL82G7ZgzdIOtG8Rx4OgCLcBGAs/w72-h72-p-k-no-nu/aurasma_googleplay.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.4 kB (2405 bytes)
Hash
11d352b611c0fd1ce3d9cd8cbaf54cf1
5c95133046a04723734012d1895d325f42348ee1
c42d5bb9f4174f8b688f862e3d68e0f9707c59283911e142b6bd025a4a3d407b

HTTP Headers

GET /-1GGN4GQk1kI/Wg9kJLCpbYI/AAAAAAAAlmo/NRiEmjEJk6kLDpL82G7ZgzdIOtG8Rx4OgCLcBGAs/w72-h72-p-k-no-nu/aurasma_googleplay.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v966b"
expires: Fri, 25 Nov 2022 08:48:57 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="aurasma_googleplay.JPG"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 24 Nov 2022 08:48:57 GMT
server: fife
content-length: 2405
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7919270763485362439%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://gavetadefichas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7919270763485362439%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://gavetadefichas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true

216.58.207.237

302 Found

475 B

URL HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7919270763485362439%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://gavetadefichas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7919270763485362439%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://gavetadefichas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP
216.58.207.237:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (506)
Size
475 B (475 bytes)
Hash
963a040a722530cbfceeeb0f5180d576
cf5ee1c7de92d5a41ae79b89f982858e0d6c86b5
74ada28adb88c873926caface6e659b00c36eb04761c1d6228c85d2023ccedd3

HTTP Headers

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7919270763485362439%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://gavetadefichas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7919270763485362439%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://gavetadefichas.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gavetadefichas.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 08:48:57 GMT
location: https://www.blogger.com/followers.g?blogID=7919270763485362439&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fgavetadefichas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-x1HB3eACb6BrlKl7opC57w' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 475
server: GSE
set-cookie: __Host-GAPS=1:gd2MjpMykjGbhXk4ivxA1VrEf5xF9A:wNANSWFPtOVgqCfI;Path=/;Expires=Sat, 23-Nov-2024 08:48:57 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

themes.googleusercontent.com/image?id=1hQhS-4GCqpLtyNodPfwrzTXqD89iAP3mesy-fqSBaRonQfT7Pr76WtDnHyc9RHyejgb8&options=w1600

142.250.74.33

200 OK

512 kB

URL HTTP/2
themes.googleusercontent.com/image?id=1hQhS-4GCqpLtyNodPfwrzTXqD89iAP3mesy-fqSBaRonQfT7Pr76WtDnHyc9RHyejgb8&options=w1600
IP
142.250.74.33:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Picasa], baseline, precision 8, 1600x1110, components 3\012- data
Size
512 kB (512158 bytes)
Hash
7ce23211dc5ccd060fe71f984159eaa9
cdfa77dbd223a23883fc314de2ace77f30731f4a
dcb8a4256d181e4fee48e7186db4a06c1acc989f90118dbb4acfca5977640f9e

HTTP Headers

GET /image?id=1hQhS-4GCqpLtyNodPfwrzTXqD89iAP3mesy-fqSBaRonQfT7Pr76WtDnHyc9RHyejgb8&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gavetadefichas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 25 Nov 2022 08:48:57 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 24 Nov 2022 08:48:57 GMT
server: fife
content-length: 512158
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
e526d1aa44384998f63d495cd76cd820
6f8772e87283e9dfbd88ed9a01aacd924ffbc5d2
0939bf987229b17fd60273f0a21c0be12b84d9a818241e23d2cfc8d5f16e2fa5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 08:48:57 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 05:16:04 GMT
Expires: Tue, 29 Nov 2022 05:16:03 GMT
Etag: "6f8772e87283e9dfbd88ed9a01aacd924ffbc5d2"
Cache-Control: max-age=418625,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f0e37659140b61-OSL

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
eb52164d651f5f45416e873aec29eb04
405b29bb7e7cd4367cf82988f8603e53db65f139
ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3665
Cache-Control: max-age=91141
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:48:57 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 10:07:58 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

www.blogger.com/dyn-css/authorization.css?targetBlogID=7919270763485362439&zx=d35a7a05-8757-414a-aa96-45d346ed1082

142.250.74.105

200 OK

21 B

URL HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=7919270763485362439&zx=d35a7a05-8757-414a-aa96-45d346ed1082
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=7919270763485362439&zx=d35a7a05-8757-414a-aa96-45d346ed1082 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 08:48:57 GMT
last-modified: Thu, 24 Nov 2022 08:48:57 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pt.giveawayoftheday.com/ticker/

208.94.233.109

200 OK

1.1 kB

URL HTTP/1.1
pt.giveawayoftheday.com/ticker/
IP
208.94.233.109:0
ASN
#40824 WZCOM

File type
Unicode text, UTF-8 text, with very long lines (423)
Size
1.1 kB (1081 bytes)
Hash
b88be1b7dca4a0edcc22a40745e9ccda
5a41a75d05d370b50df0f3dd315038a8ee2811d4
4a4ba49308f9b2bfec1300c7c002d9c8cbdd946fbd483714ea152ef3d506b2ea

HTTP Headers

GET /ticker/ HTTP/1.1
Host: pt.giveawayoftheday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gavetadefichas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache
Date: Thu, 24 Nov 2022 08:48:57 GMT
Content-Encoding: gzip

www.blogger.com/followers.g?blogID=7919270763485362439&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fgavetadefichas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1

142.250.74.105

200 OK

3.8 kB

URL HTTP/2
www.blogger.com/followers.g?blogID=7919270763485362439&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fgavetadefichas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8135)
Size
3.8 kB (3761 bytes)
Hash
f2431890065974944c387ac1ad51f179
832b3a56a01c6ad8b9d6cea3b0658c221d60c936
bffc8a914de384b4d3ebf961a826f128023ddbeef22aa69e8a8a6e47e7498c38

HTTP Headers

GET /followers.g?blogID=7919270763485362439&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMyMDAqByNmZmY5ZWUyByMyZjc1ODU6ByMyMjIyMjJCByM5OTMyMDBKByM5OTk5OTlSByM5OTMyMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fgavetadefichas.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gavetadefichas.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 08:48:57 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 3761
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

advm.brznetwork.com/commons/adsense.png

185.206.86.13

200 OK

169 B

URL HTTP/1.1
advm.brznetwork.com/commons/adsense.png
IP
185.206.86.13:0
ASN
#6665 Shiny S.r.l.

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
169 B (169 bytes)
Hash
9c83ed48c75fc790df355cff1814c0e2
353f23ae6c624195bdfc346a5964ec0aab508cfb
92e9c100491444c31c377c868d40f1c1e303e8e63efa4c8f3f55a9a7cd68e534

HTTP Headers

GET /commons/adsense.png HTTP/1.1
Host: advm.brznetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
date: Thu, 24 Nov 2022 08:52:46 GMT
server: Apache
last-modified: Thu, 23 Jul 2015 15:36:16 GMT
etag: "a9-51b8ca5e25c00"
accept-ranges: bytes
content-length: 169
p3p: CP="NOI NID ADM OUR STP"
content-type: image/png
connection: close

push.services.mozilla.com/

35.161.148.163

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.148.163:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dECEZ1XX4/g43ipnLwjVPA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nlOF22fMwIvQ3rJMqhIDp+NUPDk=

gavetadefichas.blogspot.com/b/stats?style=WHITE_TRANSPARENT&timeRange=LAST_MONTH&token=APq4FmBgZf2SCL9RITLI6XGT2XJvD4ictv8NXWWWEhEwMMO773YL7tQTXyWCmDUVJkygsdh6cGUkIDuZYLrkyu8xdCx9CIOHKg

142.250.74.161

200 OK

257 B

URL HTTP/1.1
gavetadefichas.blogspot.com/b/stats?style=WHITE_TRANSPARENT&timeRange=LAST_MONTH&token=APq4FmBgZf2SCL9RITLI6XGT2XJvD4ictv8NXWWWEhEwMMO773YL7tQTXyWCmDUVJkygsdh6cGUkIDuZYLrkyu8xdCx9CIOHKg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (399), with no line terminators
Size
257 B (257 bytes)
Hash
3008a64bfa2e5471c5bbffadd7400632
1525ee3996b72073bc9ca5843f8ddb15ff32dbc2
e21f53a5cbd273e5d210af534de25a5cee1511e2a3233f828f6e84d27e425f3a

HTTP Headers

GET /b/stats?style=WHITE_TRANSPARENT&timeRange=LAST_MONTH&token=APq4FmBgZf2SCL9RITLI6XGT2XJvD4ictv8NXWWWEhEwMMO773YL7tQTXyWCmDUVJkygsdh6cGUkIDuZYLrkyu8xdCx9CIOHKg HTTP/1.1
Host: gavetadefichas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/2010_07_01_archive.html

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Thu, 24 Nov 2022 08:48:57 GMT
Expires: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 257
Server: GSE

gavetadefichas.blogspot.com/2010/07/?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6L8_X4GwySjmALeQnLn9JWOB3cJw%3A1669279736284

142.250.74.161

200 OK

531 B

URL HTTP/1.1
gavetadefichas.blogspot.com/2010/07/?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6L8_X4GwySjmALeQnLn9JWOB3cJw%3A1669279736284
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1310)
Size
531 B (531 bytes)
Hash
231d916dae3a765ab967b9cd2d29a1c8
31c79e60da8959f704a24b32ab84e72298f1158b
f2d5435b3099c7d87255b0c9a06551b20b56b98e3696acbb9c50c38945b1b076

HTTP Headers

GET /2010/07/?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6L8_X4GwySjmALeQnLn9JWOB3cJw%3A1669279736284 HTTP/1.1
Host: gavetadefichas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/2010_07_01_archive.html

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Expires: Thu, 24 Nov 2022 08:48:57 GMT
Date: Thu, 24 Nov 2022 08:48:57 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 19 Oct 2022 00:58:45 GMT
ETag: "d35a7a05-8757-414a-aa96-45d346ed1082"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 531
Server: GSE

clients6.google.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__

142.250.74.142

200 OK

273 B

URL HTTP/2
clients6.google.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
IP
142.250.74.142:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
273 B (273 bytes)
Hash
b06b9920ea346e832ff9854dcb3a0045
546d59493ed6789454166f643705c629aef93dd4
001c2c9f94d67c3b45801e756ab9c1f21f75d023f4da338ebd518dcec96adfa2

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__ HTTP/1.1
Host: clients6.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://calendar.google.com/
Cookie: NID=511=IIexZZ-uDwNJcRSPb6onwEQ83tHSWHwv2SVF_EE7imVyTwzmAP9d1yr1q6EkCWyyMveIVWdn4vkow6p2G77hkmzFNNZ3Uh16TM8soIfBol6rKKIAb-6vXgtgZKSzLcJ43wmfDDwqG7xx2OmaYXfWVX--QFJ4MMOGhN3c2pYWrpo
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-WX8V-MyziuJ5m5P7dnaBlA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apiserving
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 273
date: Thu, 24 Nov 2022 08:48:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Fri, 17 Jul 2020 22:45:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.42

200 OK

1.4 kB

URL HTTP/2
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
3ad547ec47ef63d87eff80e53d6dd861
20cd334266b4bc9b47966d5487f0a2b2d41db765
c9b9dc1b30d38db2a72068eb7d8a5d1af32006b64263cab5e89f500f62856ea3

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 08:48:58 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Thu, 24 Nov 2022 08:48:58 GMT
set-cookie: NID=511=KKerrxdz130Ygjga4wyutQrB1QZf7hp6ru15QgaAuc7R46TOlz1mHF7LjTN6IvOYMzm-3N5QdBNz2LcF2sChw4QlBSf972GSrkvBnMl-SVAUvIEylEvqcZ0gJm3MTHKD7OqSysJwfp7CbNnyJl0sNmgvrxHT0SdQtP4iBsxlDZ4; expires=Fri, 26-May-2023 08:48:58 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+665; expires=Sat, 23-Nov-2024 08:48:58 GMT; path=/; domain=.googleapis.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

translate.google.com/gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20221115

142.250.74.46

204 No Content

0 B

URL HTTP/1.1
translate.google.com/gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20221115
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20221115 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 204 No Content
Content-Type: image/gif; charset=us-ascii
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 24 Nov 2022 08:48:58 GMT
Cross-Origin-Resource-Policy: cross-origin
Content-Security-Policy: script-src 'nonce-18yBZHaWBMp9_xFcwuaoOg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
Report-To: {"group":"TranslateApiHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/TranslateApiHttp/external"}]}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Cross-Origin-Opener-Policy: same-origin; report-to="TranslateApiHttp"
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

www.giveawayoftheday.com/images/ga-logo-small.png

208.94.233.109

200 OK

6.2 kB

URL HTTP/1.1
www.giveawayoftheday.com/images/ga-logo-small.png
IP
208.94.233.109:0
ASN
#40824 WZCOM

File type
PNG image data, 200 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
6.2 kB (6161 bytes)
Hash
aa578603827ba9ac417ff657c66bfdab
5d12e2ed83255389861870802a8ac1e57a66a0d0
b77fccc6234b2479e21db79e12901f19d6f2c3340138b399a6c05ea998e52830

HTTP Headers

GET /images/ga-logo-small.png HTTP/1.1
Host: www.giveawayoftheday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 08:48:58 GMT
Content-Type: image/png
Content-Length: 6161
Last-Modified: Wed, 20 Feb 2019 09:21:45 GMT
Connection: keep-alive
ETag: "5c6d1c29-1811"
Expires: Thu, 08 Dec 2022 08:48:58 GMT
Cache-Control: max-age=1209600
Accept-Ranges: bytes

giveawayoftheday.com/wp-content/uploads/2021/05/3ff201c9e52fbf1da37c4977d2b9e9d3.png

208.94.233.109

200 OK

21 kB

URL HTTP/1.1
giveawayoftheday.com/wp-content/uploads/2021/05/3ff201c9e52fbf1da37c4977d2b9e9d3.png
IP
208.94.233.109:0
ASN
#40824 WZCOM

File type
PNG image data, 160 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (20770 bytes)
Hash
d20457b4ac23c18e1bb675ef2eb42ad3
24f7c9dcb9f30be1fe9d3159ccdd7549356bd5ae
5bffeb639d3b14ed69b971e966fadbc98b3ffb83d75a5a7e3519073345d46039

HTTP Headers

GET /wp-content/uploads/2021/05/3ff201c9e52fbf1da37c4977d2b9e9d3.png HTTP/1.1
Host: giveawayoftheday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 08:48:58 GMT
Content-Type: image/png
Content-Length: 20770
Last-Modified: Mon, 31 May 2021 12:44:21 GMT
Connection: keep-alive
ETag: "60b4da25-5122"
Expires: Thu, 08 Dec 2022 08:48:58 GMT
Cache-Control: max-age=1209600
Accept-Ranges: bytes

codicebusiness.shinystat.com/dcode/dcode.min.js

185.206.86.14

200 OK

2.7 kB

URL HTTP/1.1
codicebusiness.shinystat.com/dcode/dcode.min.js
IP
185.206.86.14:0
ASN
#6665 Shiny S.r.l.

File type
ASCII text, with very long lines (7972), with no line terminators
Size
2.7 kB (2693 bytes)
Hash
adbfbc8dec87ff038148d7db67a3db78
44ae49ffe63ad798d9439374d10d1692ad5df752
9a4f1a6713a5b407a2c6905c8d9ae71ec8e9aa53af8b1b79423fdd7f0d5bcccc

HTTP Headers

GET /dcode/dcode.min.js HTTP/1.1
Host: codicebusiness.shinystat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
date: Thu, 24 Nov 2022 08:48:58 GMT
server: Apache
last-modified: Tue, 27 Sep 2022 21:29:03 GMT
etag: "1f24-5e9af5549c5c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
p3p: CP="NOI NID ADM OUR STP"
content-length: 2693
content-type: application/javascript
connection: close

s9.shinystat.com/cgi-bin/shinystat.cgi?USER=gavetadefichas&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=http%3A//gavetadefichas.blogspot.com/2010_07_01_archive.html&JV=N&VUT=-1&SSID=853749400784&NUT=y&FV=1&UV=1&US=1&JS=Y&VJS=4016&RM=977364996

185.206.85.85

200 OK

946 B

URL HTTP/1.1
s9.shinystat.com/cgi-bin/shinystat.cgi?USER=gavetadefichas&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=http%3A//gavetadefichas.blogspot.com/2010_07_01_archive.html&JV=N&VUT=-1&SSID=853749400784&NUT=y&FV=1&UV=1&US=1&JS=Y&VJS=4016&RM=977364996
IP
185.206.85.85:0
ASN
#6665 Shiny S.r.l.

File type
PNG image data, 299 x 17, 8-bit colormap, non-interlaced\012- data
Size
946 B (946 bytes)
Hash
5caba299657a39dc14ebd2f330a82b01
cf1c6a22e990f168a2603884b27e777876e0f06e
bb539ed39ed3bfaf5e8dda20ab5b81a352e588f881b519b0a9f00788000c3049

HTTP Headers

GET /cgi-bin/shinystat.cgi?USER=gavetadefichas&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=http%3A//gavetadefichas.blogspot.com/2010_07_01_archive.html&JV=N&VUT=-1&SSID=853749400784&NUT=y&FV=1&UV=1&US=1&JS=Y&VJS=4016&RM=977364996 HTTP/1.1
Host: s9.shinystat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/

HTTP/1.1 200 OK
date: Thu, 24 Nov 2022 08:48:58 GMT
server: Apache
pragma: max-age=0
cache-control: no-cache
expires: Wed, 29 Mar 2000 10:00:00 Local time
last-modified: Thu, 24 Nov 2022 08:48:58 GMT
p3p: CP="NOI NID ADM OUR STP", CP="NOI NID ADM OUR STP"
transfer-encoding: chunked
content-type: image/png
connection: close

gavetadefichas.blogspot.com/favicon.ico

142.250.74.161

200 OK

412 B

URL HTTP/1.1
gavetadefichas.blogspot.com/favicon.ico
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size
412 B (412 bytes)
Hash
501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: gavetadefichas.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gavetadefichas.blogspot.com/2010_07_01_archive.html

HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Thu, 24 Nov 2022 08:48:58 GMT
Date: Thu, 24 Nov 2022 08:48:58 GMT
Cache-Control: private, max-age=86400
Last-Modified: Wed, 19 Oct 2022 00:58:45 GMT
ETag: W/"e9b1a35a3c7c6dd9c9a7be2089ae90b40f6839bfd4d1d011731e4b78139c1d4f"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16760
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 08:48:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16760
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 08:48:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16760
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 08:48:58 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9828 bytes)
Hash
dc118bae963b381ce5450890130ecf15
9355a16a81b11e024dd2c5c0024aba1121fff925
cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:15:49 GMT
age: 37989
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11249 bytes)
Hash
481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 8f679d7f-2ea5-4e47-b78d-79af59435a62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFPHYHkAIAMFpBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec562-26108a785e910dc3355d58f1;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:14:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xYCpAPfR8rrHKURifh5EhDmMte-T2EgDeqP5jD24Jb0ICkXcpbnU5Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:30:43 GMT
age: 11895
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8441 bytes)
Hash
dd3f1be747f6b2f1c35afb01db67b792
a4373037b8b379939b1b099c3ef63f8792e67579
fdbd778a505e1928e9b5296b6150763c2dca9876ec0ef8f772e73ca386ab74d5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8441
x-amzn-requestid: c050c897-c6d4-44ef-93c2-cfbf32cd8bff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvClG-AoAMFwxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9210-039834877c2b792b5feb6819;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H31vJjvBF3eWF37DqfsaL-KxOnEHJS1JSmehtTYPhzjZjj-PIhm9pQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:45:09 GMT
age: 39829
etag: "a4373037b8b379939b1b099c3ef63f8792e67579"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5070 bytes)
Hash
0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 39591
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7993 bytes)
Hash
92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 39666
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6426 bytes)
Hash
eeac5ead5ce62f0d9e2d4bcefa946208
c2430d901f2b4e4a463e90c540294f334553a246
850a89160f840d7509806c5becd6b074a92613920474195f63d7e7a9cf18d908

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6426
x-amzn-requestid: 6f27f360-dd76-4aee-a9bc-cbd52cd80def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvx8GtpIAMFvQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e933f-69fa8ba571cc62036406e6bf;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wm_pBVCoReupun-_glC47ejuxaRJ6ViGPKClLnWkDrmT-SewUOXexw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:06:01 GMT
age: 38577
etag: "c2430d901f2b4e4a463e90c540294f334553a246"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.174

200 OK

0 B

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gavetadefichas.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 08:48:57 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+503; expires=Sat, 23-Nov-2024 08:48:56 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon

142.250.74.14

200 OK

0 B

URL HTTP/2
calendar.google.com/calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /calendar/embed?title=Calend%C3%A1rio&showPrint=0&showTabs=0&showTz=0&height=300&wkst=1&bgcolor=%23FFFFFF&src=6q2poj6ij0b95n0spm8pcbiep8@group.calendar.google.com&color=%232952A3&ctz=Europe/Lisbon HTTP/1.1
Host: calendar.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gavetadefichas.blogspot.com/
Connection: keep-alive
Cookie: NID=511=IIexZZ-uDwNJcRSPb6onwEQ83tHSWHwv2SVF_EE7imVyTwzmAP9d1yr1q6EkCWyyMveIVWdn4vkow6p2G77hkmzFNNZ3Uh16TM8soIfBol6rKKIAb-6vXgtgZKSzLcJ43wmfDDwqG7xx2OmaYXfWVX--QFJ4MMOGhN3c2pYWrpo
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 08:48:57 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-embedder-policy-report-only: require-corp; report-to="calendar_coop_coep"
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="calendar_coop_coep"
content-security-policy: script-src 'nonce-Pn36vxIlOs4hpdNwyy87Gg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /calendar/cspreport
report-to: {"group":"calendar_coop_coep","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/calendar"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (51)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations